GrapheneOS Now Supports a Duress Reset PIN (grapheneos.social)

submitted 3 months ago by [email protected] to c/[email protected]

15 comments fedilink hide all child comments

GrapheneOS provides users with the ability to set a duress PIN/Password that will irreversibly wipe the device (along with any installed eSIMs) once entered anywhere where the device credentials are requested (on the lockscreen, along with any such prompt in the OS).

The wipe does not require a reboot and cannot be interrupted. It can be set up at Settings > Security > Duress Password in the owner profile. Both a duress PIN and password will need to be set to account for different profiles that may have different unlock methods.

Note that if the duress PIN/Password is the same as the actual unlock method, the actual unlock method always takes precedence, and therefore no wipe will occur.

Source: https://grapheneos.org/features#duress

you are viewing a single comment's thread
view the rest of the comments

[-] [email protected] 23 points 3 months ago* (last edited 3 months ago)

0118 999 881 999 119 725… 3.

This is great, I would like to also see a duress fingerprint option.

[-] [email protected] 10 points 3 months ago

The print of the middle finger, one might suggest

[-] [email protected] 7 points 3 months ago* (last edited 3 months ago)

That's funny. But I was thinking the opposite. Use your middle finger to unlock your phone, but your index finger is your duress finger. Because most people use their index finger/thumb. So it wouldn't raise suspicion

[-] [email protected] 8 points 3 months ago

I would definitely accidentally wipe my phone haha

[-] [email protected] 2 points 3 months ago

I was kinda being facetious, more of an F U finger than a serious suggestion.

In all honesty, I can’t see how this would be useful - either you’d have to use a finger that wouldn’t look natural, and give the game away, or use a thumb or index finger and constantly have to re-load your phone due to accidentally wiping it!

[-] [email protected] 2 points 3 months ago

If we get blessed with fingerprint readers on the back of the phone again, you could easily use inconspicuously any finger on your hand you want.

Perhaps for a fingerprint duress mode it simply shuts the phone completely off requiring the password. That would be reasonable middle ground. It'd be annoying when you get it wrong, but after a couple minutes you could get your phone back

[-] [email protected] 6 points 3 months ago* (last edited 3 months ago)

Unexpected IT crowd reference.

I think the android dialler has/had an Easter egg when you type this number in

E: the AOSP one still has it :)

[-] [email protected] 6 points 3 months ago

Good reference, I would set it to something shorter like 12345 (same thing an idiot keeps on their luggage). Keep your pin yours, but if you set the duress code to a default PW like that (and dont have kids that would just try the it at random) if the phone gets taken there is a non-zero chance that they just guess it and nuke the device.

[-] [email protected] 5 points 3 months ago

Well, that's easy to remember!

this post was submitted on 03 Jun 2024

94 points (99.0% liked)

Privacy

4018 readers

15 users here now

A community for Lemmy users interested in privacy

Rules:

Be civil
No spam posting
Keep posts on-topic
No trolling

founded 1 year ago

MODERATORS

[email protected]