• Off Topic

  • Recommended approaches and apps by the GrapheneOS team

Hello,
I was thinking about a recommendation site by u (the team) to guide people to make the right choices for themselves. It can be quite difficult to get on the right paths and not be blended by all the theatre and misinformations out there. I know threat modelling is very important but for many people it can by very difficult to understand the complexity of each topic and other misleading voices are lout.

So a easy guide started by a trusted party like u might be a good idea.

It can be categorized so the people can find themselves faster, for example:

  • Degoogle only
  • Whistleblower
  • Journalist
  • Etc.

And i though it can be helpful to guide people with toggle and settings they might consider to change and with should be untouched like system apps permission. (Many of them are shown by default even if u don't go to the burger menu and click "show system")

Or which vanadium settings should stay on default to stay within the crowd.

And this can be made for each category.

On top a not recommended approach could be helpful too, so people can easy stay away from bad actor's with misleading marketing.

I think that would benefit the forum as well.

    [deleted] thanks. I think most people now about them, but it isn't easy to go throw for awry one. I like this side and it is indeed informative, but my idea described above can help people further and hopefully more easily.

    That is what i will discuss here. :)

    I invite all to proof me Wrong, evtl. We came together to a better idea. :)

      7 days later

      Keep in mind that the GrapheneOS development and moderation teams already have enough on their plate and that diverting time and resources to create and manage/keep up-to-date something like this will only hinder more important tasks that are a much higher priority for them.

        kebab_definite I'm not sure what you are trying to say but there are already plenty of guides available and websites similar to what you suggested which align with GrapheneOS and this community.

          all this information is available. It's just not described as a guide in case studies. But you can find it all.
          and that's exactly what's good. That everyone can configure their needs individually.
          you have to get to grips with the subject. The topic is too difficult for lemmings

          Bootlace1170 I love Michael Bazzell and learned a lot from him, but his books are not the universal answer either. He gives specific advice like using ProtonVPN, Twilio VoIP numbers and PopOS on Laptops from System76. These can never be the answers for everyone (they're not even objectively the best answers when it comes to security and privacy). People need to learn to not fall for best practice fallacy and find their own, unique answers that serve their threat models best.

          For this, privacyguides has a very good database to draw from after you asked the right questions and know what you specifically need to protect against whom.

          All we (as a community) could do is an even more extensive database that requires maintaining. But I think the individual approach we have is much better. People ask questions specific to their situation and we can give education for them to make informed decisions. It's not the convenient solution, but it's the only one that truly works in my experience.

          I'm not speaking for the project btw.

          That all being said, yes educate yourself with Michael Bazzel's books. And podcasts and channels from The Hated One, Naomi Brockwell, Side of Burritos and Closed Network by Simon Walsh. And also learn which channels to avoid as they give harmful advice (some maliciously, some just from ignorance).

              N1b People ask questions specific to their situation and we can give education for them to make informed decisions

              OK, good, practical use case then: what are the community's recommendations for the thread model described at the end of the report right here ?

              Please keep in mind that the usecase described implies plausible deniability for highly non-technical users, and that it must be assumed that the devices will be searched. The adversary's remote capabilities are described here.

                ErnestThornhill

                I think using this great tool adequately/properly is as important as the tool existing. Unless it really doesn't matter how we set users and apps up. It doesn't need to be a developer. It can anybody who fully understands how it works. I am heading over to some of the links provided above. Very much appreciate it.

                  • [deleted]

                  • Post #14

                  N1b

                  Michael no longer recommends Twilio, VoIP.ms is what he recommends.
                  Voip ms welcomes individuals to use their service. With Twilio and Telnex? one has to get a domain with some history and con their way into getting service.

                  • N1b replied to this.

                      [deleted] haven't read the updates in a while, thanks for correcting me!

                      My point is that nobody can give specific advice for a general audience. It always depends on the individual situation.