Get a Pixel 8 or 9 and install GrapheneOS. The recent changes to AOSP aren’t some death knell for the project. Even if it were: using GOS on an older Pixel for the next five years or so is going to be way safer than alternatives.
I’ll grant that whether or not this matters to someone depends on their personal threat model. My counter argument is to gesture broadly at the state of things. If they think the computing device they use most often shouldn’t be their most reasonably secured and trustworthy computer then I’m not sure there’s much else to discuss on the topic.
I want to be able to recommend any of the Linux phone projects or even something like Murena’s new partnership with HIROH but they don’t solve the problems GrapheneOS does.
This position misses the point entirely and introduces personal risk for no benefit. Buy a used Pixel if it makes you feel better about it. Then you’re upcycling.
Neither LineageOS nor /e/OS are comparable alternatives. They’re significantly less secure than stock Android.
“I don’t want to support Google so I refuse to use their hardware with an OS which, by default, prevents Google from achieving their objectives. Instead I’ll use insecure platforms that still give Google most of what they want.”
Android and Chrome are independent from Google in the same way that AT&T is independent from the NSA. The reality is that Google does what they want with both projects. Their main line of business is surveillance and those projects facilitate their business goals. GrapheneOS is developed for the Pixel platform because of the tight integration with Android from the hardware up.
This has allowed the GOS project to build a modified OS which is stripped of the default tooling and dependencies that give Google power over the device and its user’s digital ecosystem. The same cannot be said for any other project at the moment.
Using Google’s hardware to deny them access to the reasons they developed and produced that hardware to begin with directly spits in their face. It’s more effective to buy hardware from Google, or buy one of their devices second-hand from a trusted source, and then modify it to achieve our goals while denying our would-be owners their own than to continue capitulating to their brand of Surveillance Capitalism.
I really want to understand this, but I don’t find constructive information anywhere. Everything I read either doesn’t really explain anything at all and is based on assumptions/opinions, or expect me to be a mobile os engineer.
Let’s say I have a phone with lineageos, without google play services and without gapps, with most apps installed via f-droid and only a couple from aurora store. What power does google have over me, that wouldn’t also have if I used a pixel with grapheneos?
In terms of security, If any threat involving physical access to the phone is statistically irrelevant for me, how is my phone less secure than stock android? And how would grapheneos improve my life?
To your last, it wouldn’t. Graphene is smartly designed but everyone thinks you need all that security. Most people don’t and wouldn’t notice a damn bit of difference.
Lineage is offered on far more devices and if your main goal is just degoogling you get a lot more options without giving money to Google.
You’re absolutely correct. Living in the core of the empire or within one of its beneficiaries affords certain advantages which are made inaccessible to those outside of those regions. Your best approach is likely assuming your mobile device is compromised and only conducting sensitive activity on an inexpensive laptop you can reasonably secure.
Some secure-by-default Linux OSes I’d recommend are:
Get a Pixel 8 or 9 and install GrapheneOS. The recent changes to AOSP aren’t some death knell for the project. Even if it were: using GOS on an older Pixel for the next five years or so is going to be way safer than alternatives.
I’ll grant that whether or not this matters to someone depends on their personal threat model. My counter argument is to gesture broadly at the state of things. If they think the computing device they use most often shouldn’t be their most reasonably secured and trustworthy computer then I’m not sure there’s much else to discuss on the topic.
I want to be able to recommend any of the Linux phone projects or even something like Murena’s new partnership with HIROH but they don’t solve the problems GrapheneOS does.
The best breakdown of current options I’ve found is here: https://eylenburg.github.io/android_comparison.htm
Moving to phones made by google as a protest against google really seems weird. Sorry, but I will stick to the less secure options
This position misses the point entirely and introduces personal risk for no benefit. Buy a used Pixel if it makes you feel better about it. Then you’re upcycling.
By less secure I mean lineageos or /e/os. How does it miss the point entirely?
Neither LineageOS nor /e/OS are comparable alternatives. They’re significantly less secure than stock Android.
“I don’t want to support Google so I refuse to use their hardware with an OS which, by default, prevents Google from achieving their objectives. Instead I’ll use insecure platforms that still give Google most of what they want.”
Android and Chrome are independent from Google in the same way that AT&T is independent from the NSA. The reality is that Google does what they want with both projects. Their main line of business is surveillance and those projects facilitate their business goals. GrapheneOS is developed for the Pixel platform because of the tight integration with Android from the hardware up.
This has allowed the GOS project to build a modified OS which is stripped of the default tooling and dependencies that give Google power over the device and its user’s digital ecosystem. The same cannot be said for any other project at the moment.
Using Google’s hardware to deny them access to the reasons they developed and produced that hardware to begin with directly spits in their face. It’s more effective to buy hardware from Google, or buy one of their devices second-hand from a trusted source, and then modify it to achieve our goals while denying our would-be owners their own than to continue capitulating to their brand of Surveillance Capitalism.
I really want to understand this, but I don’t find constructive information anywhere. Everything I read either doesn’t really explain anything at all and is based on assumptions/opinions, or expect me to be a mobile os engineer.
Let’s say I have a phone with lineageos, without google play services and without gapps, with most apps installed via f-droid and only a couple from aurora store. What power does google have over me, that wouldn’t also have if I used a pixel with grapheneos?
In terms of security, If any threat involving physical access to the phone is statistically irrelevant for me, how is my phone less secure than stock android? And how would grapheneos improve my life?
To your last, it wouldn’t. Graphene is smartly designed but everyone thinks you need all that security. Most people don’t and wouldn’t notice a damn bit of difference.
Lineage is offered on far more devices and if your main goal is just degoogling you get a lot more options without giving money to Google.
Cool, but in my country when O find a used pixel 8 it usually costs around 700 USD! Too much for the hardware…
You’re absolutely correct. Living in the core of the empire or within one of its beneficiaries affords certain advantages which are made inaccessible to those outside of those regions. Your best approach is likely assuming your mobile device is compromised and only conducting sensitive activity on an inexpensive laptop you can reasonably secure.
Some secure-by-default Linux OSes I’d recommend are:
Parrot Security OS https://parrotsec.org/
Tails OS https://tails.net/
Qube OS https://www.qubes-os.org/
These are listed from most user-friendly to least. Signal has a desktop client that I’d be comfortable using on any of those three platforms.