Time to popularize Linux phones. I read that the security model is lacking, but especially given that Android is Linux too, it shouldn’t be too difficult to catch up. The EU is also interested in tech independence, so that could be one of the sources of funding. And there are a few viable early projects, like Ubuntu Touch and Sailfish.
yeah I will start deeply researching this because I refuse to use a closed down operating system for my phone my whole life. Fuck android fuck google and fuck apple
IDK, I’d think the best path forward would be to just fork Android and move on from there. That’s what Graphene OS already does. Just standardize on Graphene OS for everything and get them more devs / resources.
Sorry to piss off all the Apple shills on here, but sounds like an opportunity to me. I think there’s enough of us that want something better and some traction with Graphene and some Linux options. This should be a spark to ignite some fires. I’m disappointed but unsurpised by this news, but also a little excited about the window of motivation and opportunity this opens.
Could you go over what Graphene is for phones? Is it easy to switch to an alternative to android?
It’s Android with all of the Google removed where possible and sandboxed where not. You can choose to install the Google Play services and use it like any other Android phone or use it without any Google software.
Some things won’t work, namely things like some banking applications and NFC payments, because they require on hardware attestation that Google will not allow Graphene to pass. Essentially everything that isn’t banking/payment related works exactly like any other Android phone.
It is just a secure phone (though you can still install Facebook on it if you want) that is designed around mitigating attacks that could violate your privacy and security.
Very easy to install, you just buy a Pixel directly from Google (don’t buy from the carriers, they’ll be locked). Enable OEM Unlocking in the Developer menu and then plug it into USB and you can install it directly from the Graphene site via WebUSB. It takes about 5-10 minutes, then your phone will reboot (It’ll give you a scary looking screen about not running a Google OS that you’ll see every time it reboots but it’s just informational, it doesn’t affect anything and the system will boot into GrapheneOS in a second or two).
The more complete instructions and WebUSB install process:
What really bugs me about it: The first step from “how to ungoogle your phone” is “go, give money to Google” by buying their hardware.
It bugs me also.
My thinking is that the part of Google that I think is bad is their advertising and algorithmic recommendation systems which are built on private data that I no longer wish to divulge.
The Pixel is made by a company that used to be called HTC before they were consumed by Alphabet. That company produced good hardware that was smartly designed and innovative. That legacy continues with the device that Google has sells as the Pixel.
There are a few things about the phone that Alphabet has tainted, such as the inability to use NFC payments because hardware running GrapheneOS isn’t allowed into their secure hardware attestation chain. Not for any real technical reason, only because it allows Alphabet to disincentivize people away from a competitor by abusing their many monopoly powers.
GrapheneOS takes advantage of the excellently designed HTC hardware to create an operating system that is designed from the ground up to be secure. It then leverages the complete control over your hardware to put Alphabet’s other software inside of a little box where it constantly lies to the software in a way that lets your applications work without them actually being able to access everything on your device.
Yes, it is technically an Alphabet product and giving them money can feel distasteful. However, in this case by buying their hardware you can cut off their software, which is the actual thing that is negatively affecting everything.
I’d buy any other phone that fully supported GrapheneOS’s requirements for future devices.
Until then, I’m less worried about giving HTC money than I am about having a device that I know is under my control and that works to protect my privacy.
Why do banks need a hardware attestation, out of curiosity? I’d assume that banking apps are just clients so all that matters is if they have creds or not.
The banks don’t want their payment systems being accessed by devices that are compromised by malicious actors.
The attestation chain allows for Google to tell the apps ‘Yep, this system is running a known safe image that has been crytographically verified using the secure hardware on the device’. The apps will only allow their payment systems to be accessed (like, to send an NFC payment) if this check can verify that.
If you want technical details: https://developers.home.google.com/matter/primer/attestation
They don’t NEED it for NFC payments to work, this is a way of limiting attack vectors on their payment infrastructure (or, cynically, a way for Google to ensure that no competing OS can exist because people would rather give Google all of their privacy so they can pull a phone out of their pocket rather than a credit card.
traction with Graphene
What kind of traction? Is it missing something? Or do you just mean more developers behind it?
It’s missing a robust user base imo. More developers too.
Linux phones look more and more attractive
Graphene OS
No, linux
Call your representativesHire a lobbyist to donate millions of dollars to election campaigns for your representatives
Doesn’t even take that much. Most can be bought with a couple thousand.
The tech companies are doing a great job at making me uninterested in the hottest new phones. I used to follow the news about them and know the tech specs and stuff, because I’m a nerd and gadgets are fun and smart phones in particular are the intersection of SO much technology and engineering. Moore’s law was alive and well during all my formative years, so I am even conditioned to expect the excitement.
But lately, not only have I been ignoring what the big players are offering, I have been ignoring the phone I already have! Instead I have a PC at the end of the couch with a monitor on an arm that s swings right over my lap.
I use my phone pretty much just for music, web browser, Voyager (Lemmy on the go), and occasional texting. When I am at home I will sometimes misplace my phone for hours and just not worry about it.
I have already pushed the megacorp phone + social media experience so far out of my daily life, that if future options for open linux phones are rough around the edges and don’t have tap to pay then oh well I don’t think I care.
It’s much easier to live without the shiny new thing once you see how well your brain does when separated from it. (and you have some loved ones who are still hopelessly addicted to the scroll)
Sometimes I use my phone so little that I only need to charge it every 2-3 days. Nearly everything that it does my PC can do better and not try to lock me in to a dozen different
monthlyweekly subscriptions.I just got a Pixel 9a and put GrapheneOS on it straight away . my battery with my current usage says 4 days hahah. my old phone was 1 day maybe. I loose my phone around the house , my friends know I don’t text back for awhile.
Twinsies 👭
What does this mean for GrapheneOS and similar degoogled android versions?
While it does not affect them directly, it is unlikely most app developers will give significant effort to only support a small percentage of Android users running custom ROMs. So while GrapheneOS users will be able to install apps, there will likely not be that many apps to install.
Edit: What I mean is that most applications will have to choose to either agree to google terms and identify themselves, or develop only for custom ROMs, or stop developing altogether. And I don’t think many will choose the 2nd option. Also, 1st option may not be available if google does not like your app.
deleted by creator
So basically they wanna be Apple.
On the one hand, google is obviously evil, and it’s intentions here are undoubtedly evil as well. On the other, I do think some kind of verification of developers should exist. Just not in google hands. But who. There really isn’t anyway to create an organization that could be trusted to do this. And of course, the user should be able to chose to install apps from an unverified developer.
Google has their own store, that’s how they verify.
That’s how it works on Windows already. You buy a cert from a third party vendor so your setup file can pass Windows security checks and doesn’t show a big warning to the user when they open the setup file.
But then you are trusting that 3rd party vendor. Who approved them… MS probably.
Fuck you Google. I won’t do further updates on my Pixel and the moment I run into an issue I’ll move operating systems or phones if required. Half my apps don’t come from Google Play and I don’t want the developers to have to register with Google for anything.
is there a way to ACTUALLY disable them? I’ve attempted to change every option I can find (pixel 7 pro) and it just downloads them anyway. I’d love to try graphene but I am a fucking moron and I will 100% end up bricking my phone if I attempt to install it.
no you won’t … its so easy to install.
Not that I know of. I was just going to not install them.
Actually I hear Graphene installation on a Pixel is nearly unbrickable and has a nice user friendly website.
I watched a video of it and was reminded of the old Limera1n/Blackrain/etc IOS jailbreak days. There was one where you just went to a website and swiped to jailbreak then your idevice rebooted and you were jailbroken.
put grapheneOS on it …
That will be the go to. I’m just procrastinating the migration.
How do I "uncertify"y Android device? Install a fork I guess. Shame it’s not as easy as installing a new OS on the desktop.
I’ll be frank with you. As long as my customers are captive on either Apple or Google platforms I can’t do shit.
The comments keep mentioning Linux phones, have they managed to get Linux running on mobile hardware that I won’t have to go on an archaeological dig for?
There’s this… https://commerce.jolla.com/products/jolla-phone-preorder
It specifies the European market, not sure how well it’ll play with Canadian service providers. I’ll have to wait and see before dropping $1000 (before shipping) on it. VoLTE is pretty much required here and last I heard that was tricky for Linux phones
For now I have GrapheneOS on a Pixel 8 Pro, but I’ll keep an eye on this one to see if it’ll be compatible in Canada
I have GrapheneOS on Pixel 8a and given all the recent news I’m genuinely anxious about what’s coming next :(
Also waiting for this! Would love to get TOH, but doesn’t look too promising currently.
Fuck, I don’t have the money to replace my phone. I probably wont by September either. Too many expenses.
Fairphone, here I come.
