Understanding the basics of new exploit protection toggles in 2024083100

Fog-Nearby

Hi everyone,

My phone was updated to 2024083100 this morning on the stable channel, and I have been looking over the release notes, website doc, and this forum regarding the new exploit protections:

Settings > Security & privacy > Exploit protection > …WebView JIT …Dynamic code loading via memory …Dynamic code loading via storage

I need to dig deeper as their explanations are beyond my understanding. I would appreciate some input from this forum on the use case/threat model(s) that benefit from these new settings. In most cases that I’ve seen, GOS defaults new features to the right option for most people. I’m inclined to simply leave them alone but would love to learn more.

ErnestThornhill

Read this: https://discuss.grapheneos.org/d/15395-grapheneos-version-2024083100-released

as well as towards the bottom of https://grapheneos.org/features#exploit-mitigations