I ran various custom ROM’s for years on a FairPhone3+. It was great right up until the day all my banking apps stopped working. Banking app incompatibility is NOT the fault of GrapheneOS (or any other custom ROM) dev’s at all . . . but IMO this is the real problem today with any alternative mobile OS. Privacy vs. banking convenience. And yes, YMMV as some of them do work . . and mine did as well . . right up until the day they didn’t.
shortwavesurfer@lemmy.zip
on 17 Feb 23:30
nextcollapse
Do banking exclusively through the online portals? For me, if that means using my desktop or a laptop for banking, that’s what I do, because I will not install a banking app on my phone.
I didn’t know they rolled like that, good to know for the purposes of learning about banking & surveillance systems. haven’t seen it mentioned on GOS forums
the facial scanning tech you guys are starting to see used against you now has been trialed in your colonies first to make sure it works well for them.
boomerang is just now coming back on this one.
shortwavesurfer@lemmy.zip
on 17 Feb 23:46
collapse
Switch banks. That’s what I did. I had a bank that required an app to use them as well before I decided that I cared about my privacy and wanted more of it. And when I found out that my bank wouldn’t let me do things, I switched banks. Because fuck them.
Generally it’s neobanks that cause the most problems. If you’re using older banks that have been around for quite a long time, they don’t have nearly the technology, so are less likely to have this occur. In the United States, an example of this might be something like Wells Fargo or Discover or something like that, whereas one of these neobanks that would cause problems would be like chime.
Generally, stay away from thin tech and stay with actual banks. You might also look at credit unions. My local credit union is really good, and has a good online website, and has an app as well, but doesn’t require it at all.
Nice idea in theory . . . but here in the UK, increasingly customers are being left with little other choice. Between banking apps using push messages to verify credit/debit card transactions, closing of physical branches and requiring authentication via the app to log into the website . . . not using their app is becoming more and more difficult every day.
shortwavesurfer@lemmy.zip
on 18 Feb 18:50
collapse
What services do they have for senior citizens? Because they are the most likely ones to not want to use technology. You can probably piggyback on what they use.
shortwavesurfer@lemmy.zip
on 19 Feb 14:26
collapse
Okay, in that case, I would just buy a very cheap second device and have your primary one using a privacy system such as graphene and then use a secondary one that you never turn on except for doing that kind of stuff.
That way, at least your primary system is isolated from the rootkit that is things like Google Play Services.
Sir_Kevin@lemmy.dbzer0.com
on 17 Feb 23:02
collapse
Just use a web browser.
People act like they can’t live without these apps, which are often just a repackaged website anyway.
My bank requires using a card reader for ID if you use a web browser. It can be done but it means carrying three physical things (phone, bank card, bank card reader) instead of one (phone).
My point is that there is an actual difference. It’s not just a repackaged web app, and has actual drawbacks.
My personal plan is to move as much of my day to day stuff to a Mecha Comet, and also carry my Fairphone running Android for whatever proprietary crap that the world wants me to run. It’s two devices, but hopefully will minimize exposure to big tech.
Nice idea in theory . . . but here in the UK, increasingly customers are being left with little other choice. Between banking apps using push messages to verify credit/debit card transactions, closing of physical branches and requiring authentication via the app to log into the website . . . not using their app is becoming more and more difficult every day.
I would use banking through the browser for sure, but to be able to login on the browser i can only receive the pin through the app. not only this ,but everytime i make a purchase online I have to authorize the transaction through the app. There is no other way, they don’t even offer a physical token anymore.
Sir_Kevin@lemmy.dbzer0.com
on 18 Feb 21:20
nextcollapse
I actually quite like it. The bank is called Monzo and the app is well presented. Support is fast and I hardly ever go to the bank anyway. Post offices play the role for cash and cheque deposits.
MagnificentSteiner@lemmy.zip
on 17 Feb 23:33
nextcollapse
Break free from Google! By buying a Google phone…
mfed1122@discuss.tchncs.de
on 18 Feb 04:47
nextcollapse
Not knowing you can buy used/refurbished betrays a deep level of real life illiteracy
mfed1122@discuss.tchncs.de
on 18 Feb 19:44
collapse
I know you can buy used and refurbished actually, that’s how I got my pixel. It’s still buying a Google phone. It still breaks free from Google. You have now reached the point of just regular old illiteracy I guess
Jokulhlaups@lemmy.world
on 17 Feb 23:08
nextcollapse
Do you recommend putting it on pixel 6? Or is it outdated?
tastemyglaive@lemmy.ml
on 18 Feb 05:23
nextcollapse
older pixels have fewer years of GOS dev support remaining. recommend 7+
greatwhitebuffalo41@slrpnk.net
on 18 Feb 12:50
collapse
If you already have one go for it. My 6 with GOS runs significantly better than my 8 with stock android. I wouldn’t buy one specifically for it though, I’d go newer since it will be supported longer.
chasteinsect@programming.dev
on 17 Feb 16:34
nextcollapse
djsaskdja@reddthat.com
on 18 Feb 01:42
nextcollapse
Blame literally every other hardware manufacturer for not implementing encryption enclaves correctly.
protogen420@lemmy.blahaj.zone
on 18 Feb 17:05
nextcollapse
Oh yes the magical security black box that is 100% trust worthy! Surely nothing can ever wrong!
CorrectHorseBatteryStaple@lemmy.world
on 18 Feb 20:19
collapse
Most manufacturers don’t even allow you to unlock your bootloader nowadays. And the requirement of relocking it with custom keys basically means only Pixel phones (plus a few VERY old non-pixel phones) pass this absolutely basic requirement.
Graphene os can run it on other phones, it’s just not as secure and you have to build it yourself
doodoo_wizard@lemmy.ml
on 17 Feb 16:55
nextcollapse
Another reply did the thinking emoji face at biometrics and that’s good. Here’s why it’s worthwhile to never enable biometrics:
You don’t know when you’re going to be compelled to use them and you don’t drill on turning them off.
The whole point of no knock and other police tactics is to prevent you from keeping them from getting what they want. You can’t expect yourself to just never be surprised, that’s ridiculous. Turn biometrics off so getting surprised by the cops doesn’t immediately give them the keys to the castle!
No one drills enough, but let’s say you’re the one person who does drill enough on turning off biometrics: wouldn’t that practice time be better spent with biometrics off, drilling on shutting your phone down so they have to deal with its much more secure Before First Unlock state instead?
Turn off biometrics and practice turning your phone off.
chasteinsect@programming.dev
on 17 Feb 17:03
collapse
I wonder is this something to actually worry about outside of the US?
AnnaFrankfurter@lemmy.ml
on 17 Feb 17:41
nextcollapse
In my country police are known to torture people until they sign a confession written by them. So I don’t think disabling biometrics will make a difference. But I’ve still done it.
nobody should discount hardware-level hacks either. ultimately GOS is the only way to get decent software on mobile without leaving it exposed in the event of petty theft. people implying it will be a serious roadblock to imperialist state-level actors are naive or even suspicious to me
Every nation has a byzantine system of laws and codes enumerating different ways for police to violate the “rights” that nation has enshrined in law.
One way to avoid compelled speech (a “right” Americans have but other nations citizens might not) is to simply misremember your lock code as many times as it takes to trigger factory reset.
Americans don’t need to know that because they can’t be compelled to enter a passkey, but people in countries with no qualms about compelled speech like Germany would be well served by disabling biometrics so they have the option of lying and taking that hit instead of giving up their privacy.
Do your own research about your jurisdiction, but go ahead and turn off biometrics because it literally makes any group that can control your movement (which in English common law is the basis for the concept of “arrest”, and so likely a situation many different nationalities will face) access to your devices.
The duress pin seems like such a cool feature, but I feel like it flies a little too close to the sun.
Misremembering your own pin ten times stretches the limit of credulity, but a lawyer could argue that under the circumstances of enhanced interrogation you weren’t able.
Expressly giving the wrong answer in a place with compelled speech threatens to add a million new legal hurdles to your freedom.
When you fuck it up ten times they’re gonna try to slap you with those charges anyway but at least you have some defense instead of it being an open and shut case of “he’s recorded entering the evidence destruction button when we asked him nicely to instead let us push the evidence retrieval button”
For assange types (and I mean people actively under threat by a nation which has a set of charges it’s investigating or planting evidence for, not people who have leaked documents or share his ideals) it’s a good thing, but anyone not dodging the “if I walk out of the embassy they’ll “find” cp on my phone” bullet it seems like more trouble than it’s worth.
Valid in many cases (hence the rubber hose quip), I was merely responding to above. It does have use as a quick way to burn it all down before any requests are made.
Between all the people who refuse to use graphene because it’s on pixels and the ones who seem like they haven’t been keeping up with the news or even had any interaction with cops this thread is deeply disturbing and hitting all the buttons that make me wanna say No Don’t Do That!
Who knows, maybe there’s a good case where someone uses the duress and gets away with it. I think assange did once before…
“all laws are local, and no law knows how local it is”, which is to say it on the user to understand their local legal (and political) situation. It’s a big world.
Delusion6903@discuss.online
on 18 Feb 05:55
nextcollapse
Other than security differences, is the interface just like on a Pixel? Can I still force dark mode on uncooperative apps like on Pixel? Is there still notification history? Screenshots/select on overview?
noname_no_worries@lemmy.world
on 18 Feb 14:23
collapse
Don’t remember if the interface was much different.
Forced dark mode and notification history work fine.
You can take screenshots in the overview, not sure about select, maybe you need an app?
I was seriously considering getting an over priced pixel phone just so I could get graphene os, but then I discovered, that rooting it is impossible. Pity
Profligate_Parasite@lemmy.today
on 18 Feb 02:21
nextcollapse
Have never looked back since i switched to gos… just buy a refurbed pixel to avoid giving big G ya monry.
Remember, though, in less than 200 days google kills all “sideloading.” It seriously fucks with gos, and they have hinted they will eventually disable flashing custom roms
ScoffingLizard@lemmy.dbzer0.com
on 18 Feb 04:11
nextcollapse
Fairphone 6. Google can suck it. As long as people support the company, competition is coming. Hopefully, they have the resources to keep on going after Google shits on everyone.
Gah. I was really torn between replacing my broken Pixel with another Pixel+GOS or buying a Fairphone 6…
I ended up going with the Fairphone 6 cuz I want to support other players. I’m not completely off Google, but I keep moving away where I can.
I wish Fairphone and Graphene were friends… :/
Truscape@lemmy.blahaj.zone
on 18 Feb 07:46
collapse
If fairphone had the hardware support and kept up with modern android versions, GOS would have no beef.
ScoffingLizard@lemmy.dbzer0.com
on 19 Feb 01:01
collapse
I don’t have any issues. I also deleted MicroG so have 0% google nonsense. If I need to make a transaction, I have a Linux laptop for that. One could get a FF6 and still make transaction with MicroG.
BrilliantBadger@piefed.ca
on 18 Feb 12:49
collapse
When I started my degoogle process some time back & researching options I literally laughed at loud at myself. Am I seriously going to hand over yet more money to the very beast I am trying to get away from? Talk about instant compromise of values
Years later, extremely proud of that decision. Just a non starter. Buying second hand also creates a market value for selling more google crap
ToTheGraveMyLove@sh.itjust.works
on 18 Feb 17:41
nextcollapse
No OS comes close to Graphene in security. Second hand sales for Graphene are a drop in the bucket for Google. If Graphene went away and people stopped buying second hand Pixels for that purpose, it wouldn’t even be a blip to them.
BrilliantBadger@piefed.ca
on 18 Feb 19:45
collapse
You do you. I stand by my principals and don’t feel the need to pretend I’m some sort of Jason Bourne.
Weird how now that Google went quarterly with their older device updates… it’s suddenly just not the big deal the GOS folks used as a hammer, with their ad nauseum attacks on other privacy projects. Back then I could smell their overhyped, overplayed security scare marketing tactics from a mile away. As it turns out, I was right.
Not having any google crap in my household? Absoltely priceless
ToTheGraveMyLove@sh.itjust.works
on 18 Feb 20:12
collapse
If you don’t value security, that’s fine, but one does not need to be Jason Bourne to want a secure device. Also, privacy ≠ security.
This is google. They have a track record of spying on anybody and everybody through whatever means available. The burden of proof is with them, at least as far as I’m concerned. You can do what you want, but I won’t buy anything with their name on it.
I use my USAA banking app, my stock app with Charles-Schwabb, and even Bitwarden with biometrics on GOS. It may have been limiting before, but not anymore. They have a sandboxed Google Play integrity whatever, too, do you can turn that shit on for select apps and it alerts you when an app is calling it.
Aurora Store also has the Play Store apps with reduced bloat. I’ve been using GOS on my Pixel 7 since late last year. It has a slight learning curve, but lots of info out there for how and what to change in settings for different apps and permissions. Definitely don’t regret my install!
Most banking works fine. There was a time it had more problems but I don’t even need to use a secondary profile with Google Play Services running any longer.
NFC works, but that is app specific.
So no, wallet won’t work because google wallet wants Google services to work. But in the EU some banks have their own contactless payments that work fine. In the US none do to my knowledge.
For bus pass etc that would be down to your app and if they require google services or not. There’s always the option for secondary profiles.
To me, I was amazed at his many apps use google services for notifications. So many apps work, but don’t give me notifications unless I open the app… Which I’m okay with because 99% of them I would turn off anyways.
TL;DR The above commenter is spreading FUD. GOS will work fine and allow sideloading.
Stop spreading FUD. Google kills sideloading on Google certified ROMs. Being Google certified doesn’t mean you have more features than ROMs which aren’t certified. Only Google certified ROMs lose the ability to sideload and have to adhere to all Google Play policies. Meaning GOS loses its certified status but doesn’t lose the ability to sideload. The only way in which GOS might be coerced to disable sideloading is if Google pushes these changes upstream to the AOSP and even then forking is always an option. Also when has Google ever hinted at disabling flashing custom ROMs? It might be right down their alley but I wouldn’t make such claims without citing sources.
Just as a side note: Android ≠ AOSP. This is relevant as many people misunderstand the news they read. When Google changes Android (Google’s proprietary AOSP “distro”) it doesn’t necessarily mean that changes are coming to the AOSP or GOS which is also an AOSP “distro”.
Profligate_Parasite@lemmy.today
on 18 Feb 13:27
nextcollapse
Im not trying to “spread fud.” The state of 3rd party software on android is where it is. Google is introducing a high friction system for unverified apps that includes fees paid directly to google, and is not releasing to aosp in advance at all… this potentially means things like f droid and aurora cant operate. It doesnt mean that gos wont “allow” sideloading, but that you wont have alternatives to load. It also means you will have to increasingly be limited to sandboxed google play, with more barriers to overcome to make those apps work on non-android. androidauthority.com/android-changes-third-party-…
Profligate_Parasite@lemmy.today
on 18 Feb 15:05
collapse
Wish i could find where i read that google was planning to eliminate bootloader access… they walked it back in the end after expected uproar. Ultimately, the pressure from ‘verified by google’ and the changes to AOSP are enough pressure to push out ROMS as it is…
Anyway, listen. I LOVE graphene. Everyone should use it, BECAUSE google is demonstrably a band of fuckwits. Im not trying to dissuade but inform. I am excited for an announcement about who theyre working with when they say their future is a phone made in connjunction with a “major OEM” maker. androidheadlines.com/…/grapheneos-may-break-pixel…
I don’t doubt that in the future Google will kill off the AOSP and disable installing custom ROMs like Apple does. But it just isn’t accurate to say that in 200 days sideloading on GOS won’t work or that Google disabling sideloading on their ROM even affects GOS in any way.
I don’t see how spreading FUD and being misinformed are exclusive. I didn’t say he was doing so in bad faith, just stating that the comment created fear, uncertainty and doubt without any factual basis.
To be fair Wikipedia does say it is a manipulative propaganda tactic but I’ve usually meant it in the abovementioned context.
slemptastrophe@piefed.social
on 17 Feb 19:49
nextcollapse
Also, break free from RCS and from participating in group chats with anyone you can’t convince to move to another platform.
I daily drive grapheneOS, and wouldn’t go back to iOS or Google-ed Android for anything, but it really sucked having to tell friends, family, and others I couldn’t participate in our old group chats anymore.
EDIT: Apparently, they released a fix over the weekend, as aoude pointed out in another comment. So it’s working for me on AT&T now.
There’s also the risk that credit card companies are claiming that fraud done using your phone app (for example, someone stole your unlocked phone(*)) is not covered, and you are on the hook for losses.
But stolen physical credit cards are always covered.
(*)EDIT: I thought I’d read a report that someone who had been mugged and forced to give their phone+PIN had an issue with their CC company; but it looks like this is mostly a problem with money transferred out of a bank account, not credit card purchases… and even then, hiring a lawyer will usually get the bank to pay-up.
Credit card companies can claim whatever they want, that’s not how their agreement works. They need to cover. But also the risk of someone stealing my unlocked phone is so exponentially lower than the risk of someone stealing my cards that I’m not even remotely concerned.
ToTheGraveMyLove@sh.itjust.works
on 19 Feb 00:45
collapse
Graphene has that too tho. Not sure how /e/OS is more private or free.
mazzilius_marsti@lemmy.world
on 17 Feb 20:07
nextcollapse
GOS is great. Funny, I used to rom hop and distro hop a lot; but on GOS, I installed it once and so far so good (5+ months in).
Just some tips for new users: Just install it and dont be afraid to try things out (Google Store, profiles, Aurora…etc). Oh and dont make it tooooo complicate with many profiles and private space. You can test first but dont over do it if you’re not experienced.
And no, I am not a dev from GOS lol. I’m an ordinary user who wants to take control of my phone.
MalReynolds@slrpnk.net
on 18 Feb 08:03
nextcollapse
Just some tips for new users: Just install it and dont be afraid to try things out (Google Store, profiles, Aurora…etc). Oh and dont make it tooooo complicate with many profiles and private space.
I recommend a clean main profile (i.e. no Google Play etc) and a corrupt profile, install your stuff then find FOSS replacements for main. Over time you naturally decouple from Google, but it’s there if you need it.
greatwhitebuffalo41@slrpnk.net
on 18 Feb 12:56
collapse
I got a new (to me) pixel a bit ago and haven’t switched back cause life has been crazy. I miss GOS. Maybe this weekend I’ll have a minute to do that.
Aurora is also a good substitute store if you don’t want to use sandboxed Google Play, but anything that uses Google Play Services will likely be borked
For most of the Play Store apps, it’s really a good alternative. However. some apps require to be installed from Play Store, like banking apps, but for everything else, it works fine.
Well, I installed Play Store and Services from the Graphene App Store. Unfortunately my banking app must be installed from Play and needs services, but that’s really the only reason.
macaw_dean_settle@lemmy.world
on 18 Feb 12:32
nextcollapse
Doesn’t matter if it’s at the beginning or end of the pipeline. It’s feeding the demand.
I have a second hand Pixel for GrapheneOS to compromise without being compromised. Was degoogled with Lineage for many years, but it was becoming too much of a problem. I’m not happy owning literally a Google phone. Felt I had no choice.
Really, regulators are needed to sort this out. Consumer choice doesn’t work with dualopy.
Ideally we’ll eventually switch to a Mobile Linux OS in the future, such as postmarketOS, as that would not be beholden to corporate decisions like Android is with Google.
No Linux OS currently supports many models of phones, and the ones it does support, it is still quite janky and not ready for a general audience (calling is often flakey, phone apps are pretty glitchy, etc). The best we can do at the moment is either donate toward those projects with either money or code (if someone is able to) to help get more hands on it to polish it up and expand support for more phones.
GrapheneOS is currently the only really polished privacy respecting mobile option that the average user can realistically adopt.
I bought mine from Telus … so i would think Telus gave them the money a long time ago for said phone and i’m just giving Telus back their money … now i’m not giving money or data to anyone.
mavu@discuss.tchncs.de
on 18 Feb 13:21
nextcollapse
I understand the complexity of supporting different hardware, but i cannot take this thing seriously while it only runs on google pixel phones.
The level of security, of privacy and of granular control of those does not come even close to what GrapheneOS brings to the table. Additionally Iodè and /e/OS have some noise going on with not being private at all. And all of them, except LineageOS (some times) have long delays with security patches.
/e/OS uses OpenAI for voice-to-text. Iodé has closed source components (trust me bro?). What do they claim? “some protection is better than none”. In security that is ridiculous.
Then there is choosing between Microg vs actual sandboxed Google Play Services (which you don’t need to have at all on GrapheneOS if you don’t want to).
/e/OS signs their OS with Google test keys instead of their own keys.
Unconfirmed, but concerning is the claims of ties of those 2 (Iodé and /e/OS) with the French government, not unlike Chinese companies with the CCP.
Choosing LineageOS, or even CalyxOS are options I would consider if I wasn’t willing or able to get a Pixel device, but Iodé and /e/OS are absolute ‘no’ in my book. Too many holes, too pragmatic (and I’m trying to be nice using that word) for my taste.
GOS is all about security. Priority of IodeOS or CalyxOS is privacy. All the “noise going on” you are talking means nothing without any evidence.
LineageOS and IodesOS are releasing every month the security patches for the official supported devices. There are no meaningful delays.
Closed source is not bad per se. GOS allows Play Services.
MicroG is optional on IodeOS, LineageOS or CalyxOS. You don’t have to use or to install it.
/e/OS is the worst of all of them. But still better than Vanilla Android.
Claims doesn’t matter only real evidences. And there are non.
Non of these ROMs are perfect. You have to pick the one who fits your needs best. For some its GOS for others it’s IodeOS.
This table is old. Patches are coming within days after release. I know that, because I have two phones to test all those roms. On IodeOS I got the first beta some days ago for the next march update. They are not slow. They are as secure as vanilla Android from Google. GOS is the paranoid on. Perfect for paranoid people like the developers themself.
Only exception is /e/OS. It still is very slow to releas patches or even new Android version.
I’m looking into getting a Jolla, though I’m sure the security probably doesn’t match up to GrapheneOS. They seem more privacy oriented and these days I’d like to contribute to the existence of European alternatives.
Zedd_Prophecy@lemmy.world
on 17 Feb 23:56
nextcollapse
This OS is pointless. I have a Motorola Edge. It’s like the OS is written by Google fanbois. Know what would be cool? Something that works on many types of phones.
ToTheGraveMyLove@sh.itjust.works
on 18 Feb 18:39
collapse
Too bad those other phones have shit security hardware. That’s the only reason Graphene uses Pixels.
I am probably gonna go with either graphene or a Linux phone next because of google doing their stupid shit as always
I may try and get a cheap phone to put some alt android ROMs on and test or maybe a Linux os but some of my favorite apps are android exclusive so I am probably gonna stick with a modded android system
Either lineage, /e or graphene
threaded - newest
I ran various custom ROM’s for years on a FairPhone3+. It was great right up until the day all my banking apps stopped working. Banking app incompatibility is NOT the fault of GrapheneOS (or any other custom ROM) dev’s at all . . . but IMO this is the real problem today with any alternative mobile OS. Privacy vs. banking convenience. And yes, YMMV as some of them do work . . and mine did as well . . right up until the day they didn’t.
Do banking exclusively through the online portals? For me, if that means using my desktop or a laptop for banking, that’s what I do, because I will not install a banking app on my phone.
not every bank lets you
my condolences are you euro?
south american.
I didn’t know they rolled like that, good to know for the purposes of learning about banking & surveillance systems. haven’t seen it mentioned on GOS forums
the facial scanning tech you guys are starting to see used against you now has been trialed in your colonies first to make sure it works well for them.
boomerang is just now coming back on this one.
Switch banks. That’s what I did. I had a bank that required an app to use them as well before I decided that I cared about my privacy and wanted more of it. And when I found out that my bank wouldn’t let me do things, I switched banks. Because fuck them.
Generally it’s neobanks that cause the most problems. If you’re using older banks that have been around for quite a long time, they don’t have nearly the technology, so are less likely to have this occur. In the United States, an example of this might be something like Wells Fargo or Discover or something like that, whereas one of these neobanks that would cause problems would be like chime.
Generally, stay away from thin tech and stay with actual banks. You might also look at credit unions. My local credit union is really good, and has a good online website, and has an app as well, but doesn’t require it at all.
i’m not aware of any i can switch to in my country that doesn’t require a phone and an annoying pairing process.
Nice idea in theory . . . but here in the UK, increasingly customers are being left with little other choice. Between banking apps using push messages to verify credit/debit card transactions, closing of physical branches and requiring authentication via the app to log into the website . . . not using their app is becoming more and more difficult every day.
What services do they have for senior citizens? Because they are the most likely ones to not want to use technology. You can probably piggyback on what they use.
They are offering free classes for seniors to teach them how to use the apps.
finextra.com/…/lloyds-to-provide-free-digital-ski…
Okay, in that case, I would just buy a very cheap second device and have your primary one using a privacy system such as graphene and then use a secondary one that you never turn on except for doing that kind of stuff.
That way, at least your primary system is isolated from the rootkit that is things like Google Play Services.
Just use a web browser.
People act like they can’t live without these apps, which are often just a repackaged website anyway.
My bank requires using a card reader for ID if you use a web browser. It can be done but it means carrying three physical things (phone, bank card, bank card reader) instead of one (phone).
So it is a minor inconvenience?
Also it would be an option to switch banks.
My point is that there is an actual difference. It’s not just a repackaged web app, and has actual drawbacks.
My personal plan is to move as much of my day to day stuff to a Mecha Comet, and also carry my Fairphone running Android for whatever proprietary crap that the world wants me to run. It’s two devices, but hopefully will minimize exposure to big tech.
Nice idea in theory . . . but here in the UK, increasingly customers are being left with little other choice. Between banking apps using push messages to verify credit/debit card transactions, closing of physical branches and requiring authentication via the app to log into the website . . . not using their app is becoming more and more difficult every day.
I would use banking through the browser for sure, but to be able to login on the browser i can only receive the pin through the app. not only this ,but everytime i make a purchase online I have to authorize the transaction through the app. There is no other way, they don’t even offer a physical token anymore.
If you don’t mind disclosing, what bank is that?
It’s the Romanian Commercial Bank founded to take over the commercial banking operations of the National Bank of Romania in 1990.
Sounds like it’s time to find a new bank then.
I bought a pixel 10 because I wanted face unlock for contactless payments (level 3 biometric).
But from what I’ve read in the past, GrapheneOS doesn’t work with most banking apps let alone payments.
It depends on your bank. I have brazilian banks that work perfectly well with tap, they just don’t rely on Google Wallet.
Just tap the card and check your bank account via browser?
We’ve been doing electronic payment and banking without smartphones for decades…
My primary bank is phone only.
I’d fucking switch banks lmao, that’s atrocious.
I’m sorry dawg.
I actually quite like it. The bank is called Monzo and the app is well presented. Support is fast and I hardly ever go to the bank anyway. Post offices play the role for cash and cheque deposits.
Break free from Google! By buying a Google phone…
This betrays a deep level of tech illiteracy
Not knowing you can buy used/refurbished betrays a deep level of real life illiteracy
I know you can buy used and refurbished actually, that’s how I got my pixel. It’s still buying a Google phone. It still breaks free from Google. You have now reached the point of just regular old illiteracy I guess
That’s precisely my biggest problem with GrapheneOS
<img alt="List of supported phones" src="https://lemmy.today/pictrs/image/326664dd-398b-43ae-a551-f364228ce6f8.png">
If only something more than Pixels was supported.
Do you recommend putting it on pixel 6? Or is it outdated?
older pixels have fewer years of GOS dev support remaining. recommend 7+
If you already have one go for it. My 6 with GOS runs significantly better than my 8 with stock android. I wouldn’t buy one specifically for it though, I’d go newer since it will be supported longer.
SOON
™
We will probably get GTA VI first.
Maybe even Star Citizen!
Blame literally every other hardware manufacturer for not implementing encryption enclaves correctly.
Oh yes the magical security black box that is 100% trust worthy! Surely nothing can ever wrong!
Most manufacturers don’t even allow you to unlock your bootloader nowadays. And the requirement of relocking it with custom keys basically means only Pixel phones (plus a few VERY old non-pixel phones) pass this absolutely basic requirement.
Graphene os can run it on other phones, it’s just not as secure and you have to build it yourself
Another reply did the thinking emoji face at biometrics and that’s good. Here’s why it’s worthwhile to never enable biometrics:
You don’t know when you’re going to be compelled to use them and you don’t drill on turning them off.
The whole point of no knock and other police tactics is to prevent you from keeping them from getting what they want. You can’t expect yourself to just never be surprised, that’s ridiculous. Turn biometrics off so getting surprised by the cops doesn’t immediately give them the keys to the castle!
No one drills enough, but let’s say you’re the one person who does drill enough on turning off biometrics: wouldn’t that practice time be better spent with biometrics off, drilling on shutting your phone down so they have to deal with its much more secure Before First Unlock state instead?
Turn off biometrics and practice turning your phone off.
I wonder is this something to actually worry about outside of the US?
In my country police are known to torture people until they sign a confession written by them. So I don’t think disabling biometrics will make a difference. But I’ve still done it.
nobody should discount hardware-level hacks either. ultimately GOS is the only way to get decent software on mobile without leaving it exposed in the event of petty theft. people implying it will be a serious roadblock to imperialist state-level actors are naive or even suspicious to me
Yes it absolutely is.
Every nation has a byzantine system of laws and codes enumerating different ways for police to violate the “rights” that nation has enshrined in law.
One way to avoid compelled speech (a “right” Americans have but other nations citizens might not) is to simply misremember your lock code as many times as it takes to trigger factory reset.
Americans don’t need to know that because they can’t be compelled to enter a passkey, but people in countries with no qualms about compelled speech like Germany would be well served by disabling biometrics so they have the option of lying and taking that hit instead of giving up their privacy.
Do your own research about your jurisdiction, but go ahead and turn off biometrics because it literally makes any group that can control your movement (which in English common law is the basis for the concept of “arrest”, and so likely a situation many different nationalities will face) access to your devices.
FWIW gOS has a duress PIN baked in. Doesn’t stop the rubber hose but at least you can be smug ;}
The duress pin seems like such a cool feature, but I feel like it flies a little too close to the sun.
Misremembering your own pin ten times stretches the limit of credulity, but a lawyer could argue that under the circumstances of enhanced interrogation you weren’t able.
Expressly giving the wrong answer in a place with compelled speech threatens to add a million new legal hurdles to your freedom.
When you fuck it up ten times they’re gonna try to slap you with those charges anyway but at least you have some defense instead of it being an open and shut case of “he’s recorded entering the evidence destruction button when we asked him nicely to instead let us push the evidence retrieval button”
For assange types (and I mean people actively under threat by a nation which has a set of charges it’s investigating or planting evidence for, not people who have leaked documents or share his ideals) it’s a good thing, but anyone not dodging the “if I walk out of the embassy they’ll “find” cp on my phone” bullet it seems like more trouble than it’s worth.
Valid in many cases (hence the rubber hose quip), I was merely responding to above. It does have use as a quick way to burn it all down before any requests are made.
Yeah sorry to hit you with a wall of text.
Between all the people who refuse to use graphene because it’s on pixels and the ones who seem like they haven’t been keeping up with the news or even had any interaction with cops this thread is deeply disturbing and hitting all the buttons that make me wanna say No Don’t Do That!
Who knows, maybe there’s a good case where someone uses the duress and gets away with it. I think assange did once before…
“all laws are local, and no law knows how local it is”, which is to say it on the user to understand their local legal (and political) situation. It’s a big world.
But yeah, there’s a bit of naivete here, the rubber hose (cryptanalysis) was also a reference to the xkcd
Other than security differences, is the interface just like on a Pixel? Can I still force dark mode on uncooperative apps like on Pixel? Is there still notification history? Screenshots/select on overview?
Don’t remember if the interface was much different. Forced dark mode and notification history work fine. You can take screenshots in the overview, not sure about select, maybe you need an app?
I was seriously considering getting an over priced pixel phone just so I could get graphene os, but then I discovered, that rooting it is impossible. Pity
.
This attitude is, to me, very security through obscurity. I did consider your idea, but on the whole can’t be bothered 🤷
.
Utter hogwash. If I don’t have a device, a hacker can’t gain access to it. That’s security through obscurity. Make things stronger, not evasive
.
Have never looked back since i switched to gos… just buy a refurbed pixel to avoid giving big G ya monry.
Remember, though, in less than 200 days google kills all “sideloading.” It seriously fucks with gos, and they have hinted they will eventually disable flashing custom roms
Fairphone 6. Google can suck it. As long as people support the company, competition is coming. Hopefully, they have the resources to keep on going after Google shits on everyone.
Gah. I was really torn between replacing my broken Pixel with another Pixel+GOS or buying a Fairphone 6…
I ended up going with the Fairphone 6 cuz I want to support other players. I’m not completely off Google, but I keep moving away where I can.
I wish Fairphone and Graphene were friends… :/
If fairphone had the hardware support and kept up with modern android versions, GOS would have no beef.
I don’t have any issues. I also deleted MicroG so have 0% google nonsense. If I need to make a transaction, I have a Linux laptop for that. One could get a FF6 and still make transaction with MicroG.
When I started my degoogle process some time back & researching options I literally laughed at loud at myself. Am I seriously going to hand over yet more money to the very beast I am trying to get away from? Talk about instant compromise of values
Years later, extremely proud of that decision. Just a non starter. Buying second hand also creates a market value for selling more google crap
No OS comes close to Graphene in security. Second hand sales for Graphene are a drop in the bucket for Google. If Graphene went away and people stopped buying second hand Pixels for that purpose, it wouldn’t even be a blip to them.
You do you. I stand by my principals and don’t feel the need to pretend I’m some sort of Jason Bourne.
Weird how now that Google went quarterly with their older device updates… it’s suddenly just not the big deal the GOS folks used as a hammer, with their ad nauseum attacks on other privacy projects. Back then I could smell their overhyped, overplayed security scare marketing tactics from a mile away. As it turns out, I was right.
Not having any google crap in my household? Absoltely priceless
If you don’t value security, that’s fine, but one does not need to be Jason Bourne to want a secure device. Also, privacy ≠ security.
If you are willing to believe that google of all people don’t have backdoors into their own first party hardware, you do you.
Oh, so now we’re just making stuff up now with zero evidence. Gotcha.
Fool me once …
This is google. They have a track record of spying on anybody and everybody through whatever means available. The burden of proof is with them, at least as far as I’m concerned. You can do what you want, but I won’t buy anything with their name on it.
what phone did you buy then and how did you get rid of and or block google play services?
Graphene coming with OEM phones other than pixel so it will solve those issues
Aren’t there things GrapheneOS can’t do though like banking, wallet, and bus pass? I hope im misinformed because I’d love to switch to an alt OS.
I use my USAA banking app, my stock app with Charles-Schwabb, and even Bitwarden with biometrics on GOS. It may have been limiting before, but not anymore. They have a sandboxed Google Play integrity whatever, too, do you can turn that shit on for select apps and it alerts you when an app is calling it.
Aurora Store also has the Play Store apps with reduced bloat. I’ve been using GOS on my Pixel 7 since late last year. It has a slight learning curve, but lots of info out there for how and what to change in settings for different apps and permissions. Definitely don’t regret my install!
Very encouraging!
You can sandbox Google Play services and 99% of things will work that way
Most banking works fine. There was a time it had more problems but I don’t even need to use a secondary profile with Google Play Services running any longer.
NFC works, but that is app specific. So no, wallet won’t work because google wallet wants Google services to work. But in the EU some banks have their own contactless payments that work fine. In the US none do to my knowledge. For bus pass etc that would be down to your app and if they require google services or not. There’s always the option for secondary profiles.
To me, I was amazed at his many apps use google services for notifications. So many apps work, but don’t give me notifications unless I open the app… Which I’m okay with because 99% of them I would turn off anyways.
TL;DR The above commenter is spreading FUD. GOS will work fine and allow sideloading.
Stop spreading FUD. Google kills sideloading on Google certified ROMs. Being Google certified doesn’t mean you have more features than ROMs which aren’t certified. Only Google certified ROMs lose the ability to sideload and have to adhere to all Google Play policies. Meaning GOS loses its certified status but doesn’t lose the ability to sideload. The only way in which GOS might be coerced to disable sideloading is if Google pushes these changes upstream to the AOSP and even then forking is always an option. Also when has Google ever hinted at disabling flashing custom ROMs? It might be right down their alley but I wouldn’t make such claims without citing sources.
Just as a side note: Android ≠ AOSP. This is relevant as many people misunderstand the news they read. When Google changes Android (Google’s proprietary AOSP “distro”) it doesn’t necessarily mean that changes are coming to the AOSP or GOS which is also an AOSP “distro”.
Reading through this forum thread is recommended.
Im not trying to “spread fud.” The state of 3rd party software on android is where it is. Google is introducing a high friction system for unverified apps that includes fees paid directly to google, and is not releasing to aosp in advance at all… this potentially means things like f droid and aurora cant operate. It doesnt mean that gos wont “allow” sideloading, but that you wont have alternatives to load. It also means you will have to increasingly be limited to sandboxed google play, with more barriers to overcome to make those apps work on non-android. androidauthority.com/android-changes-third-party-…
Wish i could find where i read that google was planning to eliminate bootloader access… they walked it back in the end after expected uproar. Ultimately, the pressure from ‘verified by google’ and the changes to AOSP are enough pressure to push out ROMS as it is…
androidauthority.com/android-rom-calyxos-support-…
Anyway, listen. I LOVE graphene. Everyone should use it, BECAUSE google is demonstrably a band of fuckwits. Im not trying to dissuade but inform. I am excited for an announcement about who theyre working with when they say their future is a phone made in connjunction with a “major OEM” maker. androidheadlines.com/…/grapheneos-may-break-pixel…
I don’t doubt that in the future Google will kill off the AOSP and disable installing custom ROMs like Apple does. But it just isn’t accurate to say that in 200 days sideloading on GOS won’t work or that Google disabling sideloading on their ROM even affects GOS in any way.
I use GOS and I am all for correcting people, but perhaps next time, don’t assume they are spreading FUD, and instead assume they are just misinformed
Never attribute to malice what can be attributed to ignorance and stupidity.
Only a Sith deals in absolutes!
I don’t see how spreading FUD and being misinformed are exclusive. I didn’t say he was doing so in bad faith, just stating that the comment created fear, uncertainty and doubt without any factual basis.
To be fair Wikipedia does say it is a manipulative propaganda tactic but I’ve usually meant it in the abovementioned context.
Also, break free from RCS and from participating in group chats with anyone you can’t convince to move to another platform.
I daily drive grapheneOS, and wouldn’t go back to iOS or Google-ed Android for anything, but it really sucked having to tell friends, family, and others I couldn’t participate in our old group chats anymore.
EDIT: Apparently, they released a fix over the weekend, as aoude pointed out in another comment. So it’s working for me on AT&T now.
Link to instructions: https://grapheneos.org/usage#rcs
.
Totally understood. It wasnt a deal-breaker for me, but I can see how it would be for others.
I’ve seen on the grapheneOS discuss boards that some people have gotten it to work, but none of their fixes have worked for me.
.
.
I’m on AT&T so I will definitely try it!
Thank you!
.
It worked! I’ll update my original comment! Thank you again!
I’d likely make the jump if they supported Google pay. But they don’t, so iPhone it is now
.
There’s also the risk that credit card companies are claiming that fraud done using your phone app (for example, someone stole your unlocked phone(*)) is not covered, and you are on the hook for losses.But stolen physical credit cards are always covered.
(*)EDIT: I thought I’d read a report that someone who had been mugged and forced to give their phone+PIN had an issue with their CC company; but it looks like this is mostly a problem with money transferred out of a bank account, not credit card purchases… and even then, hiring a lawyer will usually get the bank to pay-up.
.
sorry, I think I was confusing bank transfers with credit card transactions.
Credit card companies can claim whatever they want, that’s not how their agreement works. They need to cover. But also the risk of someone stealing my unlocked phone is so exponentially lower than the risk of someone stealing my cards that I’m not even remotely concerned.
I don’t remember the last time I brought my cards with me. Needs to be on my phone.
.
“Needs to” may be a bit strong for you, but for me it’s legit. I will NOT switch to an OS without Google Pay, Apple Pay, or Samsung Pay.
If my phone is dead, broken, or stolen, I use my watch.
.
That’s great, I still need primary on the phone with backup on the watch.
I have not encountered a place that doesn’t accept Apple Pay since I stopped going to Walmart years ago.
Break free from Google with buying Google product? Lol
Ironic but true
Meh, there are better phones that actually support an open source community.
Fairphone with e/os has been working pretty awesome for me.
e/OS is fantastic, IodeOS also IMO, plenty good choices. LineageOS with rethinkDNS in whitelist only mode is also amazing
And for extra goodness supporting open source apps without trackers
All without handing yet more $$$ to nasty google, imagine that
There’s no reason not to buy a second hand Pixel.
other than a burning hatred for google that prevents you from participating in keeping the resale market high. lol
If what you care about is security though, nothing comes close to Graphene.
I care more about privacy and freedom.
Graphene has that too tho. Not sure how /e/OS is more private or free.
GOS is great. Funny, I used to rom hop and distro hop a lot; but on GOS, I installed it once and so far so good (5+ months in).
Just some tips for new users: Just install it and dont be afraid to try things out (Google Store, profiles, Aurora…etc). Oh and dont make it tooooo complicate with many profiles and private space. You can test first but dont over do it if you’re not experienced.
And no, I am not a dev from GOS lol. I’m an ordinary user who wants to take control of my phone.
I recommend a clean main profile (i.e. no Google Play etc) and a corrupt profile, install your stuff then find FOSS replacements for main. Over time you naturally decouple from Google, but it’s there if you need it.
I got a new (to me) pixel a bit ago and haven’t switched back cause life has been crazy. I miss GOS. Maybe this weekend I’ll have a minute to do that.
I’m using Graphene for around a 6 months now on a Pixel 9, with F-Droid being the primary app source. I quite like it.
have you needed to use microG for any apps? is it a sufficient replacement for google play?
MicroG isn’t necessary with Grapheneos’s sandboxed Google Play.
Apart from unnecessary, pretty sure it’s also unsupported to begin with
Aurora is also a good substitute store if you don’t want to use sandboxed Google Play, but anything that uses Google Play Services will likely be borked
For most of the Play Store apps, it’s really a good alternative. However. some apps require to be installed from Play Store, like banking apps, but for everything else, it works fine.
Well, I installed Play Store and Services from the Graphene App Store. Unfortunately my banking app must be installed from Play and needs services, but that’s really the only reason.
Still using Windows 10 Mobile.
Break free from Google by giving your money to Google!
I bought my Pixel 9 refurbished (as new).
Refurbished is a thing. So is
Spoiler
stealing
Doesn’t matter if it’s at the beginning or end of the pipeline. It’s feeding the demand.
I have a second hand Pixel for GrapheneOS to compromise without being compromised. Was degoogled with Lineage for many years, but it was becoming too much of a problem. I’m not happy owning literally a Google phone. Felt I had no choice.
Really, regulators are needed to sort this out. Consumer choice doesn’t work with dualopy.
Ideally we’ll eventually switch to a Mobile Linux OS in the future, such as postmarketOS, as that would not be beholden to corporate decisions like Android is with Google.
Which phone works completely on postmarketos? Looks like only librem5, which are expensive, especially for the spec.
No Linux OS currently supports many models of phones, and the ones it does support, it is still quite janky and not ready for a general audience (calling is often flakey, phone apps are pretty glitchy, etc). The best we can do at the moment is either donate toward those projects with either money or code (if someone is able to) to help get more hands on it to polish it up and expand support for more phones.
GrapheneOS is currently the only really polished privacy respecting mobile option that the average user can realistically adopt.
I bought mine from Telus … so i would think Telus gave them the money a long time ago for said phone and i’m just giving Telus back their money … now i’m not giving money or data to anyone.
I understand the complexity of supporting different hardware, but i cannot take this thing seriously while it only runs on google pixel phones.
Nothing else meets the secuirty requirements and they don’t want to comprimise.
grapheneos.org/faq#future-devices
We need data portability laws to really untie people from these platforms.
And competition law enforced. Consumer choice doesn’t work when it’s a stitched up market like this.
Just use IodeOS, CalyxOS, /e/OS or just LineageOS to break free. Those are available for a many devices. Not only Pixel.
The level of security, of privacy and of granular control of those does not come even close to what GrapheneOS brings to the table. Additionally Iodè and /e/OS have some noise going on with not being private at all. And all of them, except LineageOS (some times) have long delays with security patches.
/e/OS uses OpenAI for voice-to-text. Iodé has closed source components (trust me bro?). What do they claim? “some protection is better than none”. In security that is ridiculous.
Then there is choosing between Microg vs actual sandboxed Google Play Services (which you don’t need to have at all on GrapheneOS if you don’t want to).
/e/OS signs their OS with Google test keys instead of their own keys.
Unconfirmed, but concerning is the claims of ties of those 2 (Iodé and /e/OS) with the French government, not unlike Chinese companies with the CCP.
Choosing LineageOS, or even CalyxOS are options I would consider if I wasn’t willing or able to get a Pixel device, but Iodé and /e/OS are absolute ‘no’ in my book. Too many holes, too pragmatic (and I’m trying to be nice using that word) for my taste.
yes, but you have to use a pixel.
Wao 🤣
the security not close, but its already a big leap from stock rom, and most likely dont need to waste money on a pixel.
GOS is all about security. Priority of IodeOS or CalyxOS is privacy. All the “noise going on” you are talking means nothing without any evidence. LineageOS and IodesOS are releasing every month the security patches for the official supported devices. There are no meaningful delays. Closed source is not bad per se. GOS allows Play Services. MicroG is optional on IodeOS, LineageOS or CalyxOS. You don’t have to use or to install it. /e/OS is the worst of all of them. But still better than Vanilla Android. Claims doesn’t matter only real evidences. And there are non.
Non of these ROMs are perfect. You have to pick the one who fits your needs best. For some its GOS for others it’s IodeOS.
<img alt="" src="https://lemmy.zip/pictrs/image/de18f614-32bf-4da8-be1a-eea2427192ff.avif">
‘not significant’, right.
This table is old. Patches are coming within days after release. I know that, because I have two phones to test all those roms. On IodeOS I got the first beta some days ago for the next march update. They are not slow. They are as secure as vanilla Android from Google. GOS is the paranoid on. Perfect for paranoid people like the developers themself. Only exception is /e/OS. It still is very slow to releas patches or even new Android version.
I’m pretty paranoid myself, so your logic checks out.
I’m looking into getting a Jolla, though I’m sure the security probably doesn’t match up to GrapheneOS. They seem more privacy oriented and these days I’d like to contribute to the existence of European alternatives.
commerce.jolla.com/products/jolla-phone-preorder
by using a Pixel…
Buy one used to not financially support them. GrapheneOS only supports Pixel phones as they are the only ones which meet the security requirements.
grapheneos.org/faq#supported-devices
I will always laugh at their “security requirements”
What is wrong with them?
This OS is pointless. I have a Motorola Edge. It’s like the OS is written by Google fanbois. Know what would be cool? Something that works on many types of phones.
Too bad those other phones have shit security hardware. That’s the only reason Graphene uses Pixels.
I am probably gonna go with either graphene or a Linux phone next because of google doing their stupid shit as always
I may try and get a cheap phone to put some alt android ROMs on and test or maybe a Linux os but some of my favorite apps are android exclusive so I am probably gonna stick with a modded android system Either lineage, /e or graphene
GrapheneOS is just great. 2 weeks into it and it works soo good.