Thread 106245663

>Only Google hardware is secure
>only Google Play is secure
>next best option is iPhone
>Old thinkpads running Linux are insecure
It may be counterintuitive, but this is what peak privacy looks like.

>PGP is insecure because.., because... users can export their own private key
>footguns footguns footguns

>>106245663 (OP)
you may not like it, but this is what tranime girls are built for

I'm on graphene. Not even because I really want to. But I'm looking into Linux phones thoughever.

>>106245663 (OP)
privacy != security

>>106246005
This is exactly what Graphene devs don't understand.

>>106245988
https://grapheneos.social/@GrapheneOS/114908889880074227

You shall all burn in eternal hellfire for questioning the divine wisdom of the Graphene Devs! Repent! Buy an iPhone now, as the holy devs command, and cleanse your sinful souls!

>>106245988
this is all such fucking snake oil. Smartphones aren't secure at all just by design, your "privacy" app doesnt do shit. They completely lack IOMMU and alot of other glaring issues. the stack is completely backdoored

The real problem with GrapheneOS is, they prioritize security (hardening, de-Googling) but ignore privacy fundamentals: metadata exposure, app tracking, and hardware identifiers. Marketing it as "privacy-first" is indeed snake oil. True privacy requires ecosystem-wide solutions, not just a secure device. Security ≠ privacy, but this what Graphene cultists don't get.

>>106247103
but the thing is its not even secure, if someone built a smartphone around the powerpc or risc-v ISA, with proper iommu implementation etc then we can start talking security. and as far as privacy goes yeah if it doesn't even do that what's the point? I just have an iphone for blue text thats about it.

Only chinese hardware and software are secure

>>106245663 (OP)
you may not like it, but this is what tranime girls are built for

>>106245988
the trvke that broke /g/

>/e/OS thinks privacy only means avoiding Google Services
I mean, yes? if you don't install botnet applications you don't have to worry about your privacy not being preserved, instead of relying on some lame privacy placebo toggles that surely get bypassed anyway

>>106245663 (OP)
I love the daily anti grapheneOS threads! (more than 60 this month alone!) So unique and DEFINITELY not against board rule number 1!

>>106245988
how does iphone protect your photos from being scanned by apple under the excuse of (((CSAM)))? has he ever addressed this?

>>106247679
>Posting official statements of Graphene devs is against board rules

Uh..Ok.

>>106247707
>retarded nigger thats hired to post on xitter represents all of grapheneos
ok

>>106247696
Yes, he said this is a conspiracy theory which is spread by the evil Rob Braxman.

>>106247715
Did you just called Daniel Micay a retarded nigger?

>>106247805
literally who

>>106247707
>Reminder that instigating OR participating in flame/brand wars will result in a ban.
Hello Braxman! I will NEVER buy your "BRAPPPPphone"!

This is why Graphene devs recommend iphones and Google Pixels which are totally open source and non proprietary

>>106247717
its not a conspiracy, feds/glownigs can just backdoor your shit and look at all of them. speaking from field experience here which is how i know. the software only has so much to do with it anyways

Better than stock Android, iOS or dumbphones, but it's non-free. We need a 100% open hardware, open firmware, open source and LIBRE phone. Until then, it's the best choice.

>>106246748
Stupid glowie

>Only Google hardware is secure
>only Google Play is secure
>next best option is iPhone
>Old thinkpads running Linux are insecure
>It may be counterintuitive, but this is what peak privacy looks like.

>>106245663 (OP)
Fuck it i'm using a flip phone

>>106245985
>Linux phones
So Android?

>>106245988
>>106246111
Cool, so what phone isn't full of spyware AND lets people use encrypted communication clients?

>>106249353
postmarketOS and other opensource options like the Liberty phone, Librem5, pinephone etc.

>>106247959
actual retard gamer brain consumer

>>106247954
this is what im more or less talking about

>>106249515
none of them. get a one way pager i guess

>>106249515
this

>>106246111
I like graphene but its made by literal retards, they keep promoting use of the worst government and corporate spyware and mindless consumerism like latest pixels and iphones where google and governments track your every move over actually free devices like PCs just because technically you can exploit the fucking smartcard reader on a thinkpad with physical access that no one ever uses anyways.
By having a graphene pixel you're objectively more supportive of modern surveillance than having even a spydows machine (10/11, anything older might as well be considered FOSS tier on the modern botnet scale)
GrapheneOS can run your governments spyware, and when you pull out your brand new Pixel you're getting pushed until you install, while if the only internet connected device you own is a decade old Dell Precision and no smartphone you'll just get treated like a 90yo grandma and be given the shit on paper or whatever the case may be. This is the biggest reason I refuse to buy into any smartphone including grapheneOS, now if they made it for a blackberry or someshit id be all over that.

>>106246111
Wow it's almost like he agrees with Stallman and firmware should be open so it can be patched. Only nonfree firmware has this problem.

bump

>>106249659
>pinephone
dont make the mistake i did
look at fairphone for it instead or something pinephone has like zero support

>>106245988
everything this guy shits out of his mouth makes me not want to use graphmeme i'll be real
t. pixel 9a with graphmeme

>>106253976
How would you compare a fairphone running Lineage versus a pixel running Graphene?

>>106254205
i have lineage on my old pixel 5 to dick around with
ubuntu touch on a pixel 3a
and graphmeme on my 9a
its honestly not that different for the user for lineage vs graphene, if anything the bitwarden integration seems nicer on lineage somehow but I wouldn't be able to tell you why
sandboxed google play versus microg so that's the main difference in my two devices

>>106249515
in all realism unless you're using hot burner phones there is no privacy whatsoever in mobile phones or cellular networks in general, if avoiding spyware and using encrypted comms is what you're looking for just leave your damn phone at home and use your computer for the rest of it

>next best option is iPhone
lol, lmao, not with an actual hardware backdoor
https://arstechnica.com/security/2023/12/exploit-used-in-mass-iphone-infection-campaign-targeted-secret-hardware-feature/

>>106254257
Which would you say is probably best for someone trying to get the most privacy/security, (That you could get with a smartphone, at least) and do you think sandboxed google play would be better than microg?

>>106254358
the best is probably no google play at all realistically
depends on what you use your phone for

>>106254410
Besides calling and texting, I essentially just use my phone for youtube and music (I can just use a front-end app or invidious and the like in that regard) searching for shit when I get curious, typing some shit in obsidian when I'm bored, checking email (could easily switch to PC for that) and chatting with a friend or two. What's good for that?

>>106254524
if a browser like fennec can handle most of that for you then i feel like anything that excludes google play should work fine
ie default lineage or graphene with sandboxed google play disabled

>>106254533
Would it be better to get Obsidian from something like APK mirror and block its network access in that case?

>>106254622
idk what that is
if it needs google play for sure then might be an issue
if its open source that'd be easier to get from fdroid or other sources

>>106254640
It's just a notetaking app that uses markdown files I like the layout of. I don't think its open source, but for what I use it for I wouldn't be needing the latest updates or anything, so getting the APK from a non google play source is probably doable.

>>106245663 (OP)
obsessed dead nigger baby of a thread.

most based thread on /g/ rn

I do not trust either google nor apple
now what?

>>106245663 (OP)
>>Only Google hardware is secure
Yeah, google is the only one that implements security chips properly
>>only Google Play is secure
eeeeh kinda
>>next best option is iPhone
Yes
>>Old thinkpads running Linux are insecure
Yes(might surprise you but old hardware has bugs)

>>106255913
>(((((security chips)))))

>>106254717
it's really dead but you're right about the obsessed and brown parts

fun fact, they will ban you from their matrix room if you merely ask about proprietary binary blobs and google's allegedly "required" ""security chip"", which is "required" for graphmemeOS "security" for whatever reason... just don't ask any questions goy!

>>106256325
>you HAVE to use retard-proof locked-down corpo-safe pro-government pro-israel anti-choice anti-freedom anti-user software because footguns

>>106247103
The problem is that they didn't realise the importance of freedom until Google decided to tug their chain and leave them helpless with a bloody asshole.

>>106255913
>google is the only one that implements security chips properly
Being able to keep some shit secure from root doesn't really do much when root controls the UI, security from root is only important for some irrelevant niches like passkeys.

bump

>>106256325
>Two thousand dollars for a two hundred dollar phone

>>106249515
Linux phones or something

>>106259506
*GNU/Linux
also the pinephone has a proprietary modem, modems are required to run proprietary firmware in most parts of the world by law, so anything with a modem is basically just spyware.

>>106259945
Other than just not having a phone, what do you suggest then?

>>106260067
have a nokia and take out the battery unless you have to use it right now, and dont use it at home or anywhere important

>>106260067
Not him, but I would say, just accept that there is no satisfying solution. What ever you choose, in the end you are choosing some kind of shit.

I am using a standard android phone without Google account. I am using this device to shitpost on 4chan, banking and messaging. It is bad. But I don't believe the other "solutions" are worth the money.

>>106260259
this is another way to put it
if you really need a 'smart' phone for some reason, maybe get some old potato thats supported by lineageOS and has an offline unlockable bootloader without bullshit that lets them take this away from you at any time they feel like it, install lineageOS, install magisk, install all the other crap you need to get rid of spyware (hosts file to block all sorts of shit/adblocker, lsposed modules, and don't even think about installing jewgle services)

>>106260478
Would one of those shitty sub 100 dollar motorolas and the like sold at Walmart suffice for that as long as the bootloader is offline?

>>106245663 (OP)
what's the alternative? trusting indians on xde? at least I know pixel phones and graphene are under bigger scrutiny compared to other phones/roms

>>106260547
>100 dollar
what the fuck, are you insane?
i wouldn't even spend 100$ on a whole computer, let alone a smart phone, and especially a brick phone.
get a used nokia (make sure its old because the new ones are full of "smart" bullshit too) from ebay or something, pay 10$ or at most 20$.
or wait, are you talking about motorola smartphones?
i havent actually seen one myself but i heard they make those, they might work if the bootloader unlock is 100% offline and without account bullshit, just make sure its officially supported by lineageOS. unofficial support from some pajeet in xda forums means that there are issues, aka good reasons why its not officially supported already.
check this https://github.com/melontini/bootloader-unlock-wall-of-shame/
and lineage's list of supported devices
if you dont mind shelling out money, oneplus, google pixels, or fairphone if you want to actually repair your shit and not deal with dried chinese virgin-boy-piss-egg-powder based glue.
afaik the bootloader unlock isnt entirely offline, but it should be easy with your own generated ssl cert and mitmproxy to work around.

>>106261559
Yes, and yes I do mean the cheap Motorola smartphones, I'm not that retarded. So, if I'm wanting to go cheap and not use a brick phone get a Motorola or something with an unlocked bootloader, preferably offline, and if I want something that might last longer and not be a pain in the ass to repair I get a fairphone with lineage or a pixel with graphene, correct?

The reason why GrapheneOS has become over night the "gold standard for private and secure phone OS" is because of Snowden. I tell you, if Snowden never had praised GrapheneOS, there would be no Graphene cult. The thing is, Snowden is the privacy pope and he has massive influence on privacy minded people. He is smart and he did an important job in unmasking our surveillance society. But he has no clue about GrapheneOS/Pixels and he can't objectively say, if it actually is what it promises to be. His recommendation was based on his gut feeling and not technical facts. But this was the moment the Graphene cult was founded and everybody started to repeating the line: "Graphene phones are the most private and secure phones in the world!"
Anyone with a little bit of tech knowledge knows, this is a oversimplifcation and misleading. But the propagandists were louder and they repeated this lie often enough, until it become the truth. I would like to hear a statement from Snowden TODAY about GrapheneOS. Is he still using his Pixel? Or is he staying silent, because he knows that he is responsible for this massive shit?

Anti graphene shills usually fall into the hole of "It has x and y problem therefore you shouldn't use it!"
And use what?
Default google?
iPhone?

>>106261905
>iPhone?
According to Graphene devs iPhones are halal.

>>106261832
So even though 'the most private and secure' is a lie, are they still a good option to consider?

>>106261832
Let me add another thought:

I believe, that the US glowies are not interested in killing Snowden. They realized, that he has a massive following and this is why he is useful to them. So they have found a way to manipulate Snowden into believing, that products like Signal and Graphene are secure. In other words: Snowden was psyopd by glowies into believing that Signal and Graphene are the reason why he is still alive. And this was the moment when Snowden made it public, that he is using these products, because he himself is convinced that they are good. And so began the massive psyop on a large scale: "Care about your privacy? Use Signal and Graphene! Snowden recommends!" The US glowies have a long history in manipulating people and turning them into useful idiots. I think, this is what actually has happened.

>>106262500
Good point. The devs' suggestion of Iphones are also pushing me further to lineage instead of graphene.

Breaking into a Linux computer is so easy it's one of the first thing cybersecurity students learn to do. Meanwhile even Israel forensics companies like Cellebrite can't break GrapheneOS. Real mystery why there's so much anti-graphene slop suddenly.

>>106262903
>Breaking into a Linux computer is so easy it's one of the first thing cybersecurity students learn to do.
>"look guyz I hacked into this unencrypted home partition, using ssh that was set to accept passwords, accept login as root, and the pass was '123' le haxor lolololol"
k

>>106263144
>Nigger has no actual rebuttal whatsoever
Many such cases.

>>106263317
I accept your concession

>>106254695
nta
i just use Markor

>>106247925
Proof or didn't happen

>>106263390
>The foaming nigger is still incapable of giving anything but nonresponses
Sad.

>>106263422
Thanks.

>>106245663 (OP)
>Make a bunch of random statements
>None of them are correct
Use case?

>>106248752
Literally nobody says this

if graphene wasn't secure there would be no need for spam threads like this


daniel micay is a complete schizo autist and that's a GOOD thing

>>106263611
No need to apologize

>>106263788
>H-ha! Take another nonresponse chuddy! Get heckin owned!
Grim.

>>106256325
they will ban you because they know that if you ask those kind of questions, you are most likely a freetroon who came here to infect people with his brainrot. Graphene community is one of the very few privacy communities that was not taken over by freetroons.

>>106261805
yeah, just make sure its supported by lineageOS (officially, not pre compiled pajeet ports)
>graphmeme
graphmeme is a joke, it hates your freedom and your privacy, for ridiculous imaginary "security" reasons
also try to avoid jewgle pixels, theyre annoying to fix, theyre overpriced, they literally have defective batteries (fire hazard), and they have jewgle "security" chips (basically black boxes with full control over the entire hardware, you have no idea what goes on in there, you have no control, and jewgle-shilling graphmeme devs claim that this is somehow "needed for security")
also, try finding an old used fairphone, theyre designed to last a long time and be repaired by end users, so it really doesn't make a difference if its used
all of them have removable batteries, so even if thats dead you can just buy a new one for 20$, take the cover off, replace it, and put it back on (without screws)
up to the 3rd model, they also have a headphone jack, a microSD slot, and sim card slots
they removed the headphone jack after that...
how the fuck can you sell a piece of hardware that can't output audio??
even a fucking gameboy has a headphone jack.
>>106261905
here are a few options:
lineageOS, or literally any other custom rom
dont use jewgle hardware full of backdoors
nokia brick
lunix phone
or dont use a phone at all
>>106261941
yeah lmao, "here is a proprietary backdoored obfuscated piece of malware, its totally fine! oh and by the way we write a totally private android rom for you too, if you ask too many questions or are concerned about binary blobs we will ban you from our matrix room."
>>106261832
snowden is a faggot people only listen to because hes a "former" fed, and leaked information about the NSA that everyone already knew about (but without actual evidence until then)
tor is literally operated by the feds, all proprietary software is malware, and no coping will save you.
>>106262500
hes just a spy for the US government stationed in russia

why wouldn't i just use an iphone? grapheneOS might be private but android phones are ugly and made for poors

>>106245663 (OP)
Obsessed brimstone o algo

>>106264515
Apart from the brainlet choice of getting rid of headphone jacks, would getting a used fairphone 4 or 5 give any benefits over a used 3 or no? I don't have headphones right now, but I'd still rather have a headphone jack. A linux phone like a librem 5 or another linux phone, but they tend to be overpriced even for smartphones.

>>106264781
*I'd like a linux phone like a librem 5 or another linux phone

>>106264651
>why wouldn't i just use an iphone? grapheneOS might be private but android phones are ugly and made for poors
SAAAAAAAR

>>106262903
109.196.129.52
try to get in, good luck rajeet.
>physical access
>decrypted hard drive
>ssh
>easy to guess password
those are you-problems. with proprietary software, you just have to ask shinbet to give you their pegasus malware.
>>106264781
more performance, better screen/cameras/battery life i guess?
but no, not really
>librem
i would say thats a borderline scam
the pinephone barely works btw (i have one, so i'm speaking from experience)
its neat to have a little tiny unix box i can carry around with me, but thats about all its good for, its just a computer but worse, and not a cellphone.
>>106264651
if you want to shell out money for garbage, at least spend it on something actually useful, go buy a thinkpad W700ds

>>106264934
More performance sounds nice, but I can't think of much I'd need that for. As for cameras I don't really care, but battery life is important to me. Thanks for the help. I have one last question though. If I do decide to go with a 4 or 5 and get headphones, do you know of a decent 3.5mm to usb c converter that isn't particularly shit?

>>106265143
look for 'Realtek ALC5686' on ebay/aliexpress, they are cheap tiny DACs, usually packaged into USB C 'adapters' (4 pole, they take mic input too, sadly all of them only have 1 port so you won't get a stereo mic or anything)
they can handle S16_LE/S24_LE/S32_LE audio + 44.1, 48, 96, 192, and 384kHz
don't spend more than 20$ on it, i paid 8 for mine.

>>106265549
Thank you. I wish they'd just start making pocket laptops you could put a sim card in and use phone calling software on a linux distro at this point.

>>106264934
Ok I was facetious when I implied Linux only meant physical-access decrypted Linux desktop. Server systems have a completely different security model than desktops and Linux is just fine there. Desktop Linux should not be compared.

Poor application sandboxing. Would you run an untrusted app on Linux? RIP your filesystem LMAO not to mention device access like mic and camera. Don't even bring up flatpak that shit is weak. On AOSP / GrapheneOS untrusted apps are strongly sandboxed (similar to how web browsers and many server programs sandbox themselves on Linux) and permissions are actually enforced. You can reasonably just install a random Android app and be fine because the OS is actually secure. On Linux you trust everything you run for better or worse.

Poor system integrity. Android's verified boot means not just physical attackers can't rootkit your phone, but even malware that achieved root can't persist in the system partition after reboot. Nothing even close on Linux. I could keep going.

Also don't forget GrapheneOS is open source. If you don't like agree with their hardware standards just take the code and port it to your shit tier phone or even PC. That would be equally FOSS to whatever Linux phone you schizos are using but actually with a chance of being private.

>>106265595
thinkpads have sim card trays, you can throw a modem card into it if you want
>>106265681
>servers have more security just because you dont have physical access
if you don't encrypt your hard drive and dont have a password, you are retarded.
>desktops should not be compared
its literally the same operating system
just dont leave your computer unlocked
>application sandboxing
your "sandboxing" wastes 90% of your performance for no reason and makes the entire OS useless garbage.
stop running proprietary software and you're fine.
> would you run an untrusted 'app'
no.
>flatpak
yeah flatpak is a joke
android won't prevent proprietary shitware from spying on you and fucking you over either, in practice it only restricts you as the user.
>"strongly sandboxed"
facebook and yandex fucked your joke of a sandbox, and you should STILL never run proprietary software no matter your operating system
>web browser
20000 vulnerabilities every day, enjoy your JS (remote code execution)
>on lunix you trust everything
i don't trust anything, if something is proprietary i'm 100% convinced that its malware.
>verified boot
except vendors backdoor that, and it restricts YOUR freedom
>physical access cant rootkit your phone
what stops anyone from overwriting the bootloader with physical access?
unless its proprietary bullshit that also restricts your freedom of course, imagine having a proprietary bootloader that can be "locked"
freedom is way more important than a bit of pseudo security to me.
>open sores
you mean the 9001 proprietary binary blobs?
android itself is nonfree and full of bullshit, it literally has APIs for advertisement and datamining built in.

>>106265891
Oh, that's nice. Do you know of a smaller one that might be good for what I mentioned?

>>106245663 (OP)
Don't care.
Still buying Pixel.
Still flashing GrapheneOS.
Converted my uncle last week, for his birthday!

>>106262500
>>106261832
You fedbois are desperate, huh?

>>106246017
No this is exactly what /g/tards don't understand. Unless you have a secure system you can't sandbox apps from maliciously invading your privacy. But that requires more than a first year college understanding of tech so it's already a at least 2 years more than /g/ will ever have.

https://arstechnica.com/information-technology/2023/03/android-app-from-china-executed-0-day-exploit-on-millions-of-devices/

>>106246748
Fucking KYS studid glownigger, that's why grapheneos uses pixels because they do. https://grapheneos.org/faq#baseband-isolation

But believe OP and be a good goy. Don't buy the one phone&OS combo the glowies get really angry when you have it. Buy a chinkphone with no security anon, you have nothing to hide!

LineageOS signed anti rms letter - sad

>>106261832
>>106262500
Okay but then why have other governments with a much, much larger stake in spying on people and stealing their personal information such as the UK have started trying to ban Graphene?

>>106268110
I think /g/ is just /g/lownigger at this point. It's not a big deal to USA Feds because calling the president a nigger isn't all that important but saying you don't want migrants in the UK is worth a 10 year prison sentence, minimum. So they don't send their best to tell you not use the secure OS

>>106268826
Being pro-GrapheneOS is NOT a controversial position on mainstream internet platforms. Go to Reddit, Youtube, Privacy Guides and say the line: "Graphene phones are the most secure and private phones in the world!" Here is your reddit gold, kind stranger! Have my upvote!

>>106245663 (OP)
Micay's idea of security and privacy is that all apps are sandboxed and have no access to user data no matter how malicious they are. He assumes all apps are malicious and will datamine you or whatever. So from his point of view privacy and security is hardening the OS to prevent that.
On desktop Linux the idea is that you only ever run trusted software whose behaviour is known because it's open source and it's vetted by repo maintainers.
Micay's work is commendable and he has a point that Linux security model is lacking but at the same time his use case is extremely retarded. He assumes he user will constantly run untrusted code and be targeted by exploits. The simple answer is just don't run untrusted code. As for exploits, it's pure paranoia and the odds of that happening are astronomically low if you stay updated.

>>106269454
>The simple answer is just don't run untrusted code.
Right because mainstream Linux distros have never gotten caught with "trusted" code that turned out to be malicious.

>>106245663 (OP)
>>106245988
>>106246111
this is what bunch of glowniggers looks like
this project is bought and paid

>>106268110
this is not what privacy looks like. what it looks like is a system you don't own anymore you fucking glownigger faggot tranny

>>106261832
>>106262500
>>106264515
there is no such thing as former fed

>>106245988
>>106246111
All truth nukes btw but retards in this board are too stupid to know that.

>>106269934
>gpu vulnerabilities
kys glownigger

>>106245988
is there anything from GrapheneOS account about hidden CPU instructions on iPhone uncovered by Kaspersky when they were targeted by custom malware?

>>106245663 (OP)
Thinkpads are very secure, the problem is that freeturds have never given the TPM any love so it's utterly unsupported.

>>106269967
Why are you telling a glownigger to keep itself safe?

>>106245988
This kind of thing is what got me to disregard "security" as a focus in apps.
It's all OCD stuff that doesn't matter. All of stuff they work on is mitigating an attack where the attacker is already running code locally on your device.
If an attacker is running code locally on my device, I already consider it over. I avoid that happening in the first place.

>>106252395
>they keep promoting use of the worst government and corporate spyware and mindless consumerism like latest pixels and iphones where google and governments track your every move over actually free devices like PCs just because technically you can exploit the fucking smartcard reader on a thinkpad with physical access that no one ever uses anyways.
I dislike their argument (and the arguments of others) that physical access vulnerabilities matter at all and that patches for them are a good reason to give up privacy, or anything else.
If the attacker has physical access, they can swap out your hardware for identically cased (and possible with identical components) hardware that runs a small operating system that acts as a bridge between their fake device and your real one, so the next time you turn it on they can send you a stream of your login/encryption panel and intercept your decryption keys, plus any talk over USB if you use a security key.
There is no defense for this, so why even worry about physical access attacks? Physical access should be considerd equivalent to full loss of control over your device.

>>106247876
The founder of GrapheneOS.
He isn't someone they outsource PR to. He is the guy who makes all of the high-level decisions about how GrapheneOS works. His thoughts re relevant to discussions about GrapheneOS.

>>106256539
>goonson

>>106245663 (OP)
I love it how freetards seethe so hard about graphene because they don't allow FOSS schizos to walk all over them. They have probably pissed their pants really hard when they were confronted with someone who won't allow them to derail their community. The fact that they would go as far as swatting micay or spam their matrix with cp just shows that they guy behind it probably cried like a 5yo toddler after getting banned from their forum/chat/whatever. i bet this freetard in question was weeping for like an hour or two when pressing the start button on his matrix spam bot.

So after all this, it's concluded that Graphene OS is still the goto option for security and privacy, right?

>>106271476
You tell me, I'm in an infinite loop of fairphone with lineage or pixel with graphene. I'm considering a fairphone with lineage.

>>106271476
>So after all this, it's concluded that
graphene shills try hard to shift narrative
they intentionally lie about their product being secure
at the same time they criticise every other product for the most trivial shit possible
just like how a glowie honeypot would behave

>>106271578
>it says as it posts on the glowing honeypot

>>106271680
>4chan is a glowing honeypot
that's obvious and nobody says otherwise unlike graphene

>>106245663 (OP)
>It may be counterintuitive, but this is what peak privacy looks like.
>Trying to make sense of an extremely mentally ill dude who's quite literally two weeks from committing suicide every couple weeks, I'd wager this negro is going to shoot a catholic school in the coming future because some catholic made a mistake while speaking about his distro.

>>106270044
>Freeturds

>>106271578
I posted this from my Pixel 7 Pro running Graphene OS

>>106273752
Why do u use then sar

>>106248752
>>Old thinkpads running Linux are insecure
They are in terms of firmware (unless you coreboot? idk), CPU microcode, and GPU firmware. That is true. Companies will stop providing updates for these things at some point. It affects even Linux/BSD distros because they still have to interface with this proprietary software.

Most of the issues you describe affect computers as well, even those running Linux. The mobo firmware is a huge chunk of proprietary shit, the CPU code is a huge chunk of proprietary shit, and if you have NVIDIA so is the GPU code. You can use corebooted ancient tech but then that won't have up to date drivers, as I specified in the above paragraph. There is no perfect solution.

>>106274004
I think only a portion of platform initializing code (cpu and ram) has to be a proprietary blob on haswell era and even less on ivy-era and pre. it's unclear which and how many of those supposed "old" and obsolete driver and firmwares do exist in a situation like this. There aren't even an attempt of project similar to libreboot/coreboot on phones so you have definitely no other choice than upgrade when your vendor stops delivering updates. also you have whole other shit like baseband processor/ram/firmware with unknown amounts of attack surface and capabilities (to me at least).
grapheneos here lies again by ignoring all of these and also the fact that it uses fused-in key for its core root of trust invalidates all of its security premises because you have to say "I 100% trust corpos to not fuck me over" in your threat model. there are no mention of this anywhere in the official sources of grapheneos because this crowd of people are (you can see one of them, shitting on FOSS above) corpo bootlickers in disguise

>>106274333
The one above wasn't shitting on FOSS

>>106274537
not him obviously.
this retard >106271176

I don't use a smartphone doe.

Though I do carry my corebooted thinkpad t440p running trisquel in my leather backpack I take almost everywhere I go. There's 6 places in my small town I can leech excellent wifi at once I get into town for to check my email or bank if I need to in my backpack or save map directions, I also keep a road atlas in my backpack.

I have a burner 4G nokia for SMS and calling my family with good2GO that I have the battery removed in a plastic ziplock baggy but I rarely use it but once a day at home.

In general I dislike calling because its recorded, SMS is tracked and phone companies know where you go so I keep it off.

https://youtu.be/v9B8y-AAdmA

>>106268110
>unless you have a secure system you can't sandbox apps from maliciously invading your privacy
this is an issue on mobile where every app is bloated spyware. in practicality it's not an issue on a linux distro or a bsd where virtually all of the software is foss and packages are signed. not to mention that sandboxing mechanisms exist for linux and bsd (e.g. firejail, pledge & unveil, freebsd jail)

>>106274333
Didn't read any of that shit. Still using Graphene OS

>>106271176
stop browsing 4chan and take your meds micay

>>106277053
No

>>106276808
>graphenetard refuses to answer any kind of criticism
I bet you feel shitty for not being able to delete (moderate) posts rn

>>106276721
>virtually all of the software is foss and packages are signed.
What does this have to do with anything? I could create a program that crypto locks your entire home directory, license it under the GPLv3, and sign it.
>b-but FOSS means everyone is looking at the code!!!
There have been decades old bugs found in extremely popular software like GRUB. Foss means nothing when it comes to security.

>>106274333
>there are no mention of this anywhere in the official sources of grapheneos because this crowd of people are (you can see one of them, shitting on FOSS above) corpo bootlickers in disguise
GrapheneOS also doesn’t mention the best ice cream flavor is vanilla, they must be chocolate shills in disguise. Retard. Oh, and all open source software is trash, that should get you seething for a while.

>>106277799
>GrapheneOS also doesn’t mention the best ice cream flavor is vanilla, they must be chocolate shills in disguise
I accept your concession, graphene shill

>>106277757
Wtf? Are you okay?

>>106277824
>no actual rebuttal

>>106280271
rebuttal to what? you were the one supposed to give rebuttal but chickened out.
grapheneos goes around criticising every project about their insecurity yet completely ignores its own. they put implicit trust on corporations in their threat model that they intentionally decided to be silent about.

>>106245663 (OP)
just a friendly reminder that anti-graphene threads are made by a unified alliance of daniel micay haters and swatters.

>>106277053
Do you have the audacity to tell me thats not the case?

>>106281148
>the case
what all I have seen so far is that graphenetards making some valid points about other software being insecure but lying or being silent about or even going so far as to keep the other from mentioning lack of user-settable root of trust. they are corpo bootlickers in disguise. also they get chickened out whenever someone assrapes them on a public discussion forum, lol.

>>106276398
>Though I do carry my corebooted thinkpad t440p running trisquel in my leather backpack I take almost everywhere I go. There's 6 places in my small town I can leech excellent wifi

-thinkpad t440p
-leather backpack
-uses free wifi in 6 places in a small town

You have basically identified yourself, because you have shared your highly unique identifiers. When AI sees some guy with a thinkpad and a leather backpack on CCTV, they know its you. They use AI to scan all posts on 4chan and this way they are able to identify you through correlation. You are sharing too much info.

>>106276808
Here is a TLDR:
Proprietary blobs, baseband risks, and trust issues undermine phone security.

>>106280271
>no u

>>106270357
He is also a retarded nigger.

>>106247418
N V K E
V
K
E

>>106272375
>deblobbed
>"open sores"
if it was free to begin with, it wouldn't need to be deblobbed
also graphmemeOS is filled to the brim with proprietary blobs
>>106274004
the only reason to buy a thinkpad over some other cheap panasonic toughbook is coreboot
>outdated drivers
this is why i insist on all of my firmware and drivers to be free
>>106274333
>you have to put 100% trust into corporations
EXACTLY.
>corpo bootlickers in disguise
fun fact, google actually upstreams a lot of graphmemeOS code, and graphmeme makes up new imaginary reasons for not supporting non-google hardware all the time whenever their old ones get debunked
i'm convinced that graphmemeOS is just another jewgle project to lure in privacy schizos

>>106282757
>graphmemeOS is just another jewgle project to lure in privacy schizos
privacy schizos - rightly - promote libre software and firmware over anything. libreboot went as far as removing microcode updates, because they are blobs, but had to back off.

certain circle of faggy security (nocoder IT guys lol) bloggers and their underage cultists now roam around internet and shill graphmeme, signal and tell blind trust to corporations are nothing to worry about and that proprietary software and corpo-bootlicking is good. they bash out things like FOSS and PGP and anything that's not glowing from 1 km away

>>106282953
>signal and tell blind trust to corporations are nothing to worry about

>>106282589
I don't like his way of thinking either (these are me >>106270292 >>106270338) but it just isn't accurate to pretend his thinking is irrelevant to the direction open-source Android security takes or that he's just some PR hire.

>>106272375
Oh no, lots of red!
I thought that too, but have you actually looked into what the rows in red for LineageOS actually mean and how they would (or would not) affect you as a user? I did, and I only found 1 or 2 that I actually cared about at all, and I could further modify my system to account for that.

What's wrong with using Lineage without mindthegapps or e/OS ?

>>106283574
How does lineage compare to IodeOs?

>>106272375
The table is misleading because it presents GrapheneOS as significantly superior in privacy and security, while downplaying critical limitations. It highlights GrapheneOS’s "opt-in" tracking ID and "per-connection DHCP state flushing" as unique advantages, but ignores that these features are often available or achievable in other distros via manual setup. The table also falsely implies GrapheneOS has exclusive access to advanced security features like hardened libC or SELinux policies, which are not uniquely implemented. Moreover, it omits that GrapheneOS's reliance on Google Play Services (via GmsCompat) undermines its privacy claims, as it still enables Google data collection. By selectively emphasizing minor differences and omitting context, the table exaggerates GrapheneOS’s superiority, making it appear more secure than it truly is compared to alternatives like CalyxOS or IodéOS.

>>106246005
Without security, how can you have privacy?

>>106283739
that whole image is retarded as fuck and made by a blatant graphene shill
>deblobbed
>yes, significantly
lmao, the only reason they went for pixels is because they needed that proprietary hardware for verified boot. the whole platform, from baseband hardware to its cpu, is filled with proprietary tech. even decades old x86 hardware (haswell) needs considerable amount of blobs to boot successfully. only retards look at this picture and think graphene is good

>>106283843
>Mediterraniggers

>>106268110
If you run a malicious app, you neither have privacy nor security.
If you run Google Maps, it necessarily will know your location, track it and send it to Google. Your "sandbox" would have to make it dysfunctional, at which point you could just... not install it in the first place.

You are a dishonest faggot who tries to bait people into using spyware, telling them that it's ok because muh magic sandbox.

>>106282953
i couldn't have said it any better than you, thanks anon.
>>106283295
even though his grammar is perfectly fine, signal literally requires a fucking phone number AND has centralized servers
go host your own XMPP server, set up ejabberd RIGHT NOW.

>>106283739
>tracking
lmao
>reliance on jewgle play services
LMAO EVEN
>>106283829
without freedom, how can you have control over your own computer?
without control over your own computer, how can you have any security, just "trusting some big tech companies to not run an auto update that backdoors you"?
auto updates themselves are backdoors if you ask me.
>>106283843
they claim that they "need" google's proprietary black box "security" chip with full control over all your hardware
let me guess, they "need" the ARM TrustZone too?
>>106284512
my point summarized, you might as well be like me and run everything as root on gentoo , it forces you to actually think about what you do, and prevents you from doing risky shit

>>106284552
>His grammar is perfectly fine

>>106284611
English is actually my 3rd language, the funny thing is that americans are usually worse at their own language than any ESL speakers, amerimutts don't bother to actually learn their language.

>>106284622
>L-le amewikanes sar
Kek. Seethe harder kike.

>>106284645
since when are jeets kikes?

>>106284990
The kike loves the turdie. Never forget this.