117
GrapheneOS
this post was submitted on 03 Oct 2024
117 points (100.0% liked)
DeGoogle Yourself
197 readers
1 users here now
A community for those that would like to get away from Google.
Here you may post anything related to DeGoogling, why we should do it or good software alternatives!
Rules
-
Be respectful even in disagreement
-
No advertising unless it is very relevent and justified. Do not do this excessively.
-
No low value posts / memes. We or you need to learn, or discuss something.
Related communities
!privacyguides@lemmy.one !privacy@lemmy.ml !privatelife@lemmy.ml !linuxphones@lemmy.ml !fossdroid@social.fossware.space !fdroid@lemmy.ml
founded 4 years ago
MODERATORS
Yep, I've got a Pixel 9 Pro and I don't even have a Google account on this thing.
You can’t say no to Google’s surveillance
Yes you can: https://grapheneos.org/
I will never understand buying a google phone just to deGoogle it. why would you give them money.
I've seen the reasoning, I just ..
@averyminya @Andromxda grapheneos is SOTA of android security, and it only supports pixels, thats why
Right, like I said I've seen the reasoning. It just seems like giving money to the very company you're all trying to avoid, which in turn is just funding for Google to be more invasive.
Because I want a secure phone with relatively good specs, relatively good design, battery life and camera quality. And because it is one of the very few devices with a user-unlockable and re-lockable bootloader.
I know this isn't the topic here, but I really wish these researchers would unroll what all Apple harvests from Apple devices. It's quite a lot as well. Could help pop that "we're so private" myth.
Who truly owns the device is a question that has been answered ever since Android came into being.
Ask yourself: do you have root access to YOUR phone? No you don't: Google does.
It's the so-called "Android security model", which posits that the users are too dumb to take care of themselves, so Google unilaterally decides to administer their phone on their behalf without asking permission.
Which of course has nothing to do with saving the users from their own supposed stupidity and everything to do with controlling other people's private property to exfiltrate and monetize their data.
How this is even legal has been beyond me for 15 years.
Weirdly, Pixels are actually the best Android phones for installing custom ROMs, at least out of the major manufacturers. So for me, there isn't another choice, because I can finance a Pixel, and I can't finance a Fairphone or something.
GrapheneOS is really the furthest away from Google you can get on an Android phone and it's mainly developed for Pixel.
Please read the many write-ups by developers of well regarded privacy and security ROMs, such as grapheneOS and divestOS.
Who detail in great length why root access is a bad idea, and why many apps that require root access, are just poorly developed security nightmares.
That said, I agree that it should be an option, or at least a standardized means of enabling it. As well as all bootloaders should be unlockable. But phones are more personal devices than the PC ever was, and there are good reasons NOT to push for the proliferation of standardized root access.
Yes. It is the principle, everyone should be informed of the security risks, but not stripped of the root privileges they keep for themselves.
I have GrapheneOS and I know having root is not ideal and I was wondering about https://shizuku.rikka.app/ It looks like a more elegant way to have for some apps higher privileges while preserving security but I'm not sure about it so I'm thinking out loud
I will admit that I also use Shizuku, but I only enable it for short bursts when I need access for a very select number of precise use cases. Immediately afterwards, I reboot.
I also assume that if I spent any amount of time digging into it, I would realize it's a bad idea, but nothing's perfect.
And don't assume that all apps allowing Shizuku access were developed securely, or that there all developers have good intentions. Really I only use it for Swift, or if I'm really behind on my updates, I'll briefly allow Droidify access for hands off updating.
Is rebooting disables Shizuku?
How do you do these short bursts? Through adb?
And still Shizuku seems like a better idea than rooting the smartphone.
And this is different from Apple. Right? Right?
Yep, what radicalized me against Google was all the way back when they had bought Android and rolled out the Play Store for the first time.
I was on my first-ever phone, and yes, it did have rather limited internal storage, but then the Play Store got installed, taking up all the remaining space. I had literally around 500KB of free storage left afterwards, making it impossible to install new apps.
Couldn't uninstall the Play Store, couldn't move it to the SD-card and it didn't even fucking do anything that the Android Market app didn't do. It just took up 40MB more space for no good reason.
What's surprising about their stock ROM having tracking and phoning home? Use Grapheneos.
GrapheneOS + buy your phone from a store in-case you're allergic to PETN
It's so ironic that Pixels are the go to devices for privacy roms these days.
All this shit is probably happening at the hardware level too, with 100 different backdoors you can't remove with your megamind plan of installing a custom rom.
The silicon probably has the ability to live stream all sensor data directly to the NSA using the fanciest ML compression technology lmao.
It’s so ironic that Pixels are the go to devices for privacy roms these days.
It's so ironic it's a show-stopper for me. I'm not paying fucking Google to escape the Google dystopia. Nosiree! That's just too rich for me.
This is why I own a Fairphone running CalyxOS. Yes, I know GrapheneOS is supposedly more secure - I say supposedly because I think 95% of users don't have a threat model that justifies the extra security really. But I don't care: my number one priority is not giving Google a single cent. If it means running a less secure OS, I'm fine with that.
There's no way on God's green Earth I'm buying a Pixel phone to run a deGoogled OS. That's such an insane proposition I don't even know how anybody can twist their brain into believing this is a rational thing to do.
I think some people buy used/refurbished.
That's why I buy my phones used or refurbished. It's also cheaper and more environmentally friendly.
I say supposedly because I think 95% of users don't have a threat model that justifies the extra security really.
Does street cred with my Cybersecurity peers count as a threat model?
I'm definitely one of the users of GrapheneOS that you're talking about. My threat model is "this is fucking cool!"
Also, the grass is always greener on the other side. I want a Fair phone.
Citation needed. I get that it's healthy not to trust anyone, but with the amount of security research that goes into these devices if something like that was happening then we would know about it.
Maybe and maybe not. We need to encourage robust alternatives, unfortunately this requires a ton of capital to develop hardware and reserve fab time and get your devices fabricated instead of a major player like Google or Samsung.
We basically need something in the smartphone space equivalent to the Framework laptop, that can meet the security hardware requirements, allow bootloader unlock/relock and support GrapheneOS and other custom ROMs.
I'd say newer Pixels have even more privacy issues than the older ones because of cloud based AI features (ugh when will the bubble finally pop?) and stuff. However the stock OS is bad for privacy in both cases so a custom ROM is a must and afaik installing it on a Pixel is not too hard. Also new Pixels seem to get custom ROMs very quickly so you don't have to wait for months or even years for someone to make one.
The Pixel 9 line had GrapheneOS avaliable a couple of days after launch. That's how fast. You order the phone, and by the time you got it, GrapheneOS was ready to replace Stock Android.
So what phones do you all have?
not a phone just a literal block of graphene