Hello, making this post to get some honest, and technical opinions about GrapheneOS. Please do not be bother by this question. No drama here pls 🙏. I’ve heard that there is some of the google code into the “sandbox” feature. Say your opinion below! 👇👇

  • TheBigBrother@lemmy.world
    link
    fedilink
    arrow-up
    0
    ·
    4 months ago

    Ask me when the NSA knocks at your door, what I think about it? I think it’s a big honeypot.

    Think about it, if you were the NSA or the CIA would you push a privacy oriented OS? Honeypot vibes get stronger

  • CrypticCoffee@lemmy.ml
    link
    fedilink
    arrow-up
    0
    ·
    4 months ago

    Well it’s open source android, if the code is bad, it’s jettisoned. While I cannot stand Google, not every line of code they write is trash.

    The sandbox is good and you do not need to install Play if you do not want to. I use f droid where possible.

    I want Linux Mobile but it is not ready yet. In the mean time, this is the best we have.

        • Possibly linux@lemmy.zip
          link
          fedilink
          English
          arrow-up
          0
          ·
          4 months ago

          Do you? It ships proprietary Google services and encourages closed source solutions. Not only that, but the original developer is convinced that he is the only source of truth.

          • CrypticCoffee@lemmy.ml
            link
            fedilink
            arrow-up
            0
            ·
            4 months ago

            It actually doesn’t.

            It is the open source code. You can optionally install Google play in a restrictive sandbox if you wish. You do not have to.

            I cannot disagree with the last sentence. He has his fair share of issues, but it doesn’t take away from his ability or contributions.

          • user@lemmy.world
            link
            fedilink
            arrow-up
            0
            ·
            4 months ago

            It does not “ship” them. They are available at your option. Other solutions to solve the google problem such as MicroG have/had several security issues. My favourite was when they leaked user passwords.

  • umbrella@lemmy.ml
    link
    fedilink
    arrow-up
    0
    ·
    4 months ago

    if you have a pixel theres absolutely no reason why you shouldnt use it.

    if you dont i dont think its worth to buy one just for graphene

        • Possibly linux@lemmy.zip
          link
          fedilink
          English
          arrow-up
          0
          ·
          4 months ago

          I said ethical not technical. Anyway from a technical perspective Graphene os is only supported on a handful of devices so it is off the table for many people.

            • user@lemmy.world
              link
              fedilink
              arrow-up
              0
              ·
              4 months ago

              None. This person doesn’t know what they are talking about and they try to discredit the project based on their personal views and demonize the dev team.

          • user@lemmy.world
            link
            fedilink
            arrow-up
            0
            ·
            4 months ago

            By this logic rpiOS sucks because its only supported on Raspberry PIs. Only Pixel hardware meets the security requirements of Graphene.

            • Possibly linux@lemmy.zip
              link
              fedilink
              English
              arrow-up
              0
              ·
              4 months ago

              Raspberry Pis suck in general as they lack open firmware. You are stuck with the Raspberry Pi kernel and all of its blobs. “Security requirements” is something Microsoft says about Windows 11. If you are concerned about security your best bet is stock software as it is maintained by Google.

              • user@lemmy.world
                link
                fedilink
                arrow-up
                0
                ·
                4 months ago

                Again, you demonstrate that you don’t have the sufficient knowledge. There is no commerical device with open-source firmware. “Security Requirements” are not some kind of marketing bullshit as you seem to think. Graphene’s can be found here: https://grapheneos.org/faq#future-devices

                I doubt you understand what any of them mean, since you seemingly think Windows 11 requirements are just random things that are just there to hurt you.

                You thinking that Stock Google devices are more secure than GOS simply shows that you fundamentally lack the understanding of how things work. They are built on the same core but Graphene has massively reduced attack surface and fewer ways to exploit remotely. And then we didn’t even talk about the hardened kernel and such.

                I wouldn’t try to discredit projects I don’t know anything about if I were you.

                • Possibly linux@lemmy.zip
                  link
                  fedilink
                  English
                  arrow-up
                  0
                  ·
                  4 months ago

                  https://www.fsf.org/resources/hw/single-board-computers (2021)

                  https://pine64.org/documentation/ROCK64/

                  Pine64 boards rarely need proprietary software and they don’t need it to boot like the raspberry pi does. However, that is a discussion for another time.

                  You are also illustrating my point. The Graphene community has a my way or the highway mentality. As it turns out stock will often be more secure as it will have the latest security updates and will have less people handing it in general so less risk of supply chain attack from a bad actor in the community. However, this is a non issue. I find a lot of the so called security holes to be fairly mild as they require very specific targeting to exploit.

                  In general, the people around Graphene os and Divest OS are very toxic. In the F-droid board meeting the issue was brought up that the is censorship is promotion happing for Divest OS. People who criticized Divest OS were getting banned. The person who brought this complaint has a page where they go over there beliefs and bring forward evidence. I think they are a bit harsh but they do have a point.

                  http://opinionplatform.org/

        • Possibly linux@lemmy.zip
          link
          fedilink
          English
          arrow-up
          0
          ·
          4 months ago

          They encourage proprietary software and locked down systems. For instance, they use Google play services instead of microG and they promote the play store. I personally think that F-droid apps are much better from both an software freedom perspective and a privacy perspective. I’m not against people installing proprietary apps as I realize sometimes that is unavoidable but they could at least encourage the use of Foss. Graphene could simply have both F-droid and Aurora store by default and on setup explain the difference. They could even allow the install of Play services instead. However, they don’t even really try. They focus on security which at the end of the day is subjective.

        • /home/pineapplelover@lemm.ee
          link
          fedilink
          arrow-up
          0
          ·
          4 months ago

          Most likely talking about how the lead developer had a mental health crisis and lost his marbles. From what I’ve heard, he has stepped off to take care of that and the project is still going great.

    • ExcessShiv@lemmy.dbzer0.com
      link
      fedilink
      arrow-up
      0
      ·
      edit-2
      4 months ago

      if you have a pixel theres absolutely no reason why you shouldnt use it.

      Plenty reasons to not use it on a pixel…I had horrible compatibility with all sorts of banking apps, government 2FA and traffic warning systems, to the point where they just couldn’t work at all. Their sandboxed play services breaks a shitload of day to day convenience and even necessities to increase privacy.

      • umbrella@lemmy.ml
        link
        fedilink
        arrow-up
        0
        ·
        4 months ago

        this is a problem with all ROMs, actually.

        banking apps especially do everything in their power to block every phone that isn’t stock.

  • StormWalker@lemmy.zip
    link
    fedilink
    arrow-up
    0
    ·
    4 months ago

    I have been using GrapheneOS on a Pixel 7 Pro for 3 months now. I am BLOWN AWAY at how good it is. I have 3 user profiles. Main profile has no google services at all, and 95% of my apps are running there. Then I have a second user I can switch to that has sandboxed google services and my banking apps on it. I then have a third user that also has sandboxed google services running where I can install any random app that demands google services. (I have only 1 app on that user) . So 99.9% of the time my phone is running with no google services at all. (Side note: without even the sandboxed google services installed, apps need to be left open in the app switcher in order to receive notifications. If you swipe all your apps away, then you won’t receive notifications. This is not a problem for me, as I just keep my messaging apps open in the app switcher. But if it is a problem for you, you would need to run the sandboxed google services).

    I see GrapheneOS as a way of removing 99% of all the tracking, spyware and things that I dont like, while still having the convenience of having all the apps and features that are available on a regular smartphone.

    There is a learning curve, and many settings to learn and customize. But definitely worth it.

    To get a Pixel, instead of paying £900 for a new pixel 8 pro, I paid £300 for a second hand Pixel 7 Pro on eBay that was in perfect condition. So for £300 I now have a privacy phone and an AMAZING camera, which was very important for me the camera.