- cross-posted to:
- privacy@lemmy.ml
- cross-posted to:
- privacy@lemmy.ml
A video where the uploader compares different phone operating systems using the LINDDUN threat model.
GrapheneOS FTW!
I’m planning on getting a Pixel 7 Pro soon and I’m going to immediately put GrapheneOS on it. Are there any extra precautions I need to take?
Not really, just make sure that you’re getting a carrier-unlocked device, since carrier locks often also come with permanent bootloader locks. As long as you can unlock the bootloader (i.e. the OEM unlocking setting in the developer settings is NOT greyed out), everything will be fine.
Thank you!
Got my Pixel 7 a a few days ago for 335 EUR, runs GrapheneOS well.
I can’t wait! I’ve been on a cheap prepaid phone for YEARS and it barely functions at all at this point. I’m very excited about using a custom OS again. I think my last one was cyanogen mod on a Galaxy S3 if I am remembering correctly
The unplugged rotary dial one at the back of the linen cupboard.
Landlines are easy to tap into, unfortunately.
Smartphones come with their own security concerns but it allows things like E2E encrypted VOIP to exist, at least.
How you gonna tap into an unplugged rotary phone?
Ah you’re right, my brain somehow glossed over that detail!
That ranking makes sense, GOS is the best. It’s just a shame they don’t support non Pixel phones, of the rankings doesn’t include other custom ROMs
It’s a shame that no smartphone vendor other than Apple or Google bothers to properly implement hardware security features like a secure element (e.g. Apple’s Secure Enclave or the Google Titan M2).
I understand the decision. It’s kind of unreasonable to expect a developer to maintain a release without access to reasonably-maintained source to work on.
Yep.
But in the Real World, what’s the pragmatic difference between Graphene and a well-managed Lineage or DivestOS device, since security and privacy are both managed via layers?
I’m genuinely not being snarky. I tried running Graphene and had issues, and their support was atrociously condescending and critical, so now I’m running DivestOS instead. I’ve run Lineage on other devices without Google.
I think there’s definitely security concerns which is their highest priority. If the kernel isn’t maintained, security issues aren’t getting patched. You might be able to cobble something together, but there’s going to be holes.
I think they’re paranoid and that’s not a judgment. Rightly so if security is your first priority.
According to the Graphene OS website, the main issue isn’t even that. It’s that you can’t relock the boot loader on almost any device other than a Pixel. That leaves a huge security hole on the phone, and it’s one that almost all rooted users of other phones have open, whether they realize it or not.
What about the PinePhone?
As soon as it can properly phone it might be included in such reviews.
Graphene os for the win baby
I’ve hidden it and shall not tell you where.