Linux tablet vs. Pixel tablet?

Elgoog

After 2 years' good experience with GOS on my phone, I was eagerly awaiting the rumored launch of Google's second Pixel tablet before replacing my ancient iPad. I figured that when the new Pixel appeared, I would either buy it, or, if the improvements didn't impress me, buy the original version at a knocked-down price.

From what I've read, Google's failure to launch the new Pixel may be a sign that it has decided once again to abandon the tablet market. That got me thinking, for my purposes, does a tablet running GOS really give me much more privacy than a Linux tablet? Mostly I use my tablet for reading downloaded documents. With a newer tablet, I would probably use it for browsing and email too, which I already do on a Linux laptop.

What would GOS on a Pixel tablet give me that, say, Ubuntu on a tablet with reasonably cautious privacy settings wouldn't?

raccoondad

Elgoog desktop Linux is fairly insecure compared to GOS and android in general.

naibed

raccoondad Can you elaborate on how desktop linux is less secure than Android in general? AFAICT, Android has a much more finicky setup re: supporting security updates for a meaningful period of time, having a generally fragmented ecosystem, etc.

raccoondad

naibed

Linux ELFs, and androids equivalent APKs, pretty much are night in day. One has about as much access as the user that loads the program, while the other only has access to data based on set permissions that are revocable.

One requires its applications to be signed, which is checked every update for changes in the key, the other has no signature requirement and is loaded without any checks of that nature.

One makes deactivating and removing fairly easy, the other gives the ability for persistence in a number of ways.

That alone makes it night and day

mmobder

raccoondad for me it was a surprise that Ubuntu Desktop had firewall turned off by default. With all the "default" software that comes with it unless you select "minimal".

N1b

Regarding security and privacy issues read this and the underlying article.

You'll have to decide (with a threat model) what you need though. Linux could be just enough for you (and it definitely can be better in features and functionality). You're currently using Linux (Laptop) and GrapheneOS (phone) and both are not accessible on the other device to a meaningful extent. And there's iPadOS which you want to replace.

I'd ask what you are looking for in your day to day experience, especially on the security and privacy level. I'd also not trust Google to release or optimize anything in time (based on their track record) and would only judge based on what is available right now. If you need a new device today, Google's desktop mode implementation (and therefore GOS's desktop mode) is far from a good and reliable user experience. You can try it right now with your Pixel if you have an external display and see if that is good enough for your needs.

secrec

I have yet to meet a GNU/Linux tablet that worked effectively.

And for that matter, I have yet to meet ANY tablet that was actually useful beyond playing movies for the kids in the back seat while on a long trip.

Its just a whole lot more effective to carry a laptop when you need something larger than a phone.

Oh, and I absolutely don't buy into the "desktop linux isn't secure" nonsense. Letting the user access to what is THEIRS isn't a security failure. As with anything else, its your responsibility to.... behave responsibly, so while desktop linux could ALLOW you to get into some serious trouble, that is absolutely a function of your use of the device in a secure manner.

Do stupid things, get taken over by hackers. Do smart things, and security is maintained.

raccoondad

secrec I'm simply mentioning the reality of ELFs, I haven't even mentioned TPM and desktop BIOS/uefi security issues.

I also never used the word 'insecure' on an objective standpoint, the OP asked for a comparison and I gave one.

You are right, most security threats come from user error, android and desktop Linux, but I'm simply mentioning one aspect (ELFs vrs APKs and how said processes are spawned and permissions handled) of how Android both makes it easier to control permissions and encapsulation within applications.

The only way to have comparable encapsulation is something like Docker, which isn't ideal for every day users compared to androids entire operating system being built around permission control compared to Linuxs less friendly and harder to manage user and group file permissions.

Not to mention exploit prevention is another aspect, one GrapheneOS itself focuses on specifically. This is an important aspect of security and is one reason why docker has become more popular within production environments in all server operating systems.

Elgoog

Thank you all for your considered replies.

Which OSes do security-conscious GOS users run on their desktops?

Xtreix

Elgoog Probably MacOS or secureblue if the user want Linux. No desktop operating system currently has a sane security model and desktop hardware is not secure, some make things better and some make things worse. I personnaly use secureblue and Bazzite on desktop and I may install a third OS.

raccoondad

Xtreix what about QubesOS? I enjoy the encapsulation method they picked, but might be resource heavy.

Xtreix

raccoondad Yes there's also QubesOS, I've never used it but I understand that it is indeed very resource-heavy, but how much I don't know, I use 32 GB of RAM with a R7 5800X3D coupled to a RX 6800 16 GB, would that be good for QubesOS ?

I've also read that the security of QubesOS depends very much on how you use it, in any case, I'm not sure I'd recommend QubesOS to the home user.

raccoondad

Xtreix would that be good for QubesOS

It runs fine on my $350ish laptop, so probably yeah

Elgoog

Thanks again, all. This has been quite eye-opening for me. It's made me reflect on my decision to go with Linux in the first place. I was using Windows and was really fed up with Microsoft's telemetry and there were lots of stories at the time about buffer overflow and the like. Apple products were beautiful but expensive and seemed to force one to apple-ize one's entire life. So I went with Ubuntu, probably somewhat conflating privacy with security.

The I found that by using Ubuntu, I didn't need to upgrade my hardware every few years, as Windows seemed designed to do.

I have looked at QubeOS, but it seemed a little scary to my not-very-technical self. IThanks much for the pointer to SecureBlue -- that might be the ticket. I'll start by running a live Fedora ISO to get a feel for the Red Hat flavor of Linux and see how it goes from there.

raccoondad

Elgoog lots of stories at the time about buffer overflow and the like.

Buffer overflows effect every piece of software (its an aspect of improper memory management) including Linux, Windows, and everything else ever