New podcast episode: Put some privacy in your smartphone! 📣 🎧
How can you use an Android smartphone while protecting your privacy? Who should you turn to for more privacy-friendly Android alternatives?
Can you install Linux on your phone?
With @fla from @Framasoft , we answer these questions!
👉 https://www.projets-libres.org/en/podcast/smartphone-put-privacy-in-your-smartphone/
#podcast #opensource #privacy #eos #iodeOS #calyxos #postmarketos #fairphone #commown #murena #ubuntutouch #grapheneos
@projetslibres_podcast @Framasoft @fla GrapheneOS heavily improves privacy compared to the Android Open Source Project in contrast with /e/ heavily reducing it.
GrapheneOS is far ahead of the standard pace for privacy patches instead of behind and we fix many privacy weaknesses ourselves. We've fixed a bunch of Android VPN leaks and many forms of data leaks to apps.
Since GrapheneOS is a serious privacy project, we have to put substantial work into security too because privacy depends on it.
@projetslibres_podcast @Framasoft @fla The domains they block are a tiny subset of domains used for those purposes and do not stop the most privacy invasive behavior by apps.
Apps and SDKs have also increasingly bypassed DNS blocklists via DNS-over-HTTPS resolvers, hard-wired IP addresses and most of all moving connecting to third party APIs to their servers where they don't need to leak their API keys.
DNS filtering works fine on GrapheneOS but isn't a viable approach to protecting privacy.
@projetslibres_podcast @Framasoft @fla Exodus Privacy uses a very similar approach to label apps as having trackers based on whether they include a library from a small list they've decided as trackers. Many of those decisions are dubious and it misses that the most privacy invasive behavior by apps isn't done that way. It also has extremely inaccurate labelling of permissions misleading users about how that works. Here's a great example of both with Facebook Lite:
https://reports.exodus-privacy.eu.org/en/reports/com.facebook.lite/latest/
@projetslibres_podcast @Framasoft @fla /e/, Murena and their supporters have spent years misleading people about GrapheneOS. They heavily push the false claims that it isn't a privacy project, isn't usable, isn't broadly compatible with apps and isn't useful to regular people. /e/ and Murena have repeatedly claimed GrapheneOS is only useful to criminals and spies. Here's the leader of both /e/ and Murena stating that as a broader claim about hardening in general:
@FelixTheAnimator @GrapheneOS @projetslibres_podcast @Framasoft
You need to backup your data first and then put them back in the phone after the installation. If you're not too technical, I'm sure there can be someone in your area to help you.
@ideaferace @GrapheneOS Correcting false claims about the project is not bashing competitors, especially since projects like /e/OS, iodéOS, and CalyxOS which the GrapheneOS project account sometimes mentions aren't competitors to GrapheneOS, these projects are not what they claim to be.
As for the “brouhaha,” well, unfortunately that’s sometimes the effect of social media, but many people don’t visit the official website.
Some good source that might interest you :
https://www.kuketz-blog.de/grapheneos-der-goldstandard-unter-den-android-roms-custom-roms-teil7/
https://www.synacktiv.com/en/publications/exploring-grapheneos-secure-allocator-hardened-malloc
https://www.sciencedirect.com/science/article/pii/S2666281726000053?via%3Dihub
An underestimated aspect of GrapheneOS : It provides a solid base for reducing addiction on social media and useless stuff.
@GrapheneOS @projetslibres_podcast @Framasoft @fla Very glad that you are fighting misinformation on this matter! So unacceptable for a podcast trying to give you good publicity to call GrapheneOS a "security project".
Unbelievable! We can't let this go on any further, they need to be shamed for years to come for the spread of this blatant misinformation with the scope of attacking and harassing GrahepeneOS!
@GrapheneOS And you really think that a thread on a niche microblogging platform helps promoting your product and vision? Don't you have a homepage to put your beef on which you could link instead of filling the timeline of your followers?
I'm interested in GrapheneOS, not whatever beef you have with others.
It's hard enough for every alternative OS to find people to use it. It's even harder when those alternatives are fighting against each other. Also I don't care who started it and who's right. This is not a childrens sandbox and you are not five years old. Get your shit together, make a statement on your website, post that statement and move on.
@truhe GrapheneOS exists to protect the privacy of our users. That includes protecting people from sophisticated attacks on their privacy by corporations and states. GrapheneOS doesn't exist to simply provide an alternative to mainstream options. We aren't inherently on the side of other projects providing alternatives.
The anti-privacy talking points from Gaël Duval in the video at https://grapheneos.social/@GrapheneOS/116353973732143171 aren't an isolated incident but rather /e/ and Murena have been saying it for years.
@GrapheneOS You now wrote five mentions to me explaining the beef you have and repeating the arguments, after I said, that using threads on a niche microblogging platform is not the best way, and neither is talking about everything the others do wrong (to you).
I followed your account to get news on Graphene OS and what I'm getting is some war between forum trolls. I get your point, I get why your doing it, but seeing this from an outside perspective where I'm just interested in getting news
@GrapheneOS
I think the point was not to post thr information, but rather where/how.
It was suggested to post the full explanation on the website/blog and link it with a short introduction on the fediverse.
A suggestion which i also agree with.
@truhe
Maximizing users at all costs is not the goal. These OSs are not alternatives to GOS and do not compare in the slightest. Why is it you turn a blind eye to scams committing crimes against GOS, and thats not called fighting, but GOS defending themselves is?
"Also I don't care who started it and who's right."
I mean, do I even need to comment on this? Seems pretty clear how disgusting this is to say.
This is not a childrens sandbox, and you are in no position to talk down to them like some parental figure. This is real, and your apathy to their adversity is disappointing.
Its not a better comparison, the official GrapheneOS accounts are not marketing and are not intended for marketing. Defending wont stop until the attacks stop. And yet I notice a distinct lack of criticism aimed at the agressors.
Mastodon has a tiny character limit so GOS has to break up the posts. Its easier to cram nonsense into one post than it is to properly refute it. The website isnt for this purpose.
Why do you automatically assume the goal is promotion? GrapheneOS is not a business and doesnt provide a product. Youre trying to downplay serious issues with implicitly juvenile descriptors to make it seem frivolous, but its not. Last I checked, providing accurate information for others to educate themselves was a good thing.
This is not accurate. They announced a partnership with Motorola but they did not announce devices with GrapheneOS preinstalled, whether or not they can do that still needs to be determined. And if they cant, thats fine, that was never a requirement of the partnership.
Money isnt exchanging hands. GrapheneOS does not currently profit from this. Youre falsely tying this to promotion. Its just an announcement on future plans.
And GrapheneOS doesnt yet support Motorola devices so there is little reason to put it on any page.
This isnt beef, and your interest in the situation is irrelevant. Countering misinformation at the source is an effective method and has been better than other methods for a very long time. People are going to blindly believe the first thing they read or hear if its not countered, and they arent going to go to an unrelated page that they have no idea exists.
@GrapheneOS @projetslibres_podcast @Framasoft
Thank you for pointing contact scopes, I was not aware of this feature. We have edited the transcription to reflect this. Thanks for your work on Graphene, and have a nice day.
@fla @projetslibres_podcast @Framasoft Contact Scopes is one of the core features of GrapheneOS and is shown in any prompt for contacts access. Storage Scopes is a similar feature for the media and storage permissions. Similar features for Camera, Microphone and Location are being developed by us. Android has a standard Mock Location feature but we want to replace that with a per-app Location Scopes implementation.
The podcast and article still wrongly claim GrapheneOS isn't a privacy project.
@fla @projetslibres_podcast @Framasoft How is GrapheneOS not a privacy project when it adds much stronger privacy protections, keeps up far better with standard privacy patches/protections and puts far more care into the services being private?
There's a third party comparison between AOSP-based operating systems at https://eylenburg.github.io/android_comparison.htm which has sections on both privacy and the default Google services included in the Android Open Source Project and additional ones which are being added.
@fla @projetslibres_podcast @Framasoft
> However, there is not a lot that is being done about privacy.
How does this hold up against an actual comparison of what's offered? GrapheneOS closely keeps up with current privacy patches and protections, while the other 3 operating systems lag far behind.
GrapheneOS provides Contact Scopes, Storage Scopes and other major enhancements to privacy while the others don't do much beyond increasingly ineffective DNS filtering that's easy to bypass.
@projetslibres_podcast @fla @Framasoft Every product mentioned here but GrapheneOS is highly insecure, Postmarket and Ubuntu Touch are based on GNU/Linux, which lacks of many modern hardens, such as memory safety, application sandbox and verified boot.
Btw Android is a Linux distro.
CalyxOS, /e/OS and iodeOS are outdated in security patches and major AOSP releases. They also contain non-free privileged Google binaries.
https://privsec.dev/posts/linux/linux-insecurities/
https://xcancel.com/search?f=tweets&q=from%3AGrapheneOS+Linux
There is a common misconception among privacy communities that Linux is one of the more secure operating systems, either because it is open-source or because it is widely used in the cloud. However, this is a far cry from reality. There is already a very in-depth technical blog explaining the various security weaknesses of Linux by Madaidan, Whonix’s Security Researcher. This page will attempt to address some of the questions commonly raised in reaction to his blog post.
@lajuste @projetslibres_podcast @fla @Framasoft Google is not helping GrapheneOS all time. Please stop confusing attacks and pointing out the facts. /e/OS and iodeOS can’t ship major releases and security patches. They are also less security than LineageOS. If you think GrapheneOS is wrong, give your own proofs.
@a53bdb @projetslibres_podcast @fla @Framasoft look at how many time they talk about GrapheneOS and attack it, and now do the same and count how many time GrapheneOS account (who hides Daniel Micay) is mentioning others projects to attack them.
/e/OS, iodéOS, CalyxOS, LineageOS, PostmarketOS, UBtouch, microG and many other projects don't give a fuck about Graphene, but sometimes they have to answer critics and Micay answer again with a 10 post attack.
Podcast Projets libres
GrapheneOS
Okuna
Felix 🏳️⚧️♂️🖌️🎨🔞🐓
Fla
Primetime
LJ 🏴
Giorgio Sidari
Xtreix
DKMellow
Truhe
Alien software, human hardware
chfkch 
HybridStaticAnimate
a53bdb