Replying to Avatar vinney...axkl

If you're going to write articles like this you should be citing your references for why GrapheneOS is likely a "deep state trap".

This is really less of an informative wiki article and more of a personal point of view shitpost.
Avatar
🇵🇸 whoever loves Digit 1y ago

Follow the instructions from this segment of the article and you can probably make a good post about this topic:

> The project markets itself as a way to gain security and privacy on backdoor-riddled smartphones. Try going in the project's official chats to continuously remind people their security is always compromised by ARM's CPU-level hardware backdoors, or the proprietary basebands modern phones use. See how it goes. Log it and post how it goes.

Edited to add "continuously" at same time as making this reply, since of course they might allow a quick one-time statement.

Reply to this note

Please Login to reply.

Discussion

Avatar
vinney...axkl 1y ago

It's possible to be aware that ultimate security is compromised by CPU and modem backdoors while stil desiring slightly greater privacy and security with regards to OS and reporting to remote services.

It's a threat model compromise thing. GrapheneOS is better than stock Google Android, but it's not a silver bullet that solves the hardware issue. You're sort of constructing a straw man here, no?

Avatar
🇵🇸 whoever loves Digit 1y ago

No, I am not constructing a straw man. I got banned from both projects' official chats for talking about hardware backdoors lol

I recognize in my articles that they're useful alternatives to getting no more updates for outdated devices, but if they had people in their chat who frequently call bullshit on any lies about what a custom android ROM can actually do, that would make them a little less sus to me, and it might also result in them having fewer developers or users or something.

Avatar
🇵🇸 whoever loves Digit 1y ago

Addendum - the issue probably wouldn't be a shrinking amount of developers or users, but a shrinking amount of careless handling of sensitive data on user devices.

5d
Sandor Clegane 1y ago

No, just a statement of fact really, it is a vulnerability.

But if you are that much of a target then you need something else, none or need to use it in such a way that it misdirects.

5d
Sandor Clegane 1y ago

There is plenty of data that just doesn't matter.

5d
Sandor Clegane 1y ago

Linux on open hardware is probably the solution eventually, it's just not quite there yet.