Disabling Vanadium and Messages

nandohyphen1

Is it fine to disable Vanadium and the stock messages app? I use Duckduckgo for my browser and QUIK SMS for texting, so I see no point in having Vanadium and messages enabled. Just don't want to wreck anything by disabling them. ;)

de0u

nandohyphen1 Things that are not recommended:

disabling system apps
removing permissions from system apps
enabling developer options
disabling certificate authorities

I recommend searching for previous posts on any of these (and then not doing any of them).

de0u

nandohyphen1 Also I think a case could be made for searching something before starting a new thread: the GrapheneOS FAQ, the usage guide, the feature overview, this forum, the OS issue tracker...

userofgos

nandohyphen1 I'm curious why you prefer Duckduckgo browser over using Vanadium with Duckduckgo as the search engine?

nandohyphen1

userofgos its just been my main search engine when I was on stock android, and I just decided to download it on GrapheneOS because that's what I was using. Is Vanadium actually that good? Does it have tracking protection? Because in duckduckgo you can see the trackers blocked. I have considered vanadium. Maybe you'll convince me, lol.

userofgos

nandohyphen1 I see. I don't use Duckduckgo browser, and am not too familiar with all it's features.

Vanadium has many privacy and security enhancements/protections and is the recommended browser by GrapheneOS. Since it is developed by them, you get the same level of focus on privacy, security, code hardening, and excellence as the OS itself. I would suggest giving the Usage Guide a read: https://grapheneos.org/usage#web-browsing.

Ultimately it boils down to your threat model and specific use case.

nandohyphen1

userofgos interesting. I may give it a shot.

Dumdum

userofgos would suggest giving the Usage Guide a read: https://grapheneos.org/usage#web-browsing.

@nandohyphen1
A particular part of that link that should be noted is the "WebView-based browsers..." section as DDG browser is, to my knowledge, WebView.

userofgos

nandohyphen1 here is a list of Vanadium specific features: https://grapheneos.org/features#vanadium

Also, here are some posts I've linked from other discussions on this forum.

@matchboxbananasynergy One killer feature that puts Vanadium above Brave from a security perspective is the fact that JIT is disabled by default, and there's a per-site toggle for sites that absolutely require it. A lot of vulnerabilities hinge on JIT being enabled, so having it disabled is a huge boost to security. Apple's lockdown mode also disables JIT in Safari. It's a very important feature.

Source: https://discuss.grapheneos.org/d/2611-why-is-vanadium-better-than-a-hardened-version-of-brave/2

@final Numerous fingerprinting tests are not reliable as they rely on a pool of results of the userbase of the website, many of which use very different setups in comparison to the average person. Some browsers also do fingerprinting protections differently i.e. Brave randomizes data while Tor tries to keep it the same as possible.

Likewise, the only other browser the project recommends is Brave. It preserves mobile Chromium's security posture while adding additional state partitioning, anti-fingerprinting improvements and the most advanced content filtering engine. Vanadium has greater security enhancements like MTE support in production but needs to catch up in some areas. The new filtering for Vanadium is a part of the improvements.

Source: https://discuss.grapheneos.org/d/7141-chromite-vs-vanadium-for-the-average-person/31

nandohyphen1

userofgos cool! I never realized any of this about Vanadium.