Privacy

31786 readers

195 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Posting a link to a website containing tracking isn't great, if contents of the website are behind a paywall maybe copy them into the post
Don't promote proprietary software
Try to keep things on topic
If you have a question, please try searching for previous discussions, maybe it has already been answered
Reposts are fine, but should have at least a couple of weeks in between so that the post can reach a new audience
Be nice :)

Related communities

Chat rooms

[Matrix/Element]Dead
Discord

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago

MODERATORS

[email protected]

Alternative to GrapheneOS (feddit.org)

submitted 3 months ago by [email protected] to c/[email protected]

42 comments fedilink hide all child comments

Im considering buying a new phone and i don't really consider a Pixel. I really like Fairphones approach, with the self repairable stuff. Even though they don‘t have a headphone jack. But well… I can’t change it. I’ll definitely go with the adapter over wireless headphones.

But to my question: What private OSes are there? Fairphone sells FP4s with eOS, how is that? And does it work on the FP5? GrapheneOS only works on Google Pixels right?

you are viewing a single comment's thread
view the rest of the comments

[–] [email protected] 1 points 3 months ago* (last edited 3 months ago) (2 children)

Graphene does only work on the pixel devices. What makes it special is that you can lock the bootloader again after installing it, which with things like lineage, you cannot do. I have never used /e/OS but i use lineage as my daily and it can be installed on FP

[–] [email protected] 0 points 3 months ago (3 children)

Honestly trusting the bootloader feels very risky

[–] [email protected] 0 points 3 months ago (1 children)

Ok what is your alternative? Android Verified Boot with a secure hardware keystore like the Google Titan M2 is basically the best thing you can get.

[–] [email protected] 0 points 3 months ago (1 children)

Strong encryption with a password you know only. The password should have a high enthropy

[–] [email protected] -1 points 3 months ago* (last edited 3 months ago)

This is unrelated. You want to familiarize yourself with the concept of OS integrity and how it is different from data encryption. You can have a passphrase that encrypts your data alongside having access to these hardware features.

[–] [email protected] 0 points 3 months ago (1 children)

GrapheneOS uses pixels because not even Google employees can break into it.

[–] [email protected] 1 points 3 months ago

Yes. Insider Attack Resistance is pretty awesome.

[–] [email protected] -1 points 3 months ago

It has very minimal code and its implemented in a robust manner. Unlike UEFI and the desktop implementation of secure boot, it does work well and it has not yet been exploited on pixels. Its way better to have any kind of OS integrity check than none.

[–] [email protected] 0 points 3 months ago (1 children)

What makes it special is that you can lock the bootloader again after installing it

I'm not sure why this is considered special. You can also re-lock the bootloader with CalyxOS, iodéOS and DivestOS. This is a Pixel thing, not a GrapheneOS thing.

[–] [email protected] 1 points 3 months ago

It's also possible to relock the bootloader on a handful of Motorola and fairphones, at least as part of the Calyx install procedure