- cross-posted to:
- [email protected]
- cross-posted to:
- [email protected]
You must log in or register to comment.
GrapheneOS. Easy, quick, reliable.
Yeah you have to buy a phone by Google but I don’t mind giving them money to reward them for making a decent phone with an easily unlockable bootloader that lets you do what you want with it, even if it means denying them your data. This is extremely atypical from a company like Google so I want to encourage that kind of behavior.
Literally the only reason i bought a new 8 Pixl Pro (absolut steal for 560€)
No thanks, I want root… LineageOS ftw
For peeps who want a lower cost option, Motorola allows easy unlocking too. I have a moto g7 power that I got for under $100 running Lineageos with microG. Its a six year old phone but it runs Android 14 just fine. I work in construction and I don’t even use a case because these Motorola phones are durable and inexpensive.
The easy unlocking isn’t the killer feature with regards to bootloader.
Being able to lock the bootloader again after having installed GrapheneOS is though.I mean, who cares if your boot loader is locked? I have ran unlocked since cyanogen mod days and never had a single issue. I’d rather have a better phone and root tbh
People who take security seriously do.
Just because you never had an issue doesn’t mean there’s no attack surface with an unlocked bootloader and root.
Due to the convenience I had rooted phones for years - without a single issue (that I was aware of).
Backup/restore of apps or phone, migration to a new phone is just so much easier with root unless you want to rely on ‘Google cloud’ for that.
But nowadays I value security more than convenience.
How do I know which ones do?
At least the ones supported by GrapheneOS, so the Pixels, but I haven’t really looked into it, so there may be more phones that do.
decent phone
-costs $800
-no SD slot
-no headphone jack
-no swappable battery
-camera juts off the back so it doesn’t even sit flatBut hey, you can take your temperature by pointing the camera at your forehead!
- ample space (256 GB for same price as 128 when I bought it)
- I use Bluetooth…
- great battery that lasts 2 full days and more, and can be changed by taking it to a shop when old, np.
- you… need your phone to sit flat? With the standard case it’s pretty dang flat anyway.
My experience with a Pixel 9 Pro, this is.
ample space (256 GB for same price as 128 when I bought it)
My music collection by itself is larger than that. Then on top of it I have game roms, movies, and books.
I use Bluetooth…
Even with my expensive earbuds BT is janky and there’s always a delay with every one I’ve tried.
great battery that lasts 2 full days and more, and can be changed by taking it to a shop when old, np.
You shouldn’t have to take your phone to a shop to repair it. I can change the battery in my phone myself in 30 seconds. No tools or risk of breaking it. There’s a button that pops the back cover off.
you… need your phone to sit flat? With the standard case it’s pretty dang flat anyway.
Yes, if I have to set it down somewhere precarious the less it can move on it’s own the better.
My music collection by itself is larger than that. Then on top of it I have game roms, movies, and books.
Yep, if you treat your phone like a laptop or hard drive, then you definitely need a phone with an SD card. No argument there.
Even with my expensive earbuds BT is janky and there’s always a delay with every one I’ve tried.
I don’t experience “jank” of any kind, but delay, yes indeed. If you are doing time-sensitive audio tasks/gaming, then definitely choose a phone with an audio jack.
You shouldn’t have to take your phone to a shop to repair it. I can change the battery in my phone myself in 30 seconds. No tools or risk of breaking it. There’s a button that pops the back cover off.
It won’t be as easy as that, but with new Pixel phones, there are official instructions on how to do this yourself now (I believe, some partnership with iFixit?). It requires some work, but swapping batteries doesn’t really need to be a 30-second maneuver for me either. It is done so rarely (years), so if it takes me an hour, I’m fine with that.
Yes, if I have to set it down somewhere precarious the less it can move on [its] own the better.
👍 I never take the risk of placing my phone anywhere precarious, but obviously if you are in the demographic where you have to do so (maybe in your line of work, or through your hobbies), you should probably buy a case that alters the shape of your phone significantly anyway. So I don’t see an issue here either. I just have the standard case from Google that fits the Pixel 9 and my phone is basically flat in the back.
Wow 2 full days. My Oukitel does 3 weeks.
Wow, my Nokia 3310 does 30 days. What’s your point? 2 full days is way more than I need it to do. I can charge whenever. 🤷♂️
You present it like it’s a good thing.
Those battery lives are absolutely terrible.
I’ve also heard it’s more like 1 day if you actually use it.
Nah, it’s two days and more with plenty of use.
It all depends on what you need. It’s not at all terrible if you have plenty of opportunity to charge. I charge every day, once a day, and I’m never below like 60%. Sometimes I choose not to charge for a day, and the next evening it’s at like 40% or so.
Very comfortable battery capacity. And the battery life is also great. My last phone, which was a Pixel 6, was also like this. I rarely ever went even close to the bottom half percentages on my phone, with plenty of screen hours each day. And it was like this all up until I switched phones. Barely any degradation noticed.
My Pixel 6 I still keep around with battery saver on, and I charge it once a week.
Maybe you shouldn’t listen to what you hear, sometimes. 👍
Who doesn’t charge their phone when they sleep at night?
What’s your Graphene compatible alternative? I might need a new phone this year.
I don’t have a suggestion unfortunately. I’m still running an LG V20 because I prioritize hardware features and nothing since I started looking to replace that phone has all the options I want.
Paid under 400 for a new Pixel 7 two years ago after waiting for the prices to go down and it was about to be discontinued. No idea how much they cost now but you’ll always overpay if you go for the latest and greatest.
Google usually does a good sale of the previous generation once the new ones are ready to come out. I got my pixel 7 $350 USD brand new right before the pixel 8 came out.
Pixel 7a can be bought new for 350€, this is what I would consider a decent phone. Admittedly I don’t need much from my phone other than text, web browsing, taking photos.
Less than half of that, if you’re fine with a Pixel 8a, which I would be.
I hate Google as much as the next guy, but if they offer me decent hardware at are reasonable price on which I can run GrapheneOS instead of their spyware, I’m not disinclined.You don’t have to purchase the flagship model
eBay, older model, profit
What are the chances the phone is still spying on you at the “hardware” level so to speak?
I was going to try this with my old Pixel 3 until I found out the bootloader was locked. 😡
Locked in a way you can’t unlock with developer settings?
Bootloaders are always locked, pixels generally let you unlock them, unlock is in developer options, Google for how to enable developer options
Correct, the option is simply greyed out. Based on my research, Pixel 3XLs purchased through Verizon are just locked and there is nothing you can do about it.
As someone that’s run older pixels on LineageOS for years now (no gapps, just fdroid), what benefits would I be getting from using graphene? I appreciate the hardening they do but my needs are fairly simple.
Find out too late that this exact sequence of events identifies you as Hamas to Mossad and your phone explodes.
Yikes
This post makes me want to check out graphene OS when I get my new phone.
You’re gonna love it. I switched about 6 months ago, and it has been nothing but fantastic for me.
Sorta feels like stepping back in time like 15 years with a phone that doesnt track you all day.
Feels so powerful to straight up deny all network connectivity to any app, at any time. 👨🍳🤌
GrapheneOS
GrapheneOS is amazing, but im on my 3rd issue with Pixel hardware. Bad battery, fingerprint scanner, and now sim card tray.
Must be extremely unlucky to have all those three.
I’m on my third Pixel phone without a single issue. 😬
Rough, my battery has been stellar on the 6 pro since I got it. I know its not a fix but you probably shouldnt use fingerprint unlock to begin with.
Install WhatsApp
That’s when you lost me. Either teach your boomer relatives to use Signal, Matrix, or, at the very least, Telegram. Otherwise, let them reach to you via Facebook which you open only in web browser in containerized tab.
Otherwise, let them reach to you via Facebook which you open only in web browser in containerized tab.
I just hire a rando guy from a different country to become me on Facebook. Then I have them email screenshots to a different email. A separate person gets those emails and prints them out. They mail it to a PO box, which gets picked up by a whole different person. The handoff happens at 615pm at the subway on Broadway Ave.
I open the handoff. It’s pictures of my niece celebrating her 6th birthday. I give the guy a thumbs up. He takes that thumbs up, translates it back to paper and reverses the whole process.
It takes 6 weeks for me to respond. But that’s the price of security.
If your friends and family are willing to use those apps over WhatsApp than they love you in a way I don’t really believe is possible.
I think you understimate boomer relatives intelligence =) Some simply can’t be taught.
What’s wrong with WhatsApp? Honest question. They are E2E encrypted just like Signal, right? Better than Telegram, which isn’t in normal chats.
-
It’s Facebook
-
It didn’t work on PC until very recently
-
It’s closed as fuck source. They went as far as sending cease and desists to third party client developers.
-
It’s tied down to phone number and shares it with everyone you talk to
-
It’s bolted down to gdrive
-
Only boomers use it to send trashy GIFs to each other
That’s about all I have, but I’ve never actually used it. Maybe someone else could chime in with more reasons, but for me those are already enough to stay away from it as far as possible.
Last point isn’t true unfortunately. My late 20s to mid 30s coworkers use it almost exclusively, as well as most of my customers, and even some businesses (AirBnB, airlines)
And then you get to Europe and notice that it’s used by literally everyone… :)
In Russia, too. When I need them I just call them and pretend to be ultra-Z-patriot and do my best to be extra annoying while complaining about them using an illegal app made by a designated extremist organization. Works well enough for them to at least offer another option.
South America, too.
The majority of humans are religious.
It didn’t work on PC until very recently
Wrong. It had an official webapp since forever.
Wrong. The webapp was (still is?) just a glorified remote to a phone app, and would cease to function if you turn off the phone.
… because chats are E2E encrypted. It still has a web app. Why wouldn’t it count?
The same reason as… say, you can’t say Gran Turismo works on PC, even though its compatible with PlayStation’s remote play.
And I don’t buy the E2EE argument. It’s not impossible to have multiple “ends” on each side e2e. Heck, they’ve done it themselves… In 2022. Given their track record, I’d suspect they’re just doing something shady in the app and are being overly protective because of it.
deleted by creator
But we’re not seeing some screen sharing of the android app. We’re seeing a completely separate web app, running in the browser. The only difference is from where it is syncing its messages. It’s a real web app.
And it works this way because chats are only stored on a single “main” device. Then they sync to connected peripheral clients as needed. I think that’s a good thing, to be honest. I don’t see that as a negative thing. It’s not stored on any server (I assume(?), due to the current behavior), which is nice.
I got my family’s chat onto signal as neither I nor my partner have Facebook accounts and they were using messenger
I deleted my old Facebook account to bring that situation about, though
Good for you. I wish my friends cared enough about privacy. I need more tech bro friends I guess.
Mine aren’t techy. I have them a problem and a solution, they accepted it
That’s the thing. My friends don’t care about the problem. It’s not important enough. 😭
Well that sucks
-
No its not. Only your chat is E2E, other meta data is collected. Who you have saved in your contacts, who you are talking to. Your friends, family co-workers etc. They are all connected to you.
So if only one of your friends were to voice their opinion about a controversial opinion (eg palestine, luigi etc) it will be linked to you.
I thought WhatsApp used the same encryption tech/lib/method as Signal? But again, as you said, still only for chats?
But how would anyone know if we’re talking about Palestine or whatever, if chats are encrypted? Or do you mean talking about Palestine elsewhere where it isn’t encrypted, and then it’s linked to me via WhatsApp connecting us?
Yes, if someone talks about it on fb or insta, it would be immediately linked with their phone number which is also a requirement for Whatsapp.
I was recently watching an interview with some tech workers who were fired for voicing their opinion against israel and one of them was from Meta and she confirmed that meta is closely working with IDF especially sharing WhatsApp meta data.
Weeell then, that’s pretty fucked up. Yeah. Going to continue recommending other alternatives, in that case.
Thanks so much for sharing.
As someone that lives outside the US, this is not a real friction point.
What do you think all the rest of the Boomers in the world do?
Alright fine, you’ve convinced me. I’ll give LineageOS a try.
My phone constantly complains that such-and-such won’t work unless I enable Google Play Services. (and yet I still don’t do that.)
You can disable just these notifications by long clicking them and going into settings.
Literally me with Calyx OS
Me with most cheap tech I buy. Got a Amazon TV for like $200, and immediately went to blocking it.
more like dephone
This is great if all you want is a dumb phone. Or you’re perfectly ok without all the things that make your phone smart. Check the balance on your banking app? Nope. Venmo a buddy because your buddy is spotting you? Nope. Chat with your friends or family where they are, not forcing them to use another app they don’t want? Nope.
I think everyone should be picky with what they are comfortable using on their smart phones.
Unless you’re some kind of tin foil hat person or have a specific phone use case or a criminal or terrorist, there isn’t many reasons to root your phone.
There are two kinds of people: criminals and really fucking stoopid, hypocrite, ignorant, criminals… Be the former. Only war is the class war. 🏴🏴🏴✊🏿
I know Lemmy hates Apple but
get new iPhone
plug into computer
click button
new phone exactly like old phone
While that is true, that just means they already own your soul and don’t need you to reiterate it with every new phone. The fresh setup is just as awful as on Android.
……or you saved a local encrypted backup.
https://support.apple.com/en-us/108353
I love when people call Apple out for their bullshit but this is just another case of automatic hate with no further attempts to understand the process.
As far as companies go, Apple is pretty good about keeping your private data private. They don’t want the liability of leaking confidential data or to have the risk of creating a backdoor into their devices.
If you want to make a local backup of your device and encrypt it with a password you define, you can. And you don’t even need a Mac to do it.
Yeah the whole ‘Apple = BAD’ trope here is obnoxious. iOS with Lockdown mode and Advanced data protection (both relatively new features) is plenty good (and probably overkill) for most threat models.
Yeah I get the hate but the blanket hate for all things <insert_company_here> is not productive.
Yeah… That device you’re backing up… You had to set that up at some point. Perhaps it’s the 10th device you used the encrypted backup to transfer all your data from, but at some point you had your first device that you set up fresh and you had to go through all of the prompts.
Not to discredit how neat being able to do an encrypted backup is, that’s certainly a feature all phones should have.
Right, but it’s entirely possible to set it up once without opting into any Apple services (owning your soul), back it up, and never have to do it again.
The fact that every device requires an initial setup done once aside, the user you responded to simply made a point about how much easier it is on iOS to bypass that process going forward than it is on android.
You are missing the point of this post. They are criticizing the lengthy and difficult process of installing a custom ROM on android smartphones. iOS is not a custom ROM, and probably even more difficult (if not impossible) to install a custom ROM on ios
The 4channer isn’t installing a custom ROM though, they are just rooting the phone and removing things.
Which is about the same result as not hitting decline and logging in to your Google account on an Android.
If you give your phone maker power of attorney, they’ll even set up a will for you! So ease of use!
>reboot to bootloader -> unlock -> you will use your warranty -> yes
It’s fucking outrageous that companies are allowed to blatantly lie like that (you will not, in fact, lose your warranty – Federal law doesn’t allow it). Every company that displays such a fraudulent message ought to be fined by the FTC, or worse.
The amount that companies lie about laws is just disgusting.
Oftentimes most of the EULA isn’t even enforceable, but they put it there anyway. It really ought to be illegal to do that.
ought to be fined by the FTC, or worse
Fines don’t work, just start throwing people in jail already.
By its nature, the only penalties that can be applied to a corporate entity are fines or revoking its charter. The latter is what I had in mind when I wrote “or worse,” although I suppose piercing the corporate veil and going after the company’s executives personally is certainly an option too!
It’s insane to respect corporations’ rights when we know very well how pointless they are for the public’s interests. We want proper behavior and serious punishments. We don’t want to respect corporate and their rights.
We might also need voting records so we know which members of the board need to be punished for corporate action
And it there’s been a failure to keep voting records, punish the whole board. Be more ruthless to these fucks.
Board members should be individually liable
You can pierce the corporate veil. "What lawyer approved it? Who was responsible for putting that message there?”.
The corporation might not be able to be punished, but the actual people who did the thing can be.
The corporate veil for legal action only makes sense for a limited number of things that are problematic for the company but no person could really be expected to have directly made the choice.
OP seems to be Austrian. I don’t think the FTC has anything to say about Austrian laws.
OP may or may not be Austrian, but is definitely behind seven proxies
I got that reference.gif
OP is most certainly from a German speaking country based on the fact they wrote deinstall instead of uninstall, which is a false friend of the German word ‘deinstallieren’.
Good to know… Is this only related to software hacking? Or is the warning sticker on hardware also bullshit?
The warning sticker on hardware is also bullshit.
The TL;DR of the Magnuson-Moss Warranty Act is that if the manufacturer wants to deny your warranty claim, the burden is on them to prove that the owner’s “unreasonable use” (abuse), neglect of required maintenance, or modification of the product was the actual cause of the failure.
For example, a car manufacturer can’t use the fact that you tinted the windows as an excuse to deny your claim for an engine failure, but they could deny it for your failure to perform oil changes.
Unfortunately the TOS you agreed to says a ridiculous “arbitration” will determine who’s right that you abused the equipment - and guess who the arbitrator will decide for.
Add it to the pile of reasons why, for products (as opposed to services), things like EULAs and ToS are unenforceable bunk.
I’ve heard that from a lot of people, but never seen it in action. Someone who sues or somehow gets what they want in spite of arbitration, I’d like to see that.
In EU at least
So in other words: the rule applies to you unless you can afford to pay a bunch of lawyers.
Not in the case of a googlephone.
Hardware sticker is bs
In all of the US?
Yes.
Edit: Side note for consumers: Some US states have something called “implied warranty” laws that extend the warranty period of almost ANY product you buy – even online – usually for up to 4 years, and some states also extend it to used products as well.
Terms & conditions are more a wishlist than anything else ;)
At this point, I find a rom I like then shop for a new phone in the supported section
Bought my Pixel just for GrapheneOS. It is not perfect, but better than all the Samsung etc. shit. And for the next couple years I am not forced to upgrade due to missing security updates, so there’s that.
Exactly what I did, my Samsung had a tired battery and wanted to just start fresh with a privacy oriented device. I just hate the irony of having to buy a Google phone to get away from Google.
I ran my secondary phone on Graphene for a while until I decided I needed my bank apps and work apps on my secondary phone or it’s a bad backup, so I restored Google’s OS to it and locked the bootloader again so I could use those apps
It sucks that Samsung can’t be resecured by reinstalling the official image
Did the apps not work on GrapheneOS? My banking stuff works flawlessly for me that way 🤔
Nope, all reported phone insecure
Dang, sorry to hear that. Shitty apps.
Yep. I suspect one of the two big banks added the check and the others followed
Same with calyx
Me too, it’s awesome, I’m not planning on going back. On top I always buy the phone on the secondary market, still sealed, pay cash and everything works out great :D
Who makes you upgrade your phone? Does anyone have a case where something bad happened because of outdated security patches? I haven’t come across any apps that don’t work because of outdated security patches, but a bunch of apps won’t run if you have root on your phone.
Running insecure software is a bad idea.
I asked about real cases. And if it’s a bad idea, why do banks allow their apps to run on “unprotected” phones?
A lot of hacks are done through browsers. Phones have browsers. When the Chinese make off with Federal Reserve documents because Joe IT logged in with a phone it doesn’t make it into the news.
It’s just the case that patched security flaws are standard practice for a reason. Hey - use http only, make all your passwords Password1, knock yourself out, but don’t expect others to be like “Yeah! Why are we doing all this . . security ???”
It’s a bad thought process to ask for proof that security matters. You do not require proof of that as we know that it does. Many identities are stolen every day.
I think that all this hysteria around security updates may be part of a marketing ploy to increase sales of new phones. Why? Because 3 years ago, no one cared how many updates a particular phone model would receive. I also found information that more than 80% of Android smartphones in 2015 had known unpatched vulnerabilities. However, I don’t know of a single case where my friends’ phones were hacked without their involvement. But I know 1000 cases when my friends clicked on a fake link and entered their passwords/card details. Anyway, I agree that security patches are a necessity, but not a reason to immediately buy a new phone when my old one stops receiving updates.
Do you walk around with your shoes untied because you don’t know anyone who tripped over their laces?
more than 80% of Android smartphones in 2015 had known unpatched vulnerabilities
This is a reason to stay up to date, not evidence that you don’t have to care about it…
immediately buy a new phone when my old one stops receiving updates.
If your phone stops receiving updates, it’s probably over 5 years old and should be replaced by more modern hardware. I’m all for recycling electronics and not being wasteful but it’s really asking for it to base your digital livelihood on the idea that you probably won’t be a victim.
if it’s a bad idea, why do banks allow their apps to run on “unprotected” phones?
My requirements for and definition of “security” differ substantially from my bank’s.
Security patches address vulnerabilities that hackers can exploit to do fun stuff like steal your personal data, install malware, or compromise your financial accounts.
While you may not have personally experienced issues, outdated patches leave your device and data exposed. Cyberattacks are often silent, and the consequences - like identity theft or financial loss - can surface long after the breach. Think fucking without a condom and trusting your pull out game, and years later that ONS calls you and asks for money for the one to x children you fathered that night…
So upgrading isn’t just about apps working; it’s about safeguarding your privacy and security in our connected world.
Off the top of my head, I remember the Stagefright vulnerability on phones a while back. That was probably more than 10 years ago now, but I remember finding out my phone was vulnerable at the time.
Same. That’s how I ended up with my current Samsung S8 + LineageOS, as pixel phones basically don’t exist in Brazil.
Don’t forget the part where the preinstalled OS forces you to accept the Google ToS. You just spent a few hundred bucks on a new phone and then it won’t let you use it without also selling your soul.
I am concerned to find myself in a green text unironically
My sexual orientation is now this post.
