F-Droid isn't a good or safe way to get open source apps.- GrapheneOS
Why do people use this crappy proprietary operating system again? They have just lost all my credibility in my eyes.
Conversation
Notices
-
Embed this notice
SuperDicq (superdicq@minidisc.tokyo)'s status on Thursday, 19-Jun-2025 00:33:07 JST 
SuperDicq
- soberano likes this.
-
Embed this notice
Phantasm (phnt@fluffytail.org)'s status on Thursday, 19-Jun-2025 01:16:33 JST 
Phantasm
@SuperDicq The infosec crowd loves it and you can't expect any kind of reasonable thinking from that crowd. Daniel is so up Google's ass that literally anything that isn't from Google is deemed insecure. He has the same grudge against microg thanks to some old bug that got fixed years ago. He also blindly trusts Google's Titan "security" blackbox.
grapheneos-british.png
grapheneos-random-vpn.pngsoberano likes this. -
Embed this notice
:umu: :umu: (a1ba@suya.place)'s status on Thursday, 19-Jun-2025 01:32:01 JST 
:umu: :umu:
@SuperDicq well they're right that f-droid kinda sucks especially that the built apps are signed with their keys rather than developers.
But graphene are google boot lickers.prettygood likes this. -
Embed this notice
vic (vic@shitpost.cloud)'s status on Thursday, 19-Jun-2025 01:32:25 JST 
vic
When Microsoft Skype'd Cyanogen, that was the end of real alternative phone OSes. The fact that Graphene only runs on Google hardware is very telling.
Phantasm likes this. -
Embed this notice
Phantasm (phnt@fluffytail.org)'s status on Thursday, 19-Jun-2025 01:32:25 JST
Phantasm
@vic @SuperDicq It only runs on Google hardware because apparently Google hardware is the only truly secure one. Whatever that means.
I'm almost convinced that Daniel is some government implant and the only thing stopping me from truly thinking that is his extremely paranoid schizophrenia. I'll never use it anyway, since I can't trust an operating system written and still maintained by a schizo that has an extreme grudge against anyone that even slightly disagrees with any of his takes. -
Embed this notice
vic (vic@shitpost.cloud)'s status on Thursday, 19-Jun-2025 01:33:37 JST
vic
I think people need to give up on the dream of having a "secure" phone.
The thing is basically an always-on tracking beacon no matter what hardware or OS, simply because of the radio emissions.
-
Embed this notice
prettygood (prettygood@socially.drinkingatmy.computer)'s status on Thursday, 19-Jun-2025 01:35:39 JST 
prettygood
@phnt @SuperDicq @vic is there a better option? I don't know of one. I like Graphene for rapid updates and default settings. I'll take a flawed mostly-free system over the definitely-not-free-in-any-way Apple systems. There's no real free + fully functional way to have a mobile device but perfect can't be the enemy of good.
Setting aside boot-licking, there are still good engineers doing good work at Google, and even the most ardent Google hater (me) can admit that. -
Embed this notice
Phantasm (phnt@fluffytail.org)'s status on Thursday, 19-Jun-2025 01:38:31 JST
Phantasm
@prettygood @SuperDicq @vic Calyx is basically the same without the schizo part and uses microg instead of Google Play Services in a sandbox that is supposed to be secure. prettygood and soberano like this. -
Embed this notice
prettygood (prettygood@socially.drinkingatmy.computer)'s status on Thursday, 19-Jun-2025 01:39:09 JST
prettygood
@phnt @SuperDicq @vic can you use Calyx without Microg? I don't want/need/use either one. -
Embed this notice
vic (vic@shitpost.cloud)'s status on Thursday, 19-Jun-2025 01:40:42 JST
vic
> perfect can't be the enemy of good
I guess it comes down to threat modeling. Who do "private phone" advocates try to defend themselves from? The government? Big companies? Foreign scammers/hackers?
Are people trying to just not be tracked en masse, or are they trying to protect themselves from targeted spying?
Is there some value in blending in with the crowd by using a normie phone, or does going secure outweigh looking suspicious?
prettygood likes this. -
Embed this notice
Phantasm (phnt@fluffytail.org)'s status on Thursday, 19-Jun-2025 01:41:04 JST
Phantasm
@prettygood @SuperDicq @vic Maybe, I don't have a Pixel to try it on anyway. Microg should a normal uninstallable app (at least is on OSes that don't include it by default). prettygood likes this. -
Embed this notice
prettygood (prettygood@socially.drinkingatmy.computer)'s status on Thursday, 19-Jun-2025 01:43:07 JST
prettygood
@vic @phnt @SuperDicq good points, but you can't completely disconnect "government getting my data" from "being tracked" quite so neatly. If the government wants to know something about almost anyone, they can find it out from a data broker, they don't need to target you with some zero-click malware or something.
If you prevent/limit how much the data brokers can find out about you, that does make that kind of thing more difficult, so it still serves a purpose regardless. -
Embed this notice
SuperDicq (superdicq@minidisc.tokyo)'s status on Thursday, 19-Jun-2025 01:46:49 JST
SuperDicq
@vic@shitpost.cloud There's still many cool phone OS's out there.
First of all there's Replicant, who try to make a free fork of Android.
Then there's all the GNU/Linux based ones, such as Mobian or Maemo Leste.
And there's of course PostMarketOS I guess, although I've never used that one myself. -
Embed this notice
mangeurdenuage :gnu: :trisquel: :gondola_head: 🌿 :abeshinzo: :ignucius: (mangeurdenuage@shitposter.world)'s status on Thursday, 19-Jun-2025 01:47:22 JST 
mangeurdenuage :gnu: :trisquel: :gondola_head: 🌿 :abeshinzo: :ignucius:
@phnt @SuperDicq @vic @prettygood There was divestOS but needed fund and people can't seem to understand that you need to pay for roads. prettygood likes this. -
Embed this notice
™️¥ (tomey@shitposter.world)'s status on Thursday, 19-Jun-2025 01:48:29 JST 
™️¥
@prettygood @phnt @SuperDicq @vic yes, calyx gives you the option of whether to install microg on first boot. -
Embed this notice
SuperDicq (superdicq@minidisc.tokyo)'s status on Thursday, 19-Jun-2025 01:49:07 JST
SuperDicq
@prettygood@socially.drinkingatmy.computer @phnt@fluffytail.org @vic@shitpost.cloud When you're at this point why not just use LineageOS?
-
Embed this notice
SuperDicq (superdicq@minidisc.tokyo)'s status on Thursday, 19-Jun-2025 01:50:26 JST
SuperDicq
@mangeurdenuage@shitposter.world @vic@shitpost.cloud I still have my S2 with Replicant installed on it. I don't daily drive it, but are there really no batteries available for these anymore? That sucks.
-
Embed this notice
mangeurdenuage :gnu: :trisquel: :gondola_head: 🌿 :abeshinzo: :ignucius: (mangeurdenuage@shitposter.world)'s status on Thursday, 19-Jun-2025 01:50:27 JST
mangeurdenuage :gnu: :trisquel: :gondola_head: 🌿 :abeshinzo: :ignucius:
@SuperDicq @vic I used replicant on my S2 for many years until I couldn't find a suitable battery replacement. -
Embed this notice
prettygood (prettygood@socially.drinkingatmy.computer)'s status on Thursday, 19-Jun-2025 01:52:33 JST
prettygood
@SuperDicq @phnt @vic because I used it for a long time and got fed up with it.
Anything *except* Pixel phones, even the fully-supported models, was an absolute crapshoot in my experience. I got tired of having to use weird software to unlock phones, or "you might brick it lol" XDA forum threads. Pixels (and going back to the Nexus phones...) were always simpler and more bullet-proof for this process.
And at that point, if I'm going to buy a Pixel (used), why not use Graphene? -
Embed this notice
SuperDicq (superdicq@minidisc.tokyo)'s status on Thursday, 19-Jun-2025 01:53:28 JST
SuperDicq
@prettygood@socially.drinkingatmy.computer @phnt@fluffytail.org @vic@shitpost.cloud I'm running LineageOS on my Fairphone 3 and I'm having a good time actually.
prettygood likes this. -
Embed this notice
prettygood (prettygood@socially.drinkingatmy.computer)'s status on Thursday, 19-Jun-2025 01:56:38 JST
prettygood
@SuperDicq @phnt @vic I want to like Lineage, and I try to. But I'm not heavily phone reliant so I have very little tolerance for fuckaroundary with a phone. Anything serious I'm doing on a desktop computer anyway. I want a phone to be as secure and free as it can be, with as little effort as possible.
Like I said there's no perfect way to have a mobile device, so I just try to rely on it as little as possible. -
Embed this notice
SuperDicq (superdicq@minidisc.tokyo)'s status on Thursday, 19-Jun-2025 02:01:47 JST
SuperDicq
@prettygood@socially.drinkingatmy.computer @phnt@fluffytail.org @vic@shitpost.cloud Same. I try to not rely on a phone at all, it will always be a nonfree device. Most of the time I don't even have my phone turned on anyways.
prettygood likes this. -
Embed this notice
SuperDicq (superdicq@minidisc.tokyo)'s status on Thursday, 19-Jun-2025 02:02:46 JST
SuperDicq
@prettygood@socially.drinkingatmy.computer @phnt@fluffytail.org @vic@shitpost.cloud That's also why I buy devices like the Tangara music player so I don't have to take my phone with me to listen to music for example.
prettygood likes this. -
Embed this notice
prettygood (prettygood@socially.drinkingatmy.computer)'s status on Thursday, 19-Jun-2025 02:03:13 JST
prettygood
@SuperDicq @phnt @vic the only thing I "need" it for is MFA because I stubbornly refuse to put TOTP tokens into the same password manager as my passwords. Everything else is killing time or simple convenience. -
Embed this notice
SuperDicq (superdicq@minidisc.tokyo)'s status on Thursday, 19-Jun-2025 02:03:35 JST
SuperDicq
@prettygood@socially.drinkingatmy.computer @phnt@fluffytail.org @vic@shitpost.cloud I do take my fully free GNU Booted ThinkPad X200 with me literally everywhere I go tho.
prettygood likes this. -
Embed this notice
SuperDicq (superdicq@minidisc.tokyo)'s status on Thursday, 19-Jun-2025 02:06:45 JST
SuperDicq
@prettygood@socially.drinkingatmy.computer @phnt@fluffytail.org @vic@shitpost.cloud If you really want your TOTP tokens to be stored on a separate device there's a bunch of devices specifically for this purpose as well.
Like those very small keychains that can show TOTP codes on a 7 segment display. I have never had one because I'm lazy and I just my TOTP tokens on my computer, but they do look pretty neat.prettygood likes this. -
Embed this notice
sapphire (sapphire@shortstacksran.ch)'s status on Thursday, 19-Jun-2025 02:11:22 JST 
sapphire
@prettygood @phnt @SuperDicq @vic I too look at the license for my tool over its utility prettygood likes this. -
Embed this notice
SuperDicq (superdicq@minidisc.tokyo)'s status on Thursday, 19-Jun-2025 02:11:56 JST
SuperDicq
@sapphire@shortstacksran.ch @prettygood@socially.drinkingatmy.computer @phnt@fluffytail.org @vic@shitpost.cloud As you should as its utility can be entirely nullified at any point in time without warning if it does have a proper free license
prettygood likes this. -
Embed this notice
SuperDicq (superdicq@minidisc.tokyo)'s status on Thursday, 19-Jun-2025 02:16:02 JST
SuperDicq
@sapphire@shortstacksran.ch @phnt@fluffytail.org @prettygood@socially.drinkingatmy.computer @vic@shitpost.cloud A headless hammer would be impractical, but in terms of hammers that do have heads I prefer the hammer that is actually repairable when it eventually breaks and doesn't spontaneously explode and then calls the cops on me if I try to share hammer with a friend.
-
Embed this notice
sapphire (sapphire@shortstacksran.ch)'s status on Thursday, 19-Jun-2025 02:16:03 JST
sapphire
@SuperDicq @phnt @prettygood @vic the head can fly off your hammer at any time, it doesn’t mean you use a headless hammer to prevent it -
Embed this notice
SuperDicq (superdicq@minidisc.tokyo)'s status on Thursday, 19-Jun-2025 02:18:08 JST
SuperDicq
@sapphire@shortstacksran.ch @phnt@fluffytail.org @prettygood@socially.drinkingatmy.computer @vic@shitpost.cloud oops we have root to all first time logins over sshThat's just Ubuntu being Ubuntu lmao.
Anyway proprietary software probably has way more ridiculous security issues than free software does. They often just don't get discovered and fixed, because nobody can audit it.prettygood likes this. -
Embed this notice
sapphire (sapphire@shortstacksran.ch)'s status on Thursday, 19-Jun-2025 02:18:09 JST
sapphire
@SuperDicq @phnt @prettygood @vic besides, it feels like twice a year now FOSS projects have some ridiculous security issue like “oops we have root to all first time logins over ssh” so it’s not like a free software license helps you not lose all your shit either -
Embed this notice
Hyperhidrosis (hyperhidrosis@shitposter.world)'s status on Thursday, 19-Jun-2025 02:50:50 JST 
Hyperhidrosis
@phnt @SuperDicq real ngas line their rooms with aluminum foil and only connect to the wan via Ethernet. Phantasm likes this.
All GNU social JP content and data are available under the 
