cross-posted from: https://slrpnk.net/post/15995282

Real unfortunate news for GrapheneOS users as Revolut has decided to ban the use of ‘non-google’ approved OSes. This is currently being posted about and updated by GrahpeneOS over at Bluesky for those who want to follow it more closely.

Edit: had to change the title, originally it said Uber too but I cannot find back to the source of ether that’s true or not…

You are viewing a single thread.
View all comments View context
3 points

I don’t think LOS has any privacy/security improvements over the stock android?

(IIRC) it’s even worse than stock because you can’t lock the bootloader after installation.

Though if your phone isn’t getting official updates, it’s probably safer with LOS.

permalink
report
parent
reply
1 point

(IIRC) it’s even worse than stock because you can’t lock the bootloader after installation.

That’s a problem with the phone manufacturer, not with Lineage.

permalink
report
parent
reply

LineageOS itself drastically weakens security even compared to stock AOSP, for example by exposing root access or deploying insecure SELinux policies

permalink
report
parent
reply
1 point

Physical access is game over anyway?

permalink
report
parent
reply

Not with GrapheneOS, since you can entirely disable the USB controller from the settings on a driver level, making it impossible to connect the phone to a forensic data extraction device. GrapheneOS also has a convenient auto-reboot feature, which (together with their patches to the Linux kernel and Fastboot recovery OS to include memory zeroing) erases the encryption keys from memory, putting the device in BFU state and requiring the PIN/password to unlock. This is additionally secured by the Titan M2 secure element, which makes use of the Weaver API and drastically throttles brute-force unlock attempts. https://grapheneos.org/faq#encryption

permalink
report
parent
reply
0 points

Some cool features, wonder what backdoors google have put in the hardware

permalink
report
parent
reply
8 points

There’s also the Lineage-based DivestOS that attempts to keep up with more security updates, and relocking the bootloader in phones that support it.

https://divestos.org/

permalink
report
parent
reply
4 points
*

Yeah, I myself am using CalyxOS, because DivestOS doesn’t support the Fairphone 5 unfortunately. CalyxOS also has relocking.

permalink
report
parent
reply
3 points

Calyx also comes with MicroG, right? So mitigates many problems with a bit more Google.

And Fairphone 4 here, partly for Divest (had it on Oneplus 6 before this and just used to it), partly because of a good deal for a barely used one.

permalink
report
parent
reply

Privacy

!privacy@lemmy.ml

Create post

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

  • Posting a link to a website containing tracking isn’t great, if contents of the website are behind a paywall maybe copy them into the post
  • Don’t promote proprietary software
  • Try to keep things on topic
  • If you have a question, please try searching for previous discussions, maybe it has already been answered
  • Reposts are fine, but should have at least a couple of weeks in between so that the post can reach a new audience
  • Be nice :)

Related communities

much thanks to @gary_host_laptop for the logo design :)

Community stats

  • 5.6K

    Monthly active users

  • 3K

    Posts

  • 81K

    Comments