• [deleted]

rodolphe Do you advise me to use the default SMS app or to install another one (Simple SMS Messenger ?)

First of all my question to you would start by asking" Do you really need a SMS messenger? Since sms is unencrypted, your data is less safe.

If you really do want to use a sms messenger do you need advanced spam filters?

    • [deleted]

    rodolphe I don't want to use the Google Play because I don't have a Gmail account. So I want to use Aurora. Is it safe or is it better to use Google Play Sandboxed ?

    First of all, what you are referring to as google play is in fact, Sandboxed Google Play Store.
    Sandboxed Google Play has a few more dependencies you need to install such as Sandboxed Google Play Services, Sandboxed Google Services Framework.
    Aurora store doesn't need these dependencies.
    Aurora Store is less secure in many ways but firstly being to trust aurora as well as Google in this terms.
    I highly recommend you to use Sandboxed Google Play Store over Aurora Store on your profile where you need Google Play Store apps.
    If anonymity is what you are trying to achieve then, I highly recommend you to create a secondary user profile for it.

      • [deleted]

      • Edited

      rodolphe If I install apps via Aurora, does “Sandboxed” isolate them or do I have to install Shelter ?

      If you install apps via Aurora or wherever posssible still the apps would be sandboxed. But, the issue here is that Aurora Store is a third party frontend it doesn't have unattended updates, it requires all storage access.
      Shelter is an app that acts as your work administrator and creates a separate work profile that's it. There is no relation to shelter here.

        • [deleted]

        rodolphe Can you think of anything important that I might have forgotten ? If you have any advice on how to configure/use Grapheneos, I'm interested :)

        Just use apps you only need. Read the official documentation of GrapheneOS. Always update your device. Don't try to be a power user. Be minimal.
        K eep
        I t
        S imple
        S tupid Smart.

        • [deleted]

        [deleted] just wanted to put my 2 cents in. After checking out sideofburritos on YouTube after you Install aurora store you can configure storage scopes so it’s “thinks” it has full access.

          [deleted]
          I use the keyboard in a rather "simple" way. Support of 2 languages and eventually smart suggestions. I assume that the default keyboard installed does not collect data.

          [deleted] I don't really use SMS messenger, but I can get confirmation codes or appointment reminders on it. That kind of thing... So I don't know if the default app is ok or if it's better to change ?

          [deleted] Ok I understand about Aurora. What I meant with Shelter is that I can put the apps in a "work" space that doesn't communicate with the other apps. If I use Sandboxed Google Play Store it allows to compartmentalize each app without risk of data leakage between them (Sandboxed) ? If so, I don't need Shelter.

          rodolphe I think your questions have been pretty much answered already, but I'll share my two cents anyway:

          • The default keyboard is fine unless you have reason to use another; as mentioned, keyboards in particular are high risk due to the information they can collect; you should have absolute trust in whatever keyboard app you do use
          • If you only require basic SMS functionality, the default app will be fine
          • If you don't want to use a Google account, the Aurora store is the next best thing in terms of convenience; it allows you to access the Play Store catalogue anonymously through proxy accounts; in terms of security, downloading APK file packages directly from the developer is arguably the best method, but also more tedious and more time-consuming to set-up
          • Regardless of where the apps are gotten they will always be sandboxed (whether from the Play Store, Aurora, F-Droid, Droidify, or direct downloads)

          As for other suggestions, it largely depends on your individual needs. My general advice is:

          1. Don't grant Sensors permission by default (Settings > Privacy > Allow Sensors permission to apps by default: OFF)
          2. Don't grant Network permission unless you know the app needs it (Google Maps, a reddit or email app, etc.)
          3. Disable Location services unless you need it
          4. Disable Bluetooth and NFC unless you need them
          5. Use a VPN if you desire ISP privacy (for whatever reason)
          6. Install only apps that you need; routinely review and remove apps that you no longer use
          7. Consider using free and open source software (FOSS) alternatives whenever possible
          8. Consider self-hosted software solutions over cloud-based services
          9. Consider free and decentralized social media platforms, such as Matrix and Mastadon, over proprietary platforms

            mythodical Thank you for the additional information. English is not my native language and it is sometimes complicated for me to understand everything about the functioning of Sandboxed system (among others).