Excited, but terrible new & green to Graphne. Advice needed :)

Id3ntyD

Hello!
I installed Graphne Os because I do not like the idea whatsoever, that I do not know what my device might be up to when I am not looking :D
Generally speaking I would like to be in control. I do not necessarily see all big tech as pure evil, but with how the world develops, I would like to protect my privacy in a general sense.

Now Graphne is installed on my pixel 7 pro, and I am wondering what I should and what I shouldnt do. I still would like to use it as I do my normal phone, but I am so green that I do not even know what I should be considering doing or not doing, haha.

So please do not crucify me for being a noobie in regards to personal data protection, and still wanting the convenience of a modern device.

I am currently researching further on this topic, but any suggestions, advices or source recommendations would be very welcome :)

W1zardK1ng

Id3ntyD Create a new google account and login to the Playstore and get your apps. Try to use open-source apps as much as you can.
Dont use user profiles or any other thing since you are just starting. Keep learning about those features and try them slowly and see if it works for you.
Even if you login with your own google account and use every app which you used before including the google apps you are still far better than running any other os.

oci3o

Id3ntyD Honestly, just use the device as you would if it was on stock OS, install Google play, and any apps you need for now, no need to change how you fundamentally use the phone.

so if you use Gmail, Youtube and some other google apps, go ahead and install them, theres no wrong way to use GOS really.
As you learn more and become more comfortable I would start looking at moving to FOSS apps, playing with the settings, using multiple user profiles etc.

If you ever get stuck, just ask on the forums, someone will help.

And welcome to GrapheneOS!

Jesus_of_Nazeth

First thing I would do is decide what your needs are: do you need mapping software, are you checking your email on your phone, etc. Then head over to https://www.privacyguides.org and check their recommendations, which are categorized by function. The only thing I would recommend which they do not is Here WeGo, a mapping app to replace Google Maps (Open Street Maps doesn't cut it when it comes to geocoding/reverse geocoding in my experience). See https://discuss.privacyguides.net/t/here-wego-navigation/23752 for more details.

Most people have more apps on their phone than they need: if you can do everything in a browser you can do in the app, don't install the app (especially for privacy invasive services such as YouTube)! Also try to minimize the number of accounts you have, because likewise you probably have more than you need or use.

r134a

U made a big step in the right direction, and u perfectly can use your device as u used to use it.

As a next step u could try to do research to find subsitutes of the apps u use, to (FOSS) alternatives who do respect your privacy/data.

U should give the faq a read on the grapheneos website aswell. I see that side of buritos youtube channel gets recommended quite a lot here aswell, there might be videos on that channel that might be of interest.

If u have specific questions while researching specific aspects down the line, a search on this forum might be of value aswell.

If u do research from this point on, everything should come organically, and u might perhaps then change how u set up your device (ie profiles etc. ) depending your threat model, but its perfectly fine to 'jump in' and use the device as u used to use it.

Id3ntyD

thank you for all the feedback! Yeah I installed graphne and then felt guilty not going deep down the rabbit hole... but on the other hand i still need to use my phone and going full commit to privacy might not be the way for me... i do feel more protected now and at least more in control, so i can decide whats shared and what now, even though a lot of things i do not understand :D
I am happy my keyboard doesnt connect to internet any more haha, so it feels safer to use encrypted messaging apps

Id3ntyD

Next step for me is to get rid of windows, haha. But the steam os is not released yet, haha

Bimmy

Welcome to the community!

You already made a big step by switching, and it's fine that you seek advise. Switching to a new OS -- especially with the background of better protection against threats -- and being confronted with lots of advice and info can be somewhat intimidating and/or overwhelming at first, but it will become better.

Besides some solid advice that others already wrote, I'd say: A first pragmatic step is to build things slowly. (Note: This holds only if you are not in a sort of urgent, high-threat situation, already. However, interpreting your first messages, I presume such an emergency is not the case and you can give yourself time.)

It's better to establish a configuration that is realistic and works for you from the start -- versus trying to change everything, everywhere at once, chasing an unrealistic ideal of perfection, and giving up full of frustration. As long as you keep a reasonable level of operational security and common sense, switching your basis to a more robust OS like GrapheneOS already improved your level of security and privacy.

You can improve from that step-by-step. Just keep an eye on whether tools, services etc. that you use in the meantime are well-documented, use open data formats, and/or have solid im-/export functionalities.
(Shame on all providers, that just lure you in to use their productts but don't support a reasonable way back and out again. Vendor lock-in has become a plague of (surveillance) capitalism.)

Maybe as random additions for further reading or more suggestions:

An article about profile setup: https://seprand.github.io/articles/
Suggestion of F(L)OSS app: https://web.archive.org/web/https://divestos.org/pages/recommended_apps
- Note: These are from another Android OS (DivestOS) founder and developer. (A very competent person in my POV.) It's their personal collection, and I don't say I use all of these apps. Yet, in every case where I tried some, I at least believe to understand why it was originally suggested.
Spoiler: One doesn't have to use multiple profiles or myriads of apps, early, and it actually can simplify administration a lot by just sticking to built-in owner profile and keep using the (out-of-the-box) built-in apps for everything they can do.
- It's just worth taking some time and think ahead. This way you'll be able to make more informed decisions, whether alternatives / more complex set-ups might suit you better. However, in the end, one can't and probably shouldn't avoid making own experiences.
- There is also the "Private Space"-Functionality, a relatively new feature, which is becoming more and more useful and can implement several aspects that originally demanded adding a secondary user account. The details would probably make this already long message even longer and thus be out of scope. But you'll find much more information in the forum -- and if you need additional help, feel free to ask.
Then there is the official project's Usage and FAQ pages: https://grapheneos.org/usage and https://grapheneos.org/faq , respectively.
- Admittedly, the sheer amount of text there can contribute to what I described as "overwhelm". So it might be a wise tactic to consult it selectively and in a targeted many: If you consider a particular feature, let's say "VPN", search the FAQ page for that particular topic. And maybe, if your are in the mood, read a bit more around that topic, then.
Ofc, let's not forget of the forum at hand, which has tons of information already. Admittedly, the search function of the underlying forum engine (flarum), could be improved. However, using a common, third-party search engine of your choice, e.g. duckduckgo.com, startpage.com, etc. specifically directed at the forum, by adding the term site:discuss.grapheneos.org in your search often helps.
If you want to experiment, get yourself a txt-file - ideally: outside GOS or synchronized to an external medium - and note all changes (e.g. Settings changes) you make from out-of-the-box state.
- It can be a huge time saver for experiments and/or if you "factory" reset to out-of-the-box state. Actually, It's one of the few things I regret from my start into GOS, that I didn't document my configuration changes from early on.
- An example how to do it better -- with their personal setup, which can but doesn't have to be template for you -- comes from DivestOS founder, again: https://divested.dev/misc/gos.txt

I hope that this gives you some advice for the start. Again, I guess the community will be able to provide much more assistance and alternative ideas concerning specific questions, in the future.

Bimmy

I have to make a minor, but unfortunately decisive correction in one bullet point. It is the the second to last (top level) one. This one:

Ofc, let's not forget of the forum at hand, which has tons of information already. Admittedly, the search function of the underlying forum engine (flarum), could be improved. However, using a common, third-party search engine of your choice, e.g. duckduckgo.com, startpage.com, etc. specifically directed at the forum, by adding the term [originally mistyped term, author's note] in your search often helps.

In this regard and to use external search engines to help searching the forum, really:

Add the term site:discuss.grapheneos.org to the search - without the minus I unfortunately typed above and that apparently got part of the code string. If you prefixed the term with the wrong minus, you'd get the opposite of what was intended. (It would search anywhere but NOT the forum.) I am sorry for this.

I don't know if its appropriate to call/ping mods because of this, but if a mod is reading this and wants to correct my original message by removing the fatal minus char, feel free to do so. I hereby explicitly endorse it and I thank in advance.