Nostr Web Client

this android-google liability is starting showing his face. You grapheneos guys blasted mobile linux desktop-like userspace projects for a lot of time, and for good reasons. Still, we need a way to freedom us and have an indipendent good mobile os. Forking android? Making linux phones os better and more secure? IDK.

Final 3mo ago

We would continue by backporting fixes ourselves as we have done now or making our own continued or separate OS security work regardless of the stress. We have large funding to build stepping stones on what needs to be replaced.

We aren't willing to commit onto anything else because that means we are just distributing a product we claim is secure but actually isn't. We have been extremely vocal about scam products and it would be a hypocrite move for us to move to that. There would be a guilt in our consciousness.

Our roadmap had always been in the far future to leave the Linux kernel behind. It is a liability to the security of GrapheneOS far more than anything else. We have a lot of kernel hardening work and our hardened memory allocator can be bundled into Linux kernel operating systems. It isn't our fault it isn't adopted in anywhere but our OS and secureblue. Ones that previously did ended up removing it out of preference or justified it through misguided beliefs. There is a deep anti-security culture in that space.

Reply to this note

Please Login to reply.

Discussion

Final 3mo ago 💬 1

What we said about other platforms will stay... If people want real-world protection against zero-days used by exploit developers like Cellebrite and MSAB who we have directly disrupted and likely Paragon (Graphite) and NSO (Pegasus) whose previous victims have turned to using GrapheneOS, they know what platforms they have to give us to accomplish that.

We are on their radar and they watch the work we do closely and have a research target in attempting to exploit GrapheneOS. Cellebrite have separate pages on their docs just about us... The moment we commit to any other device, that OS / device combination will be researched far and wide for security holes. Insecure devices without updates or hardware security features WILL be exploited. They'd win and you would lose.

I lack confidence that the Linux developer community will change their priorities. They care more about being anti big-tech or promoting some dogmatic "freedom" talking point than things like this. While they are good values to have, you won't be able to practice them safely if this is what oppressors are working with.

ciori 3mo ago

As I always say, you don't get privacy if you don't have security.