Hi everyone, I’m looking to possibly simply my smartphone setup. I would really love to keep it as a utility: phone, text, camera, GPS, web browser, notes, email, music player. Im think of switching to local NextCloud backup system as well. I currently have an iPhone but used to flash ROMs on Android phones, so I would be willing to do that again for more privacy options and less unnecessary changes to the OS.

I have looked a little into it, and I’m wondering about getting a couple year old Pixel and putting GrapheneOS on it. I also searched a little and came across the Purism Librem 5 that has physical kill switches and sounds neat; a little pricy but I’d be willing to pay if it lasts a while and has good privacy options.

What are your thoughts? Are there other hardware suggestions or setups that you like? The idea of FOSS is appealing because it seems like the money aspect seems to skew the priority of smartphones.

  • jarfil@beehaw.org
    link
    fedilink
    arrow-up
    5
    ·
    11 months ago

    I think the only thing you will lose with GrapheneOS is tap-to-pay

    If you want any banking apps, they can also refuse to run without at least microG and some Magisk trickery. Some will go as far as refuse to run if they barely find a sudo binary on an otherwise locked non-rooted phone.

    • IcyPenguin@beehaw.org
      link
      fedilink
      arrow-up
      3
      ·
      11 months ago

      Don’t root your GrapheneOS system. This site offers a great summary why it’s bad. Root and Magisk are huge increases in attack surface and microG isn’t recommended either, as it requires root for basic functionality. GrapheneOS has created Sandboxed Google Play services, which takes the official Google Play services binary and runs them in the normal Android application sandbox. This is more private and secure than both the implementation on the Stock OS and microG. Most banking apps work on GrapheneOS with Sandboxed Google Play services, no need for root. In fact, root decreases your chances of getting banking apps to work, because a rooted device can’t pass Google Play device integrity checks (previously known as SafetyNet).

      • GreyEyedGhost
        link
        fedilink
        arrow-up
        2
        ·
        11 months ago

        I’ve been pretty meh on GrapheneOS, haven’t actually used it, usually lean towards LineageOS, but the sandboxed Google Play feature sounds pretty interesting.