It's an app that needs to communicate with Steam for you to be able to login and such, so obviously it's going to have network access.

Also, don't most apps want access to see when you are being called so they can break up the app so it doesn't crash and what not?

What exactly is bothering you about these permissions? Ie, what are you scared of happening? Just curious and trying to explain (parts) of it.

Originally posted by KillahInstinct:

It's an app that needs to communicate with Steam for you to be able to login and such, so obviously it's going to have network access.

What about the other permissions? Phone, Photos/Media/Files, Storage, Device ID & call information, receive data from Internet, prevent device from sleeping (I can figure this one but still), view network connections?

Originally posted by KillahInstinct:

Also, don't most apps want access to see when you are being called so they can break up the app so it doesn't crash and what not?

Originally posted by Im jusT a Girl dont tease me:

I run a custom rom and use app that require only very limited permissions.

Originally posted by KillahInstinct:

What exactly is bothering you about these permissions? Ie, what are you scared of happening? Just curious and trying to explain (parts) of it.

Originally posted by Im jusT a Girl dont tease me:

I'm totally not prone to give any app these permissions

I simply don't like intrusive applications that require many permissions, unless these are open source applications, which source code can be publicly viewed.
I browse behind a proxy, I don't use facebook, skype, I don't have pictures of myself on the internet, I rarely bring my cellphone with me. I like to be "off the grid", and this application doesn't help me. I'm not "scared" of anything, I simply feel more than safe with a 16-characters alphanumeric+ symbols Steam password and a 32-characters alphanumeric mail password, so I wonder why do I have to suffer from trading limitation because of others (scammed Steam users, not developers who obviously try to please "us"). I've already lost the /me command and nobody cared a little for that, useless trying to ask Valve to add it back, now this.
To be honest I'm completely upset and I'm not longer encouraging my friends and acquaintances to use Steam, but this is a story for another place, and it's not just about this.

I am not sure on the ones I didnt comment on but as said some of them seem fairly logical.

Is it an option for you to use the 30 printed codes, and still have the added features and security of mobile guard with less worries?

Obviously you will still need to confirm your trades when at home.

Originally posted by KillahInstinct:

Is it an option for you to use the 30 printed codes, and still have the added features and security of mobile guard with less worries?

I'm not quite sure of what you mean, perhaps a Steam update/announcement I missed? Could you link me anything mentioning those 30 printed codes, please?

I can't right now but go to your account settings (right top) and to mobile guard settings or something. There should be a button to generate 30 totp codes somewhere.

If that doesn't work, let me know and I'll try and get you a direct link later

Originally posted by KillahInstinct:

I can't right now but go to your account settings (right top) and to mobile guard settings or something. There should be a button to generate 30 totp codes somewhere.

If that doesn't work, let me know and I'll try and get you a direct link later

I'm afraid I don't have anything like that: I suppose it's something reserved those who have Steam Mobile enabled, and I didn't activate it.

Thank you anyway, I hope the devs read and do something.

If I wanted to be "off the grid", I would go off the grid - no cell phone. no steam. but anyways.
Those access permissions don't look suspicious for the functions the app needs, and we're not talking about just some random app from some unknown dev, if it was, then it might be worth hesitating. But I guess it all depends on what faith people are willing to put in Valve.
Being the reputable people they are, I don't forsee them abusing any of the permissions or any information gleamed from using the app at all.

-----
Read Phone State: If you receive a phone call while using the app, it won't interfere or disturb you with notifications (as much).

Read Phone Identity: Distinguishes every unique phone for security reasons. considering the nature of this app, one would expect to see this permission. For example, if someone was to copy the app and its files off your phone and put it on their phone and try to impersonate you, this permission prevents it.

Modify or Delete the Contents of your USB Storage: Downloads and caches files from the internet, eg. images of trader profiles and trade items. Basically like a web browser. No surprise there.

Read the Contents of your USB Storage: See above.

Receive Data from Internet: See above. Also for receiving incoming notifcations and messages, etc.

Full Network Access: Likewise to the above, we also need full network access to maintain a connection to steam, to confirm trades, messaging, etc.

Prevent Device from Sleeping: So the screen doesn't turn off while looking at the code generator. pretty sure it still sleeps on most other pages (if idle)

View Network Connections: all kinds of scenarios, one example is if you reconnect and your IP address might be different than before, the app should know this asap.

Control Vibration: Sends all your data to the nsa while you sleep.
-----

with that being said, I still don't like that this app is compulsory.

Originally posted by Miciah:

If I wanted to be "off the grid", I would go off the grid - no cell phone. no steam. but anyways.
Those access permissions don't look suspicious for the functions the app needs, and we're not talking about just some random app from some unknown dev, if it was, then it might be worth hesitating. But I guess it all depends on what faith people are willing to put in Valve.
Being the reputable people they are, I don't forsee them abusing any of the permissions or any information gleamed from using the app at all.

-----
Read Phone State: If you receive a phone call while using the app, it won't interfere or disturb you with notifications (as much).

Read Phone Identity: Distinguishes every unique phone for security reasons. considering the nature of this app, one would expect to see this permission. For example, if someone was to copy the app and its files off your phone and put it on their phone and try to impersonate you, this permission prevents it.

Modify or Delete the Contents of your USB Storage: Downloads and caches files from the internet, eg. images of trader profiles and trade items. Basically like a web browser. No surprise there.

Read the Contents of your USB Storage: See above.

Receive Data from Internet: See above. Also for receiving incoming notifcations and messages, etc.

Full Network Access: Likewise to the above, we also need full network access to maintain a connection to steam, to confirm trades, messaging, etc.

Prevent Device from Sleeping: So the screen doesn't turn off while looking at the code generator. pretty sure it still sleeps on most other pages (if idle)

View Network Connections: all kinds of scenarios, one example is if you reconnect and your IP address might be different than before, the app should know this asap.

Control Vibration: Sends all your data to the nsa while you sleep.
-----

with that being said, I still don't like that this app is compulsory. :angrytitan:

Well... I can't say that you don't make good points here.

I can't say I will use the app either, but, if anything, thank you for answering.