from Adderbox76@lemmy.ca to privacy@lemmy.ca on 11 Oct 17:45
https://lemmy.ca/post/53205549
I’m tired of collecting phones, and frankly I’m a little money strapped and kind of want to coast by on older phones for a while. But I’m wanting to de-google as much as possible.
Of the last few phones I’ve had, all are working well. Most have been able to be kept relatively up to date with LineageOS, and a couple have /e/os/ versions available for them (one official, one community)
-
Essential Phone (Community Build e/os/…not sure if still being updated or not though.)
-
Moto One Hyper (No e/os/ build. Sadly not a popular enough phone)
-
Moto One 5G Ace (Has an e/os/ build. Currently being used as a DIY game emulator on LineageOS)
-
Motorola Edge 2023 (Current Phone. No e/os/ build. It’s essentially a canadian variant of the Motorola Edge 40 Neo…which are the only two newest phones to use the Dimensity 7030 chip, making it incompatible with the regular Edge 40 or 40 Pro e/os/ builds.
I’m using /e/os/ on my Essential phone (though not daily driver) to get a feel for the software and the Murena app/account. I’m willing to give up my game emulator to put it on the newer phone if I like it (though it would suck to lose my FFVII and Chrono Trigger playthroughs)
Ideally my Edge 2023 would have a build. But I’m not going to expect a chipset used by only two phones total to garner that much development focus (and rightly so)
Anyone have more long term experience with /e/os/ and Graphene and tell me what Graphene has stronger?
Thanks
threaded - newest
Well, yes and no.
/e/ is more de-Googled than LineageOS, and it also replaces some GApps with its own ecosystem (whereas LineageOS just gets rid of them). I would say that this makes it slightly more private.
However, /e/ also takes a lot longer to apply updates from upstream Android. LineageOS and GrapheneOS both take a few days up to a few weeks to do this; whereas /e/ sometimes takes months.
In the past, I would have recommended DivestOS and Calyx OS, but sadly DivestOS is unmaintained and Calyx OS have temporarily stopped releasing or updating their OS.
How is /e/ more de-googled than an OS with zero Google services?
I thought /e/ shipped with MicroG, while I know Lineage doesn’t - you have to add it if you want it (I’m running Lineage).
LineageOS still uses Google for things like captive portal detection and DNS (at least, out-of-the-box). /e/ replaces these with their own services.
Hi. I too have found myself asking questions like this when I had phones that had custom ROMs.
When I looked into this, I found that Graphene is hardened and is more secure while other ROMs spec into the privacy aspect only.
I still keep my list even though my current device/chipset is not supported by these ROMs.
Alternative/Custom ROMS
In no particular order, these ROMs usually change the UX/UI and maybe add some security enhancements.
LineageOS
BlissRoms: Close to stock with “some” added privacy
Evolution X: Android 13 with the Pixel UI
Paranoid Android: Android with custom enhancements
PixelExperienceOmniROMArrowOSPrivacy|Hardened ROMS
Security-wise, LineageOS is a start but (correct me if I am wrong) you need to unlock the bootloader, which is not great. These ROMs purport heightened privacy or “hardened” security.
iodéOS: “deGoogled” LineageOS fork, uses lots of blacklists for ad- and tracker-blocking. Sells pre-installed devices.
/e/OS: A “deGoogled” Android experience. Uses microG, no telemetry sent to Google, modified NTP and DNS servers, modified GPS service. Uses the “App Lounge” which combines the Aurora Store with F-Droid and PWAs. Has a tracker blocker. Requires you to have an
@murena.ioaccount for some functionalities.GrapheneOS: Private, secure, hardened… has a long list of features. Updates are fast, exploitations are quickly mitigated, non-profit. But, Pixel-only.
CalyxOS: PAUSED
DivestOSIMO best bet is to wait 2-3 months for Calyx to resume
Absolutely not.
Back when DivestOS was operational, they maintained a database of bugs, flaws, and security holes that the E Foundation and Murena refused to patch.
Hell no, do not use /e/os. Use Lineage. Use Grapheme. Use Linux Mobile. Use literally anything else.
Damn, go look up PostmarketOS on the Graphene forums. Really disappointing.
Despite Graphene’s clear limits, they claim to have a backup plan, and I like the way they communixate clearly.
Your information is out of date. For example, the Fairphone’s bootloader can be relocked and you can buy Fairphones with eOS pre-installed (and of course locked).
To find more phones that support relocking with eOS, filter this list by “verified boot”.
Can someone point me at technical info about the risks of having an unlocked bootloader? From where I stand, the risks seem completely irrelevant (to take advantage of an unlocked bootloader, the attacker would need to have full access to your OS already). AFAIK, locking of bootloaders was never designed to protect the user, but only to let cell-phone providers restrict what phone users can do.
This article explains it quite well.
An unlocked bootloader let’s any attacker change the the thing that boots your OS and the OS itself. They might not have access to your data (every modern cellphone encrypts those partitions), but replacing the OS is practically game over. It allows tracking the password (or PIN) you enter and sending it to any server once internet access is gained.
postmarketos.org