C
cypherpunk

  • Joined Apr 18, 2023
  • In Thank you so much GrapheneOS team! We love you!

    Dear GrapheneOS team,

    i just wanted to thank you so much for your great project. This is really a blessing for the world. I am using Graphene, since more than 3 months now and can clearly state from my point of view, that this is the best existing mobile OS regarding security, privacy, anonymity, freedom and control. The world was really eagerly waiting for such a project to free ourselves from the Big Tech companies monopoly...
    I hope, that this project will continue forever and attract more and more people over time. I try to contribute my way in promoting it in my company, frienc circle, family and so on...Unfortunately it is quite challenging (almost impossible) to get people on board...😂
    To further support the dev team i just donated 250 Euro and will continue to do so on a regular basis...Push it forward my heroes!👍️👍️👍️

    Best regards

    • In Contacts Scope - "Thank you" Donation

      I would like to thank the development team for new "Contacts Scope" feature that I, probably like many others here, have been waiting for a while.

      Exciting and it works! I was able to remove all contacts from WhatsApp and add only selected contacts under a corresponding "Label".

      Separately, I have again donated, this time about 100 bucks as small token of appreciation for all the work you do!

    • In GrapheneOS version 2023051600 released
    • In GrapheneOS version 2023051600 released
    • In Is GrapheneOS a net privacy gain over iOS in my situation?

      A note about encryption in iCloud—enabling Advanced Data Protection will enable end-to-end encryption for iMessage: https://support.apple.com/en-us/HT202303#notes

      7. Messages in iCloud
      a. Standard data protection: Messages in iCloud is end-to-end encrypted when iCloud Backup is disabled. When iCloud Backup is enabled, your backup includes a copy of the Messages in iCloud encryption key to help you recover your data. If you turn off iCloud Backup, a new key is generated on your device to protect future Messages in iCloud. This key is end-to-end encrypted between your devices and isnʼt stored by Apple.
      b. Advanced Data Protection: Messages in iCloud is always end-to-end encrypted. When iCloud Backup is enabled, everything inside it is end-to-end encrypted, including the Messages in iCloud encryption key.

      Here's a breakdown of the type of encryption used in iCloud for every class of data: https://support.apple.com/en-us/HT202303#advanced

    • In Is GrapheneOS a net privacy gain over iOS in my situation?

      Renewably3997

      I'm sorry to have caused so much trouble here.

      That's hardly your fault. People tend to have strong opinions when it comes to technology, which naturally leads to clashes.

      I'd like to move to GOS but, given my circumstances, I'm not sure if it would be an upgrade or downgrade in terms of overall privacy.

      I used iOS for the past 10 years and moved to GrapheneOS last month with a Pixel 6a. My advice is to buy the Pixel 6a, not the Pixel 6, as you get a year more of support, and the size is most similar to iPhones. I'm quite happy with the experience. The people I was messaging used Android anyway, so I was SMSing them through iMessage. Little has changed for me, except I can now backup my Signal conversations, I have better battery life than my iPhone 8, and I trust my phone more. GrapheneOS also offers stronger security guarantees than iOS—have a look at some of the features. For one thing, Chromium-based browsers are more secure than browsers using the Webkit engine like Safari.

      As for privacy, if all of your contacts use an iPhone, iMessage is more private than SMS messaging on Android for most threat models. If any of the people you're contacting move to an Android phone, they will be using SMS, which offers no privacy improvement. I would say iMessage's superiority in privacy is a precarious one designed to lock you in. These communications are important, but so long as you are aware they are not private, you might choose to say some important things only in person.

      Who knows—maybe your contacts will be so annoyed by the lack of MMS capability that they'll offer to message you on Signal? This isn't my experience, but you can always hope.

      Escaping from Apple has been a liberating experience. iPhones are hard to integrate with any of the other technology I own, so every time I wanted to extract photos or get files onto the phone, it was a harrowing experience. My Pixel 6a, on the other hand, connected right to all of my computers, offering at least two easy methods of transferring files, with transparent access to the filesystem. I also don't need to use Google Play if I don't want to—I can download APKs directly from the developer and manage updates with Obtainium. I don't even need to use a proprietary version of Android or iOS on my phone. I can use a free software operating system like GrapheneOS which is aligned with my interests, not Google's or Apple's.

      Privacy is one of my top concerns, but sovereignty is another. Apple might offer you privacy, but they only offer it to you on their terms, and with caveats. If you're using an Android phone, you are not worthy of privacy in Apple's eyes, and they refuse to develop even a basic iMessage client for Android or provide Android developers with the ability to develop their own.

      I really have no idea what sort of data Apple is sending to themselves every few minutes and it bothers me that the iPhone is constantly communicating with Apple even when I'm not using it.

      GrapheneOS will not do this. Google Play Services might communicate with Google's servers, but you can choose when and how you use it by installing it in another profile. If you don't need certain apps only available on Google Play, you can eschew using these apps at all.

      • In Why identical profiles do and don't allow app downloads

        This is almost certainly to do with the fact that the system package manager handles the apps for all user profiles.

        One way this problem is encountered is if you have the same app ( or another app with the same app ID - found at the bottom of the Apps Info page in Settings > Apps eg. com.someapp.somecompany ) which has a different signature - normally because it has been built by different party (often f-droid). They can not both be installed on the same device.

        Alternatively if you are trying to install an older version of an app than the one thats already installed. You need to install the same or a newer version.

        • In Aurora Store
        • In GrapheneOS version 2023020200 released
        • In Pixel 7 (w/ GOS) - worst battery life of all my phones in the past 20 years

          mythodical I could probably recoup some of the increased battery loss by simply disabling the 90Hz refresh rate.

          Just following up on my own post to say that disabling the 90Hz refresh rate has absolutely made a difference in battery consumption. I'm back to ending the day around 60-70%, similar to my Huawei P20/P30 Pro phones. Yes, 60Hz isn't as smooth, but I don't even miss it after a day of use. Just something to keep in mind if battery life is a priority.

          Settings > Display > Smooth display
            • In Pixel 7 (w/ GOS) - worst battery life of all my phones in the past 20 years

              Purely anecdotal, but I am getting well over 1 day battery life out of my month-old P7P. running GrapheneOS since I first powered it up and went through the initial unlocking.

              My cellular modem (in 4G/LTE) has been off the vast majority of time (airplane mode; I've been working at home) but wifi has been on 100%. GPS/Location has been mostly off - I already know I'm at home :-)

              But I have watched hours of YT and (website) reading daily using the Vanadium browser. And my screen has always been on the full resolution / highest refresh rate since day 1.

              If there is a problem it could be wifi modem related as it is not affecting me. I've actually been really impressed with the battery life for my use anyway.

              Similarly, my old iphone will lose very, very little power in airplane mode and the screen off. everything is sleeping them of course.

              You might want to check [https://reddit.com/r/googlepixel]. I have seen many favourable battery reports about the P7s there compared to earlier models.

              • In GrapheneOS's Recommendation on DNS Servers?

                Max-Zorin
                Please bear in mind that using a custom DNS will not prevent your ISP from monitoring the traffic as they will still see the domains you visit. If you want to hide from ISP then you need a VPN.

                As for DNS, any of these will do it: https://www.privacyguides.org/dns/

                They are also public which means thousands of people are using these so you won't be unique.

                My personal favourites are:

                Mullvad with adblocking (adblock.doh.mullvad.net)
                Adguard (dns.adguard-dns.com)

                You might also be interested in Adguard Private DNS which allows you to customise the filters. Its free for 300k hosts per month (overkill for me) and is also resolving to public Adguard DNS so your DNS won't be unique for fingerprinting.

                  • In GrapheneOS Code of Conduct

                    GrapheneOS community members are committed to preserving and fostering a diverse, welcoming society. Below is our community code of conduct, which applies to our forums, chat rooms, issue trackers, and any other GrapheneOS-supported communication group, as well as any private communication initiated in the context of these spaces. Simply put, community discussions should be the following:

                    • Respectful and kind
                    • About GrapheneOS
                    • About features and code, not the individuals involved

                    Be respectful and constructive.

                    Treat everyone with respect. Build on each other's ideas. Each of us has the right to enjoy our experience and participate without fear of harassment, discrimination, or condescension, whether blatant or subtle. Remember that GrapheneOS project is a geographically distributed community and that you may not be communicating with someone in their primary language. We all get frustrated when working on hard problems, but we cannot allow that frustration to turn into personal attacks.

                    Harassment is not tolerated, including, but not limited to the following:

                    • Harassing comments
                    • Intimidation
                    • Encouraging a person to engage in self-harm
                    • Sustained disruption or derailing of threads, channels, lists, and similar forums
                    • Offensive or violent comments, jokes, or otherwise
                    • Inappropriate sexual content
                    • Unwelcome sexual or otherwise aggressive attention
                    • Continued one-on-one communication after requests to cease
                    • Distribution or threat of distribution of people's personally identifying information, also known as "doxing."

                    Participants warned to stop any harassing behavior are expected to comply immediately. Failure to do so will result in an escalation of consequences.

                    Acknowledgments

                    This Code of Conduct is adapted from the Chromium Code of Conduct, based on the Geek Feminism Code of Conduct, the Django Code of Conduct, and the Geek Feminism Wiki "Effective codes of conduct" guide.