Privacy

32142 readers

961 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Posting a link to a website containing tracking isn't great, if contents of the website are behind a paywall maybe copy them into the post
Don't promote proprietary software
Try to keep things on topic
If you have a question, please try searching for previous discussions, maybe it has already been answered
Reposts are fine, but should have at least a couple of weeks in between so that the post can reach a new audience
Be nice :)

Related communities

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago

MODERATORS

[email protected]

180

Anyone here use GrapheneOS?? (lemmy.world)

submitted 1 day ago by [email protected] to c/[email protected]

147 comments fedilink hide all child comments

I am a long term GrapheneOS user and would like to talk about it. r/privacy on the redditland blocks custom OS discussions which I think is very bad for user privacy, and I hope this post will be useful to anyone who are in the hunt for better privacy.

Nowadays smartphones are a much bigger threats to our privacy and Desktop systems, and unfortunately manufacturers has designed them to be locked down devices with no user freedom. You can't just "install Linux" on most smartphones and it is horrible. And most preloaded systems spy on us like crazy. That was why I specifically bought a pixel and loaded GOS onto it.

According to https://grapheneos.org/features , they start from base AOSP's latest version, imptoves upon it's security and significantly hardens it. There's hardened_malloc to.prevent against exploitation, disabling lots of debugging features, disabling USB-c data, hardening the Linux kernel and system apps etc. They even block accessing the hardware identifiers of the phone so that apps cannot detect whqt phone you're using. That means with Tor and zero permissions given, apps are anonymous.

Compatibility with apps are best in Custom ROMs but there are still that can't work, especially if they enforce device integrity. Very few apps usually enforce that tho. Also their community isn't the friendliest but you can get help. Just don't try and engage too much or have too many debates.

Anyone else here use GrapheneOS, or any other privacy ROMs? What is your experience? Do you disagree on any point? Let's have a discussion!

you are viewing a single comment's thread
view the rest of the comments

[–] [email protected] 1 points 2 hours ago* (last edited 2 hours ago)

I think google play is a necessary thing for them to distribute in the sandboxed google play harm reduction feature they advertise.

Ascrescent is the open source self-signed app store they promote, that is fully open, and its in their app store as well - but has very limited apps (organic maps, molly, but not fdroid inside)... but Ascrescent does not require the apps distributed to be open source... so just like google play

The reason they don't include F-Droid is they have a weird cultural bias against fdroid signing apps... they don't really speak to the relatively new fdroid reproducible build chain where the apps are signed by developers, but built by fdroid... which is the far superior security solution (verify the developers built it, and verify the source used in the binary is the published source) that no other app store offers.

I agree it would make sense for the GOS app installer to include fdroid, its weird that they don't, but their line is only developer signed builds... which, google play actually does do... google play apps are developer signed.