• angrynomad@infosec.pub
    link
    fedilink
    English
    arrow-up
    1
    ·
    edit-2
    9 months ago

    True discontinued firmware updates…, but look at the actual threat model. Why is calyx a joke?

    • Pantherina@feddit.de
      link
      fedilink
      English
      arrow-up
      1
      arrow-down
      1
      ·
      8 months ago

      (Feddit just started working again)

      CalyxOS implements many random 3rd party stuff as if that was their own.

      Apart from 2 (QKSMS and Bromite) being unmaintained, installing random apps as system apps (if this is what they do) means a system update may cause data loss for users, when removing those apps. And it has the problem of a way too high goal that can not be reached. They simply dont maintain those apps, so dont ship them.

      • angrynomad@infosec.pub
        link
        fedilink
        English
        arrow-up
        1
        ·
        edit-2
        8 months ago

        How much maintenance does a simple SMS app need? What random apps are system apps? Beomite is not installed, not even sure qksms is, but I always use it. Never had a single issue removing any apps. Seems like you’re just very uninformed

        • Pantherina@feddit.de
          link
          fedilink
          English
          arrow-up
          1
          ·
          edit-2
          8 months ago

          They had this on their homepage, advertizing QKSMS and Bromite as if they were project apps. Which they are not.

          So either A: they preinstall apps as system apps or B: they have some form of installer that installs them as normal user apps.

          You should have as many apps as user apps as possible.

          Maybe they changes this idk. But QKSMS is not a simple SMS app like the one that GrapheneOS implements (the old and hardly maintained AOSP one) and Bromite is an unmaintained Browser which is a huge problem. Cromite and Quik are maintained forks.

          Some Archive when they still had Bromite on their page

          Could not find QKSMS but that was somewhere

          • angrynomad@infosec.pub
            link
            fedilink
            English
            arrow-up
            1
            ·
            8 months ago

            Chromium BASED on chromite, which appears to be actively developed. I use mull which works well. Default SMS is “messaging” app.

            • Pantherina@feddit.de
              link
              fedilink
              English
              arrow-up
              1
              ·
              8 months ago

              Interesting. What are the App IDs of those both apps?

              If they base on Chromite that is probably fine.

              • angrynomad@infosec.pub
                link
                fedilink
                English
                arrow-up
                2
                ·
                edit-2
                8 months ago

                org.chromium.chrome

                com.android.messaging

                Idk if I would promote calyxos though, it works, but it’s often buggy for me. I think I’ll go with graphene again, the microg shit is just that…

                And mull https://f-droid.org/packages/us.spotco.fennec_dos/ Which I think is maintained by divestos, another interesting one, I forget why I didn’t go with them

                • Pantherina@feddit.de
                  link
                  fedilink
                  English
                  arrow-up
                  1
                  ·
                  8 months ago

                  Btw get Mull from the DivestOS repo, the F-Droid version has veeery slow updates and less.

                • Pantherina@feddit.de
                  link
                  fedilink
                  English
                  arrow-up
                  1
                  ·
                  8 months ago

                  I am pretty happy with GrapheneOS. Things like separate toggles for internet, or long powerbutton press foe torch are missing.

                  But you cannot imagine how much effort it is to maintain such a project, and their base is stable, the updates are damn fast.

                  First stability and security, then features.

                  Their core OS is minimal on purpose. I use the phone, vanadium (hardened chromium, with JIT toggle, now with adblock, completely degoogled), their attestation app, etc.

                  Most of the other stuff are random FOSS projects, I dont even use sandboxed play, but if I wanted to I could create a separate user profile and install it just in there.

                  DivestOS is doing sandboxed microG which is way more secure than unsandboxed, but still tons of effort and will break a lot.