Why YSK GrapheneOS is a step above the rest. I understand it’s ironic de-google phone/tablet with google hardware, but it just works better then anything else. Permission toggles, pin scrambling, auto-reboot, scopes, MAC randomization, isolated user profiles, longer passwords, sandboxed apps, open source firmware, no bloat & the battery life is incredible now.

I hope people understand how easy it is to move to Linux & GrapheneOS full time & remove Apple, Google, Microsoft etc. It exceeded expectations so much so that I want to share it with other people. I cannot recommend this enough to improve your life. #FOSS

  • cley_faye@lemmy.worldEnglish
    71·
    1 year ago

    The main reason I keep a “real” smartphone around is for banking app, that requires Google Play Protect (or whatever it is called, the thing that supposedly check around if you’re on a rooted phone). Support for this doesn’t seem there yet, which defeat the purpose.

        • darcy@sh.itjust.worksEnglish
          12·
          1 year ago

          very insecure. especially if your 2fa method is on your phone as well (unfortunately many banks enforce this)

          • Virtual Insanity @lemmy.worldEnglish
            1·
            1 year ago

            Sounds like scare mongering.

            Why would that be any different than a PC with the 2FA app on the PC?

            Banking on suitably patched and secured phone is NOT an inherently risky activity.

            • darcy@sh.itjust.worksEnglish
              0·
              1 year ago

              banks have old ahh security. not many support proper 2fa. but if u log in on your phone, and u do have your phone as the 2fa method, it makes no difference having 2fa. if someone gets your phone they get your banking log in and your 2fa method. its like putting totp 2fa on a computer to sign into something on the same computer. different devices for different purposes. remeber banking apps are always proprietry, so any zero day could be active right now, and we would not be the wiser. i suppose banking on a webpage on your phone is better, if you delete the cookie after.

              • KindnessInfinity@lemmy.mlEnglish
                2·
                1 year ago

                If your phone is secure with screenlock, kept up to date and uses grapheneos than your banking should be safe. Using grapheneOS auto reboot feature would prevent anybody accessing private data stored in RAM , as it’s all at rest after reboot

                • darcy@sh.itjust.worksEnglish
                  1·
                  1 year ago

                  i still dont trust it. theres no real reason to use it on phone. just becoming more dependant

                  • KindnessInfinity@lemmy.mlEnglish
                    1·
                    1 year ago

                    Your first post, you claim that “so any zero day could be active right now” … This can happen with open source software too. Your phone is way more secure than the average PC running debian.

          • FutileRecipe@lemmy.worldEnglish
            4·
            1 year ago

            And how many people have Linux with a hardened browser? More importantly, how easy is that to set up compared to setting up GOS (I promise GOS is much, much easier to set up and use).

            But if we’re going with extremes like this: no one should use banks on Linux with hardened browsers. Just go in person.

            • darcy@sh.itjust.worksEnglish
              11·
              1 year ago

              installing a just-works distro (say linux mint) is just/almost as easy as grapheneos. assuming not doing dual booting (the phone is dual booting is it).

              librewolf (hardened fork of firefox) is like 2 commands on linux, or an installer wizard on windows.

              unironically the last statement is based. less technology is always more secure. we managed without it back in the day didnt we.

              im not going to say privacy and digital security is easy or one-size-fits-all or anything, we each have to make comprimises on convenience.

              • KindnessInfinity@lemmy.mlEnglish
                0·
                1 year ago

                It’s harder for the average person. You have to know how to change device boot order in BIOS/UEFI, average person barely knows what an operating system is, let alone how to find their PC UEFI/BIOS setting menu to configure boot order. Grapheneos explains it clearly, how to install. You simply tap a few buttons on the browser and on the phone, when prompted.

                • darcy@sh.itjust.worksEnglish
                  0·
                  1 year ago

                  its like 10 key presses total. there are many tutorials (although none as good and official as grapheneos i assume). people can learn things, and digital literacy is very important

                  • KindnessInfinity@lemmy.mlEnglish
                    2·
                    1 year ago

                    I agree 100% it’s upsetting how little people know about technology they use everyday. To many and you, installing a new OS is easy as breathing air, to the average person, it’s like learning to ride a bike for the first time. We have to slowly teach those, willing to listen and learn.

            • darcy@sh.itjust.works
              1·
              1 year ago

              what r u smoking ? linux is the only widely used open source desktop operating system. it has heaps less viruses made for it. its unix-like permission system (like mac) is always better than uac of windows. you can say a lot of bad things about linux, sure, but security is most certainly not one of them. unless you compare it to a locked-down os like android, it is the most secure.