this post was submitted on 02 Apr 2024
79 points (94.4% liked)

Privacy

32114 readers
653 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Related communities

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago
MODERATORS
79
submitted 7 months ago* (last edited 7 months ago) by [email protected] to c/[email protected]
 

edit: thank you all for your replies! They are all very helpful. I am reading through them and will ask follow-up questions if needed.

I made a post some days ago asking about LineageOS, but my curiosity towards Google Pixels and GrapheneOS has been growing. As somebody who has always used regular Samsungs and iPhones, I hope somebody can clear up some questions I have regarding this OS.

I plan that my next phone is to be either a Motorola (LineageOS/SailfishOS?) or a Pixel (GrapheneOS). My first question about GrapheneOS, or really any non-standard OS, is this:

  • how does having an account on the device work? For example, Samsungs require a Samsung account and iPhones require an iCloud account. How does it work on non-standard OSes?

My second question touches on built-in apps that you often get with every phone:

  • does GrapheneOS have its own Notes/Drive/Photos/Messages app? If not, how does one go about obtaining these? Related question:
  • how do I sync my notes/photos/files/etc to the “cloud” of GrapheneOS?

My third question regards the app store of GrapheneOS. I have heard that the sandboxed Play Store is better than FDroid, for instance; what are your thoughts? Do I go for Aurora Store instead? Is there any major difference at all? Is it possible to use multiple app stores?

  • note that I likely won’t be solely relying on FDroid since I need some non-FOSS apps (FB Messenger for contacting family for example).

I know that in the privacy community, it’s very common to fix up a cloud of your own (i.e. NextCloud). I have no experience doing this, but is it something I must do when I install atypical OSes? Then comes the question about pricing, how private and secure it really is, which one to choose… and so on.

I understand many of these questions will sound stupid to those who are experienced, but I have not been part of this community very long. Feel free to link any educational videos or articles that answer my questions. I hope to learn more about this subject and one day installing a more secure system on my phone. Cheers!

you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 3 points 7 months ago (1 children)

Ah gotcha. Wasn’t aware the GOS team doesn’t like F-Droid.

[–] [email protected] 4 points 7 months ago* (last edited 7 months ago) (1 children)

I can't find the source right now. It's about the whole app installation process. They prefer play store. Aurora store isn't enough. I guess fdroid isn't good because fdroid signs every apk. Haven't read it in a while. Iirc, their stance was that every app should have its own updater.

Update: i found a source

Official grapheneos account:

GrapheneOS includes our own app repository client which provides a way to install the sandboxed Play Store. There is no advice for this fitting everyone's preferences because all of the available options other than our own app repository currently only used for our own apps have major flaws.

https://discuss.grapheneos.org/d/6758-a-message-for-grapos-developers-whats-your-recomendation/16

Which means all stores are bad.

[–] [email protected] 5 points 7 months ago

Thanks for the link.

From my quick read, doesn’t seem that they don’t support it. More of a caution to understand the risks involved with each App Store. For example, their comments regarding F-Droid are completely valid.

All you get from F-Droid is knowing that the developer adding a closed source third party library will likely get detected and the app won't get updated, but in exchange you're trusting people to build/sign the apps who have shown consistent untrustworthy behavior. You're also getting significantly delayed updated in many cases.