TL;DR

  • Efforts like Graphene OS face increasing pressure from apps that refuse to run on non-standard Android.
  • The custom ROM project characterizes Google’s approach to device attestation as incomplete and flawed.
  • Graphene OS is prepared to take legal action if Google won’t let it pass Play Integrity checks.
  • flop_leash_973@lemmy.world
    link
    fedilink
    English
    arrow-up
    193
    arrow-down
    1
    ·
    5 months ago

    The world of mobile phones is a real world example of what we avoided on the PC back in the day when the IBM BIOS got reverse engineered allowing for someone to put out an IBM compatible PC without having to pay the tithe to big blue first.

    It has been pretty depressing to me that the tech literate have been so easily lulled into accepting such things in the name of “cool toys” and “security” virtually everywhere in modern life besides the PC/laptop/server spaces.

    This sort of Google and Apple duopoly was not something that was hard to see coming a mile away, yet we all collectively let it happen anyway.

    • dejected_warp_core@lemmy.world
      link
      fedilink
      English
      arrow-up
      10
      arrow-down
      1
      ·
      5 months ago

      It has been pretty depressing to me that the tech literate have been so easily lulled into accepting such things in the name of “cool toys” and “security” virtually everywhere in modern life besides the PC/laptop/server spaces.

      From my exposure to supporting said folks with PC related problems, its easy to see the reality here. Phones provide a streamlined experience with zero frills. They don’t want super flexible computing devices, they want appliances. More to the point, the level of care and maintenance needed to have a top-shelf PC experience is time and effort most people would rather not expend. Doing this right was inconvenient to begin with, and left the field wide open for anything that would be easier.

      • flop_leash_973@lemmy.world
        link
        fedilink
        English
        arrow-up
        12
        ·
        5 months ago

        My complaint is not that the “appliance” solutions exist for those that want them. But that there is next to no room in the market now for options that are not those “appliance” solutions for those that do want them but also want to take part in the modern tech world with things like NFC payments without having to trick the services with Magisk modules.

        • dejected_warp_core@lemmy.world
          link
          fedilink
          English
          arrow-up
          9
          ·
          5 months ago

          Oh, we’re on the same page there. I’m complaining about that too. Things are shifting from “make the environment easier for some people” to “painstakingly chisel out an expert mode like you’re escaping from Shawshank.” and I do not like it.

    • interdimensionalmeme@lemmy.ml
      link
      fedilink
      English
      arrow-up
      10
      arrow-down
      1
      ·
      5 months ago

      The PC was stolen fire from the gods. aRM snapdragon X will take back our fire, turn PC into smartphone on the desktop.

      • NicolaHaskell@lemmy.world
        link
        fedilink
        English
        arrow-up
        7
        ·
        5 months ago

        Heracles could shoot the eagle and break the chains, but then Prometheus might inform Zeus of the path to Troy. Titanomachy is one way of exchanging fire, but I’m human and content to hand it back and forth between each other. The pain of letting go is nuclear enough after Gaia and Uranus’s Family Vacation tore valleys through the mountains.

        • interdimensionalmeme@lemmy.ml
          link
          fedilink
          English
          arrow-up
          3
          ·
          4 months ago

          Chatgpt, decode this thread

          Your message draws heavily on mythological references and metaphor to discuss the evolution of technology, particularly the ongoing shifts in computing power and platforms. Let’s break it down:

          Stolen Fire from the Gods: This likely references the myth of Prometheus stealing fire from the gods to give to humanity, symbolizing the act of bringing powerful, once-guarded knowledge or technology to the masses. In a modern context, this could relate to how advanced computing technology, once limited to powerful PCs, is now becoming more accessible.
          
          ARM Snapdragon X: ARM architecture, particularly Qualcomm's Snapdragon chips, powers many modern smartphones and tablets. The "Snapdragon X" might symbolize the next step in this evolution, suggesting that these mobile processors are becoming powerful enough to rival traditional PCs, effectively turning a smartphone into a desktop-like experience.
          
          Heracles and the Eagle: In the myth, Heracles shoots the eagle that tortures Prometheus, which could represent a disruption or liberation. Here, it might be a metaphor for technological breakthroughs that disrupt the current state of computing, potentially "freeing" users from traditional PC constraints.
          
          Prometheus informing Zeus: This could suggest the risks of such breakthroughs—informing Zeus of the path to Troy might hint at unintended consequences or revealing strategies that could lead to new challenges or conflicts, perhaps hinting at issues of control, security, or privacy in technology.
          
          Titanomachy: The Titanomachy was a war between the Titans and the Olympians. This might symbolize large-scale technological battles or shifts, like the competition between different tech giants or platforms.
          
          Human Exchange of Fire: Unlike the gods, humans share knowledge and technology with each other, passing "fire" back and forth, which could represent the collaborative and iterative nature of technological progress.
          
          Pain of Letting Go: Innovation often comes with sacrifices—letting go of older technologies or familiar ways of doing things, which can be as painful and destructive as nuclear fission, perhaps referencing the intense impact and change technology can bring, much like the mythological conflicts that reshaped the world.
          
          Gaia and Uranus's Family Vacation: This refers to the myth where Gaia (Earth) and Uranus (Sky) bore the Titans, leading to significant upheavals. This could symbolize the fundamental, tectonic shifts that technological advancements create in society, reshaping landscapes (both literal and metaphorical).
          

          In essence, your message seems to discuss the transformation of computing power, the challenges of innovation, and the profound impacts technology has on society, all wrapped in a mythological narrative.

  • SpiceDealer@lemmy.world
    link
    fedilink
    English
    arrow-up
    125
    ·
    5 months ago

    I really hope the GrapheneOS team succeed. Custom ROMs are reason I’m really into tech today. Coding, FOSS, Linux, etc. all that came from rooting my dad’s HTC phone back in the day. Google shouldn’t cannibalize its children.

  • MentalEdge@sopuli.xyz
    link
    fedilink
    English
    arrow-up
    103
    arrow-down
    1
    ·
    edit-2
    5 months ago

    Hell yes.

    It’s fucking open source, this is no different from games with intrusive anti-cheat refusing to run on Linux, except in this case it’s not even a different OS.

    It’s monopolistic and anti-user.

    • lemmyvore@feddit.nl
      link
      fedilink
      English
      arrow-up
      15
      arrow-down
      5
      ·
      5 months ago

      Ironically, if Graphene would succeed, it would lead to a system that’s every bit as locked down as a manufacturer’s Android. GrapheneOS would also not allow you to have root etc.

      IMO Graphene wants a place at the big player table. They’re not in it for user freedoms.

      • saiarcot895@programming.dev
        link
        fedilink
        English
        arrow-up
        5
        ·
        5 months ago

        A manufacturer’s Android can have special privileges for their own apps, and almost will certainly have special privileges for Google’s apps.

        Graphene by default wouldn’t give special privileges to any app, so that’s at least a plus.

        It’s true that it would be locked down, but you at least have a couple more controls over how locked down compared to a manufacturer’s OS.

  • jhdeval@lemmy.world
    link
    fedilink
    English
    arrow-up
    83
    ·
    5 months ago

    Here’s my take which i have not seen in this thread. When you buy your hardware it is yours you should be allowed to do with it as you please. If you want to wipe the device and install another ROM or os you should be able to. Much like the recent fight for “right to repair” not allowing you to do what you want with your property should not be allowed. As long as the manufacturer blocks your ability to do what you want with your hardware it isn’t really your hardware.

    • gerbler@lemmy.world
      link
      fedilink
      English
      arrow-up
      35
      ·
      edit-2
      5 months ago

      Furthermore, if the manufacturer wants to pretend that they’re selling you a perpetual license to use the hardware or whatever legal bullshit they came up with on the back of a cocktail napkin between lines of coke then they can’t advertise using the words buy, own or anything similar without explicitly indicating in the largest font that you aren’t the owner of the product.

    • lemmyvore@feddit.nl
      link
      fedilink
      English
      arrow-up
      26
      ·
      5 months ago

      Unfortunately that line of thinking stops at the divide between hardware and software. You can legally make a phone manufacturer let you unlock a phone’s bootloader so you can install other software, and you can forbid them from denying hardware warranty because you installed other software. Both of which apply in the EU.

      But you can’t make them have their software support or play nice with the other software that you install.

      You also can’t force manufacturers to open up drivers if they’re under NDAs and proprietary licensing (which they often are, due to extensive cross licensing because everybody’s owning patents that can lead to everybody suing everybody if they were ever used).

      • stormeuh@lemmy.world
        link
        fedilink
        English
        arrow-up
        13
        ·
        5 months ago

        To combat this I think drivers, firmware, etc. should be acknowledged as being in the same category as spare parts, manuals, repair tools, etc. They are equally as vital to being able to repair your device, and therefore should be open sourced at the latest when a manufacturer pulls support. Of course I would prefer them to be open sourced immediately, but with how software IP works currently that seems like a pipe dream, especially for devices with very complex drivers, like GPU’s.

      • interdimensionalmeme@lemmy.ml
        link
        fedilink
        English
        arrow-up
        5
        ·
        5 months ago

        This is why raspberry pi can’t use a single smartphone recycled screen despite having a DSI port and a billion oled touchscreens going to landfill.

        Also, still is impossible to make Verizon unlock bootloaders

      • jhdeval@lemmy.world
        link
        fedilink
        English
        arrow-up
        1
        ·
        5 months ago

        You are absolutely right we can not make them give us access to drivers but just like with nvidia there are people willing to figure it out. I am not for government oversight but if the manufacturers refuse to offer any help then they may need to step in. The EU has made massive strides towards standardizing manufacturers. I also don’t think it would be necessary for the manufacturers to open source their software but its already wrote just release it as closed source so it could be used at the community level.

  • umbrella@lemmy.ml
    link
    fedilink
    English
    arrow-up
    77
    ·
    5 months ago

    yeah. like my manufacturers’ 3-year-old, full-o-spyware ROM is more secure than latest lineage.

    they just want control, not security.

    • newproph@sh.itjust.works
      link
      fedilink
      English
      arrow-up
      27
      ·
      5 months ago

      graphene sandboxes Google services so they don’t run as root on your device. I haven’t encountered an app I can’t get running on graphene yet and having Google play installed as non root is a far sight better than stock.

      my biggest problem with lineage was compatibility with banking apps so I reluctantly switched but graphene is a solid choice in operating system for privacy and security.

      • kspatlas@lemm.ee
        link
        fedilink
        English
        arrow-up
        3
        ·
        5 months ago

        Graphene is great, but I’m currently on a Xiaomi phone so I can’t run most ROMs, I’ll likely run derpfest when I get the bootloader unlocked

          • kspatlas@lemm.ee
            link
            fedilink
            English
            arrow-up
            2
            ·
            5 months ago

            I haven’t tried it yet, but it seems to have a lot of pixel features ported, I realized crDroid supports my phone so I might try that

        • newproph@sh.itjust.works
          link
          fedilink
          English
          arrow-up
          7
          ·
          5 months ago

          not really. after enabling oem unlocking in developer options you just boot it while holding one of the volume buttons and you’re able to unlock the bootloader.

          root is not typically available and you don’t need it for most uses besides development, but even then, I would recommend not using a phone you daily for that.

    • Cyyy@lemmy.world
      link
      fedilink
      English
      arrow-up
      9
      ·
      5 months ago

      same bs with apps not running jidt because root or apps not being visible in playstore because of it. Netflix isn’t even showing up as existing in playstore just because i have root. it’s nuts. and there are tons of apps like this.

      • x00z@lemmy.world
        link
        fedilink
        English
        arrow-up
        11
        ·
        5 months ago

        Netflix and their DRM is so extremely stupid it’s incomprehensible. It only hurts normal users while the rippers have no issues getting the content.

      • ReveredOxygen@sh.itjust.works
        link
        fedilink
        English
        arrow-up
        2
        ·
        5 months ago

        You can fix most apps with the Play Integrity Fix module and denylist. You might have to hide the magisk app too. It doesn’t get 100% of them though, I still can’t figure out how my bank app is catching it. Plus I’ve had RCS stop working with that setup, so I have to keep it disabled to avoid missing messages

        • numanair@lemmy.ml
          link
          fedilink
          English
          arrow-up
          1
          ·
          5 months ago

          The apple music app checks for a specific binary. Could be something like that.

        • pdxfed@lemmy.world
          link
          fedilink
          English
          arrow-up
          12
          ·
          5 months ago

          Yep been seeing more of that. Will just refuse to use it on my phone.

          It’s been clear for at least 10 years that apps are about data harvesting not making something more useful or easier to use or more universal than a mobile website.

        • vividspecter@lemm.ee
          link
          fedilink
          English
          arrow-up
          4
          arrow-down
          1
          ·
          5 months ago

          I’d just leave for a different bank at that point, although I get that it’s not always practical.

        • HappyRedditRefugee@lemm.ee
          link
          fedilink
          English
          arrow-up
          1
          ·
          5 months ago

          Graphene os + a work profile + sandboxed play services allows you to have some baking apps. Ive got 3 and they all work without a hitch.

    • aquinteros@lemmy.world
      link
      fedilink
      English
      arrow-up
      1
      ·
      5 months ago

      I have been using stock for a while, but I remember using magisk root to hide root to the bank app and I never had an issue

      • umbrella@lemmy.ml
        link
        fedilink
        English
        arrow-up
        4
        ·
        5 months ago

        i do that but sadly it aint working anymore. they implemented a new google sanctioned way of blocking it that hasnt been cracked yet.

        • Wildly_Utilize@infosec.pub
          link
          fedilink
          English
          arrow-up
          1
          ·
          edit-2
          5 months ago

          Not disagreeing I was genuinely asking.

          For me it wouldnt be too inconvenient but I barely use banks so my perspective is atypical

            • Wildly_Utilize@infosec.pub
              link
              fedilink
              English
              arrow-up
              4
              ·
              edit-2
              5 months ago

              Dont know what you mean sorry

              I did pull $600 out my sock at the best buy to buy my pixel recently tho lol

          • Manalith@midwest.social
            link
            fedilink
            English
            arrow-up
            1
            ·
            5 months ago

            I do basically that, but with aSamsung tablet, then my phone can be for phone things, calls, messages, emails. Then if I’m out and about and need to check my bank, mobile hotspot to my phone and go from there.

      • umbrella@lemmy.ml
        link
        fedilink
        English
        arrow-up
        2
        ·
        edit-2
        5 months ago

        thats what i do atm, but its a shitty solution when i have a perfectly good phone. it defeats the purpose.

        the irony is, my second phone is probably less secure, because its stuck in an ancient version of android.

  • androidisking@lemmy.world
    link
    fedilink
    English
    arrow-up
    39
    ·
    5 months ago

    Here’s a harsh truth and a reality some tech users need to wake up to.

    Google has never cared about open-source. They have never cared about user-choice/user freedom. They could easily tomorrow make Android closed-source and that would be the end of Android. It has always been about control. Apple got that authoritarian idea correct long ago by locking down the entire OS.

    Google is allowing open-source modding only because there’s a large community out there that cares and wants it to thrive. And since it runs on Linux, it would make Google look VERY bad if they removed bootloader unlocking, open source, removed features that causes issues for custom roms.

    Google doesn’t care you YOU. If they really cared, they wouldn’t be slowly removing features or adding anti-user features that in the long run, don’t benefit anyone but them.

    I’m glad the government declared them a convicted monopoly. I’m still ashamed it took them this long to finally go through with it.

    What an insane world we live in.

    • LwL@lemmy.world
      link
      fedilink
      English
      arrow-up
      7
      ·
      5 months ago

      Afaik GPL 2 would be stopping google from making android closed source anyway, unless I got something wrong about the license terms. But if anything that supports your argument. The main reason google is generally supportive of open source is that they recognize that they benefit from it. The moment that changes, google will try their best to close off anything it can (granted I don’t think it’s that likely to change, but they’re already abusing their position plenty).

    • auzy@lemmy.world
      link
      fedilink
      English
      arrow-up
      3
      arrow-down
      22
      ·
      5 months ago

      There is another side to this coin though,

      Android roms took googles work. The community could have assisted with other mobile os systems like Firefox OS or Ubuntu mobile but didn’t.

      Instead ROM developers wanted a cookie cutter solution.

      In practice, Android is actually open. Republicans have a weird obsession with Google (remember that weird hearing where they clearly didn’t understand technology).

      This could lead to a situation like windows where 50 popups are added. It’s could backfire and it benefits Apple a lot. That’s what I’m concerned about

      • pathief@lemmy.world
        link
        fedilink
        English
        arrow-up
        33
        ·
        5 months ago

        Android ROMs community took Google’s work? Are you forgetting which community developed Kernel does Android use? Let’s not think about the custom ROMs community as free loaders, please. They provide a free and amazing service.

      • Squizzy@lemmy.world
        link
        fedilink
        English
        arrow-up
        8
        arrow-down
        1
        ·
        5 months ago

        Can you handily disable notifications being monitored or the keyboard informing google on your typing? Disabling apps is surface level, the software is free to te end user for a reason, google harvests us.

  • mlg@lemmy.world
    link
    fedilink
    English
    arrow-up
    38
    ·
    5 months ago

    I hope some OEM (especially those opposed to google) picks up and develops mainline linux like Pine Phone. There are already several mobile UXs and distros with prebuilt images available as well, and it has been shown multiple times that Android apps can run fairly easily on linux. It would be a big risk, but I think it’d at least find a market success like the Steam Deck.

    Android in its current state is the same as Chromebooks. A glorified walled garden of google’s crappy choices & DRM which just so happens to run on the Linux kernel because it’s free. People downvote me for this, but I maintain that even Dalvik and the android runtime itself is an inefficient relic of 10+ years ago when mobile devices had at most 2gb of ram and a tiny low power ARM processor.

    It runs like complete crap sometimes on modern devices despite huge advancements in the underlying tech. It feels like a knockoff JVM which is already a known memory hog.

    On top of that, it sticks with single kernel releases with proprietary OEM binaries so you have devices out here running on kernels as old as 3.x because no custom ROM will be able to recompile the device modules for a newer kernel.

    It is almost hilarious to me that Moonshell, a multimedia homebrew software for the Nintendo DS (4mb of RAM), has more complete features, file compatibility, and better UI design than at least 95% of the music apps on Google Play. And it was written by literally one guy. I was honestly surprised at just how many music players lacked functionality as basic as supporting m3u playlists.

    • erwan@lemmy.ml
      link
      fedilink
      English
      arrow-up
      25
      ·
      5 months ago

      The problem of being stuck on an old kernel isn’t because of Google or Android, but because of chip makers (e.g. Qualcomm) not providing drivers.

      • jabjoe@feddit.uk
        link
        fedilink
        English
        arrow-up
        11
        arrow-down
        3
        ·
        5 months ago

        I do blame Google. It’s their platform. They could mandate upstream kernels.

        They could define auto discoverablity for their platform hardware. Then it would be possible for generic ROMs to boot on any Android phone.

    • _bonbon_@lemm.ee
      link
      fedilink
      English
      arrow-up
      22
      arrow-down
      1
      ·
      5 months ago

      I feel that the mobile world is ripe for disruption. There has not been excitement for new devices in a while from me and my friends who are all into tech. I remember 00s and early 10s where we used to discuss new devices all the time.

      Most of us are STUCK with Apple and Google because they have both built walled gardens. It is not just the apps, it is also moving away from open standards, moving away from even files. e.g., 10 years ago mp4 files used to hold all the metadata related to a TV Show/Movie so if you put that into a device (iTunes for example) it’ll have all the metadata, now this info is in a separate database. SMS for all it’s flaws was open, now google wants us to believe RCS is also open (LOL).

      This has led to a basic degradation in all the basics, echoing your example that it is impossible to find a decent music app.

      Even apples own music has has ACTIVELY DEGRADED. Bottom bar of apple music app was “Albums”, “Songs”, “Artists”, and “Playlists” and YOU COULD CHANGE THE BOTTOM BAR. Now it is literally “Home” == Ads, “Browse” == Ads (pls buy apple music), “Search” == Ads. and LITERALLY only 1 page called “Library” where you can access your own purchased library. Same happened with apple books.

      Android has seen similar shitty stuff, I remember being excited about actually FUN android games, tiny thief, vector, cut the rope, where is my water, etc. Now it is all ads, paywall nonsense.

      Not to mention the Today page of the Playstore ACTUALLY USED TO BE USEFULL for highlighting some apps. And is not LITERALLY ONLY F***** ADS.

      I feel/hope/pray that we have a SteveJobs 2007 type iPhone event around the corner, because everyone is ready for it.

      • ____@infosec.pub
        link
        fedilink
        English
        arrow-up
        8
        ·
        5 months ago

        There really is a dearth of choices. I’ve little love for Google’s version of android, mostly for privacy reasons.

        If I could get a decent phone that ran at reasonable speed for a tolerable price, without the tracking, I’d be willing to give it a go - and endure more than a few pain points.

        • LemurEyes@lemmy.world
          link
          fedilink
          English
          arrow-up
          5
          ·
          5 months ago

          Getting an “a” series pixel for a few hundred and going grapheneOS seems like a good option, no?

          • Hule@lemmy.world
            link
            fedilink
            English
            arrow-up
            3
            ·
            5 months ago

            I have tried it. Pixel 6a.

            My banking app works. That’s good.

            RCS messages don’t. Could live without that.

            Merlin bird ID doesn’t. Pain point all right, but I’ll live.

            My Galaxy Watch doesn’t. Probably not GrapheneOS’ fault, and I should buy a better watch, but that will only happen when this one dies.

            Now I use a pixel 7a with stock ROM. Everything works, and if I get sick of it, I can get back to GrapheneOS and it’s quirks…

    • emergencyfood@sh.itjust.works
      link
      fedilink
      English
      arrow-up
      4
      arrow-down
      1
      ·
      5 months ago

      I hope some OEM (especially those opposed to google) picks up and develops mainline linux like Pine Phone.

      Huawei is being forced to do it. But like Android, their HarmonyOS is not 100% open-source. There’s also KaiOS, which some Nokia and Alcatel, and all Jio, devices use.

      even Dalvik and the android runtime itself is an inefficient relic of 10+ years ago when mobile devices had at most 2gb of ram and a tiny low power ARM processor.

      Both the ones I mentioned are designed to be more memory efficient. KaiOS in particular is aimed primarily at feature phones and entry-level smartphones.

  • ArkyonVeil@lemmy.dbzer0.com
    link
    fedilink
    English
    arrow-up
    36
    ·
    5 months ago

    I’ve been tired of “modern” security doing nothing but annoy people. Recently, a Portuguese bank “innovated” by exclusively allowing login only on a mobile device. Yes, a clean web browser is not “secure” enough, has to be done on a mobile device. Clearly, desktop PCs are too insecure to conduct transactions.

    Therefore, because one does not trust their mobile device. One simply spun up a clean Pixel VM, shared my data with Google and just did their work there. Peak security.

  • archchan@lemmy.ml
    link
    fedilink
    English
    arrow-up
    36
    arrow-down
    1
    ·
    5 months ago

    I wish you could slap a custom rom on whatever phone you want and it Just Works™ like you can slap linux on any PC, but instead we get apps that potentially don’t work, locked bootloaders, push notifications tied to Google Play Services, and whatever else. You can put Lineage on the EU version of my phone but not the US version because fuck you. I hate how corpo centric phones have become. Like Google shouldn’t be allowed to hijack my entire screen for an ad or an app update. The entire modern definition of “sideloading” is BS, apps have access by default to things that they really don’t need, and why do I need to use ADB to purge your pre-installed bloatware ffs

    Not cool.

    • anon5621@lemmy.ml
      link
      fedilink
      English
      arrow-up
      16
      ·
      5 months ago

      We can get same experience quite soon on laptops too when arm laptops&desktop will arrive toensd users.It gonna be lock down same as phones nowdays.

        • oo1@lemmings.world
          link
          fedilink
          English
          arrow-up
          5
          ·
          5 months ago

          risc-V laptops might compete with arm in a few years - maybe not for power users, but for most simpl use , or for those who will just ssh into real computer.

    • sfxrlz@lemmy.world
      link
      fedilink
      English
      arrow-up
      7
      ·
      5 months ago

      Yeah it would’ve been like that for pcs too if they weren’t around for quite longer.

      • vividspecter@lemm.ee
        link
        fedilink
        English
        arrow-up
        10
        ·
        5 months ago

        ngl a unlocked bootloader would be a security nightmare

        So, like a desktop or laptop? Sounds fine to me.

      • ozymandias117@lemmy.world
        link
        fedilink
        English
        arrow-up
        7
        ·
        5 months ago

        How does one flash a ROM without unlocking the bootloader these days?

        Shouldn’t that break Android Verified Boot?

        A pure GSI image could use a Google key, I suppose, but others shouldn’t, right?

      • FinnFooted@lemmy.world
        link
        fedilink
        English
        arrow-up
        2
        ·
        5 months ago

        I’m not an expert, but I had an expert explain that an unlocked boot loader is only risky if you think someone nefarious is physically able to get their hand on your phone. Is that true?

  • mrvictory1@lemmy.world
    link
    fedilink
    English
    arrow-up
    37
    arrow-down
    3
    ·
    edit-2
    5 months ago

    I just want to buy a Linux laptop with VoLTE and be done with the product line “smart phone”. Unfortunately there is no such device (to my knowledge) and the only device that comes close is PinePhone Pro with docking station.

    • bitwolf@lemmy.one
      link
      fedilink
      English
      arrow-up
      4
      ·
      edit-2
      5 months ago

      Agreed. I always loved the idea of the HTC Mini +.

      Put the sim in your laptop, that’s the connectivity hub. The mini phone piggybacks the LTE connection so you don’t have to pull out your laptop for simple calls, texts, navigation or music actions.

    • Smokeydope@lemmy.world
      link
      fedilink
      English
      arrow-up
      2
      ·
      edit-2
      5 months ago

      You can put a SIM card in some older thinkpad laptops with that upgrade option. Some thinkpads have the slot for a SIM card but not the internal components to use it. So make sure to do some research if that sounds promising.

      There are VOIP phone line services like JMP that give you a number and let you use your computer as a phone. I haven’t tried JMP but it always seemed cool and I respect that the developed software running JMP is open source.. The line cost 5$ a month.

      Skype also has a similar phone line service. Its not open source like JMP and is part of Microsoft. Usually thats cause for concern for FOSS nuts, but in this context its not a bad thing in some ways. Skype is two decade old mature software with enough financial backing from big M to have real tech support and a dev team to patch bugs, in theory. So probably less headaches getting it running right which is important if you want to seriously treat as a phone line. I think Skype price depends on payment plan and where you live, so not sure on exact cost.

      • mrvictory1@lemmy.world
        link
        fedilink
        English
        arrow-up
        1
        ·
        4 months ago

        Neither is available in my region and Skype’s webpage does not mention making calls, only receiving them.

  • bitwolf@lemmy.one
    link
    fedilink
    English
    arrow-up
    19
    ·
    edit-2
    5 months ago

    Really the only thing holding me back from switching to GrapheneOS is that some of my apps fail CTS.

    If a proper pathway is defined for custom ROMs I’d switch in a heartbeat.

    Hoping this initiative leads to a reasonable outcome.

  • xia@lemmy.sdf.org
    link
    fedilink
    English
    arrow-up
    17
    ·
    edit-2
    4 months ago

    What gets me is the “this phone cant be trusted” message on boot. Implying OEM roms are trustworthy, but nothing i choose or create could possibly be.

  • Unreliable@lemmy.ml
    link
    fedilink
    English
    arrow-up
    12
    ·
    5 months ago

    Even just being rooted on the stock Pixel rom is a fight. It’s a constant cat and mouse game to pass basic and device integrity, but as of recently a lot of us have been able to pass strong integrity as well which has been nice.

    • FutileRecipe@lemmy.worldOP
      link
      fedilink
      English
      arrow-up
      3
      ·
      5 months ago

      Even just being rooted on the stock Pixel rom is a fight.

      That, I can see being more of an issue than an unmodified, trusted 3rd party OS. If I remember right, rooting makes the device fail Verified Boot:

      It establishes a full chain of trust, starting from a hardware-protected root of trust to the bootloader, to the boot partition and other verified partitions including system, vendor, and optionally oem partitions.

      https://source.android.com/docs/security/features/verifiedboot

      • Unreliable@lemmy.ml
        link
        fedilink
        English
        arrow-up
        2
        ·
        5 months ago

        Fair point. At least with stock rooted as I said there’s ways around it and I can pass all play integrity checks and such.

  • Eiri@lemmy.world
    link
    fedilink
    English
    arrow-up
    7
    ·
    4 months ago

    I really hope they fix this. When support for my old OnePlus 6 stopped, I was going to install a custom ROM until I realized bank apps, and most security-centered apps, wouldn’t work. So I ran with an out-if-date, possibly vulnerable OS for a year until (probably) corrosion from liquid exposure finally did the phone in.

    Really bad thing to incentivize.