- cross-posted to:
- [email protected]
- [email protected]
- cross-posted to:
- [email protected]
- [email protected]
You must log in or # to comment.
by using a Pixel…
Buy one used to not financially support them. GrapheneOS only supports Pixel phones as they are the only ones which meet the security requirements.
I will always laugh at their “security requirements”
What is wrong with them?
I’m looking into getting a Jolla, though I’m sure the security probably doesn’t match up to GrapheneOS. They seem more privacy oriented and these days I’d like to contribute to the existence of European alternatives.
GrapheneOS is just great. 2 weeks into it and it works soo good.
Just use IodeOS, CalyxOS, /e/OS or just LineageOS to break free. Those are available for a many devices. Not only Pixel.
The level of security, of privacy and of granular control of those does not come even close to what GrapheneOS brings to the table. Additionally Iodè and /e/OS have some noise going on with not being private at all. And all of them, except LineageOS (some times) have long delays with security patches.
/e/OS uses OpenAI for voice-to-text. Iodé has closed source components (trust me bro?). What do they claim? “some protection is better than none”. In security that is ridiculous.
Then there is choosing between Microg vs actual sandboxed Google Play Services (which you don’t need to have at all on GrapheneOS if you don’t want to).
/e/OS signs their OS with Google test keys instead of their own keys.
Unconfirmed, but concerning is the claims of ties of those 2 (Iodé and /e/OS) with the French government, not unlike Chinese companies with the CCP.
Choosing LineageOS, or even CalyxOS are options I would consider if I wasn’t willing or able to get a Pixel device, but Iodé and /e/OS are absolute ‘no’ in my book. Too many holes, too pragmatic (and I’m trying to be nice using that word) for my taste.
the security not close, but its already a big leap from stock rom, and most likely dont need to waste money on a pixel.
GOS is all about security. Priority of IodeOS or CalyxOS is privacy. All the “noise going on” you are talking means nothing without any evidence. LineageOS and IodesOS are releasing every month the security patches for the official supported devices. There are no meaningful delays. Closed source is not bad per se. GOS allows Play Services. MicroG is optional on IodeOS, LineageOS or CalyxOS. You don’t have to use or to install it. /e/OS is the worst of all of them. But still better than Vanilla Android. Claims doesn’t matter only real evidences. And there are non.
Non of these ROMs are perfect. You have to pick the one who fits your needs best. For some its GOS for others it’s IodeOS.
‘not significant’, right.
This table is old. Patches are coming within days after release. I know that, because I have two phones to test all those roms. On IodeOS I got the first beta some days ago for the next march update. They are not slow. They are as secure as vanilla Android from Google. GOS is the paranoid on. Perfect for paranoid people like the developers themself. Only exception is /e/OS. It still is very slow to releas patches or even new Android version.
I’m pretty paranoid myself, so your logic checks out.
yes, but you have to use a pixel.
Wao 🤣
I am probably gonna go with either graphene or a Linux phone next because of google doing their stupid shit as always
I may try and get a cheap phone to put some alt android ROMs on and test or maybe a Linux os but some of my favorite apps are android exclusive so I am probably gonna stick with a modded android system Either lineage, /e or graphene
We need data portability laws to really untie people from these platforms.
And competition law enforced. Consumer choice doesn’t work when it’s a stitched up market like this.
If only something more than Pixels was supported.
Graphene os can run it on other phones, it’s just not as secure and you have to build it yourself
SOON
™
We will probably get GTA VI first.
Maybe even Star Citizen!
Blame literally every other hardware manufacturer for not implementing encryption enclaves correctly.
Most manufacturers don’t even allow you to unlock your bootloader nowadays. And the requirement of relocking it with custom keys basically means only Pixel phones (plus a few VERY old non-pixel phones) pass this absolutely basic requirement.
Oh yes the magical security black box that is 100% trust worthy! Surely nothing can ever wrong!
Do you recommend putting it on pixel 6? Or is it outdated?
older pixels have fewer years of GOS dev support remaining. recommend 7+
If you already have one go for it. My 6 with GOS runs significantly better than my 8 with stock android. I wouldn’t buy one specifically for it though, I’d go newer since it will be supported longer.
I’m waiting for a phone to meet Graphene’s requirements that isn’t made by Google. Then I’ll switch. Hope it happens sooner rather than later.
I initially considered that, but in the end I just bit the bullet and got one 2 weeks ago.
My thought is with the current trend of PC hardware prices, I didn’t want to wait to see how it affects phone prices.
At the same time, I do not know if the collaborative phone between GOS and the manufacturer will be something I like. The current Pixel 10 phone is already bigger than what I ultimately prefer and I think it’s more probable the new phone will be phablet sized.
And this is something I’ve been thinking about too. While I dislike the idea of giving money to Google, it might be something I have to just make my peace with as a one time purchase for the next few years (I’m not the kind of user that has to have the newest device when it comes out). I dislike phablets too, so I always try to avoid them. I also didn’t consider PC hardware issues like ram availability and such affecting the prices of phones until now, so good of you to bring it up. I’ll think about it.
will be phablet sized
Already is… but it is what it is. Welcome to gOS, we don’t have cookies ;}
Break free from Google by giving your money to Google!
I bought my Pixel 9 refurbished (as new).
Refurbished is a thing. So is
Spoiler
stealing
Doesn’t matter if it’s at the beginning or end of the pipeline. It’s feeding the demand.
I have a second hand Pixel for GrapheneOS to compromise without being compromised. Was degoogled with Lineage for many years, but it was becoming too much of a problem. I’m not happy owning literally a Google phone. Felt I had no choice.
Really, regulators are needed to sort this out. Consumer choice doesn’t work with dualopy.
Ideally we’ll eventually switch to a Mobile Linux OS in the future, such as postmarketOS, as that would not be beholden to corporate decisions like Android is with Google.
Which phone works completely on postmarketos? Looks like only librem5, which are expensive, especially for the spec.
No Linux OS currently supports many models of phones, and the ones it does support, it is still quite janky and not ready for a general audience (calling is often flakey, phone apps are pretty glitchy, etc). The best we can do at the moment is either donate toward those projects with either money or code (if someone is able to) to help get more hands on it to polish it up and expand support for more phones.
GrapheneOS is currently the only really polished privacy respecting mobile option that the average user can realistically adopt.
I bought mine from Telus … so i would think Telus gave them the money a long time ago for said phone and i’m just giving Telus back their money … now i’m not giving money or data to anyone.
I understand the complexity of supporting different hardware, but i cannot take this thing seriously while it only runs on google pixel phones.
A while ago they announced they were planning a collaboration with a big phone brand
Nothing else meets the secuirty requirements and they don’t want to comprimise.
Break free from Google with buying Google product? Lol
Ironic but true
Meh, there are better phones that actually support an open source community.
Fairphone with e/os has been working pretty awesome for me.
If what you care about is security though, nothing comes close to Graphene.
I care more about privacy and freedom.
Graphene has that too tho. Not sure how /e/OS is more private or free.
e/OS is fantastic, IodeOS also IMO, plenty good choices. LineageOS with rethinkDNS in whitelist only mode is also amazing
And for extra goodness supporting open source apps without trackers
All without handing yet more $$$ to nasty google, imagine that
There’s no reason not to buy a second hand Pixel.
other than a burning hatred for google that prevents you from participating in keeping the resale market high. lol
Break free from Google! By buying a Google phone…
That’s precisely my biggest problem with GrapheneOS
This betrays a deep level of tech illiteracy
Not knowing you can buy used/refurbished betrays a deep level of real life illiteracy
I know you can buy used and refurbished actually, that’s how I got my pixel. It’s still buying a Google phone. It still breaks free from Google. You have now reached the point of just regular old illiteracy I guess
I’m using Graphene for around a 6 months now on a Pixel 9, with F-Droid being the primary app source. I quite like it.
have you needed to use microG for any apps? is it a sufficient replacement for google play?
Well, I installed Play Store and Services from the Graphene App Store. Unfortunately my banking app must be installed from Play and needs services, but that’s really the only reason.
MicroG isn’t necessary with Grapheneos’s sandboxed Google Play.
Apart from unnecessary, pretty sure it’s also unsupported to begin with
Aurora is also a good substitute store if you don’t want to use sandboxed Google Play, but anything that uses Google Play Services will likely be borked
For most of the Play Store apps, it’s really a good alternative. However. some apps require to be installed from Play Store, like banking apps, but for everything else, it works fine.
GOS is great. Funny, I used to rom hop and distro hop a lot; but on GOS, I installed it once and so far so good (5+ months in).
Just some tips for new users: Just install it and dont be afraid to try things out (Google Store, profiles, Aurora…etc). Oh and dont make it tooooo complicate with many profiles and private space. You can test first but dont over do it if you’re not experienced.
And no, I am not a dev from GOS lol. I’m an ordinary user who wants to take control of my phone.
I got a new (to me) pixel a bit ago and haven’t switched back cause life has been crazy. I miss GOS. Maybe this weekend I’ll have a minute to do that.
Just some tips for new users: Just install it and dont be afraid to try things out (Google Store, profiles, Aurora…etc). Oh and dont make it tooooo complicate with many profiles and private space.
I recommend a clean main profile (i.e. no Google Play etc) and a corrupt profile, install your stuff then find FOSS replacements for main. Over time you naturally decouple from Google, but it’s there if you need it.
Thanks, I plan on doing this when my phone dies. Just some questions:
A computer with a Chromium-based browser (e.g., Google Chrome, Brave, Microsoft Edge, Vivaldi?). Unfortunately, I must recommend Windows 10/11 here, because then you don’t have to mess around with any drivers; it’s the simplest option.
This is the first I’ve read this, how much of a pain is it to use Linux instead? I don’t have any Windows computers.
First of all, we need to make sure that our phone’s software is updated to the latest available version. For this purpose, we go to Settings -> System -> System update. If necessary, we update
How is this possible if the previous step skipped SIM and Wifi setup? I assume, if there’s updates, to setup Wifi then proceed?
securing the phone with a fingerprint; I personally am an advocate of this solution…
Recommend not doing this for users in the USA, as police can compel you to unlock biometric locks. Yes, it’s fucked up, that’s what happens when octogenarian fascists run all three branches of your government.
This is the first I’ve read this, how much of a pain is it to use Linux instead? I don’t have any Windows computers.
No issues at all. Not sure what drivers the author was referring to but using the web installer you pretty much just plug the phone in and click through some buttons.
Recently had a similar issue with Via, the app for keyboards. Basically, there was an issue with chrome talking to the hardware…Except some lifesaver recommended plugging my keyboard directly into my machine, bypassing the docking station (the thing causing me issues) and fixing my problem. So I’ve technically still never had a driver issue, only a shitty docking station experience.
GrapheneOS has guides for installing regardless of platform, here’s the relevant page on their official site.
GrapheneOS supports a “duress password” that you can enter to lock up the phone and securely erase any data stored - it’s designed for those situations (so just push that pin in if you’re in that situation).
CLI installation guide is perfect, thank you.
I feel as though having biometrics installed, Face ID and/or fingerprint, kind of defeats the purpose of a privacy OS. Where as pin and a duress pin would be the choice going forward and managing the phones security.
It depends on your threat level.
For daily use the fingerprint sensor is just practical. I use it with a secondary pin, so finger and a short pin hits the right balance of security and convenience for me. If I cross borders or join a protest, biometrics are removed beforehand.
I put grapheneos on my current phone using my previous phone (samsung s22) and a usb c cable. Wasn’t hard at all, just had to follow the prompts.
I flashed my pixel to graphene on Linux without any issue. I used an arch based distro and temporarily installed Brave to perform the flash.
This is the first I’ve read this, how much of a pain is it to use Linux instead?
I flashed it on my 8a a couple of weeks ago using Chromium on EndeavourOS without issues.
I don’t remember if I did my phone on Linux or windows, but depending on your Linux install you may or not have drivers pre installed. That’s more of a result of Linux installing only what you need, vs windows installing everything someone might need.
As for wifi/updating, I don’t see it as a necessary step on a new phone. However, for a new phone it may be worth loading the stock OS, and running with it for a day or 2 just to make sure everything (WiFi, battery life, cell, BT, etc) actually works before you go crazy troubleshooting a problem that was there out of the box.
Once you do get Graphene installed, you’ll then want to check for any updates.
While having Finger print on/off is everyone’s personal choice, it is pretty easy to lock down the phone. You can spam the wrong finger a few times and it will force the pin requirement or if you press and hold the power button a lockdown button appears, either way it only takes a few seconds.
Despite what the news would lead you to believe, most people aren’t talking to police every day. That being said, if you are going to be in an area with high police presence, than turning off the finger print is 100% recommended.
This is the first I’ve read this, how much of a pain is it to use Linux instead? I don’t have any Windows computers.
You only need a browser that supports WebUSB.
Chrome and Brave support WebUSB on Linux.
How is this possible if the previous step skipped SIM and Wifi setup? I assume, if there’s updates, to setup Wifi then proceed?
I believe that vendors can include updates on the device that sit in the same fastboot space as you’ll be using to install Graphene. By running the system update, it applies any lingering patches, clearing the space for the Graphene install. The update (without SIM or Wifi) will only work if this is the case. So this step is more ‘ensure that there are no updates on the disk that will screw up the install’ than ‘make sure your phone is up to date’… since Graphene has its own methods for applying patches.
Smooth installation here with Vivaldi on Ubuntu (or fedora, not sure as I was distro hoppping a lot at the time)
Linux works broadly across a wide range of hardware, but it’s not 100%. You can ``very easily test hardware compatibility with a Live USB install of most Linux distros. Windows is a way bigger driver pain in the ass if you ask me.
