Yes it will take many years. This whole thing has already played out with FSF and Replicant. They ended up stuck working on a couple of ever aging devices as many new generations of devices were launched and all the…
All android devices launched with android 15 or newer need to support Android Virtualization Framework. So there will be support for VMs.
>GrapheneOS can not do anything about that. GrapheneOS does not include any of the Google apps that implement Play Protect. You can install them, but they run in the sandbox like normal apps and so are not highly…
GrapheneOS recently added toggles to work around this https://grapheneos.org/releases#2025100300
Rethink DNS app provides the ability to do that. Also can use it to connect to any Wireguard VPN and also monitor connections. There are various apps that either connect directly to an IP address or do DNS resolution…
What if you truly want the security properties provided by a device which can keep keys in a way where you fully control their use but its extremely hard for anyone to extract them?
Theres been a consistent pattern of both low quality and advanced malware looking for and targeting the weakness introduced by rooting a device. Here is a recent report of widespread advanced malware looking to see if a…
Ive been using GrapheneOS for years and was in the chat rooms a fair bit, this isnt something common. Sounds like it may be hardware failing. Having bootloader locked you get verified boot, big security benefits and…
Not sure if you've used GrapheneOS recently? If apps are heavily tied to Google Play Services you can install that and, in the vast majority of cases, get very good compatibility. Compatibility with carriers also…
Or you couod look at using an android operating system which also supports bootloader relocking, but that doesnt have a history of repeated significant delays rolling out security patches…
Some apps suggest they use it when they dont. Some (most) apps use a weaker form which an android/AOSP operating system can comply with, without being registered with Google (licencing Play Services) see eg.…
It used to be the case that iphones were way ahead of security in android. With the efforts that have gone into improving things in the last few years and Google stepping up the quality of their hardware security with…
The writeup of the bug states that it was patched in the January update for Pixels, which GrapheneOS has. But previous work on applying mali patches early led to GarpheneOS having a fix earlier than stock Pixels…
While its likely Cellebrite make use of some known (and possibly some unknown) exploits to bypass the screen lock on some phone models and get at user data, sometimes they require the device to be unlocked and…
Theres a lot more to the android app sandbox than just running processes as seperate users. Theoretically something similar could be implemented in some other 'typical linux system'. It would be a huge undertaking. If…
There are endless launcher apps and icon packs you can get from F-Droid or elsewhere if you want to change the look of your phone. AnySoftKeyboard is the keyboard on F-Droid with the most features
Magikeyboard is a function you enable in KeepassDX. Gives you an extra 'keyboard' you can switch to just for entering passwords. Stops other apps being able to swipe your passwords from your clipboard.
This is what CopperheadOS has become. Trading off the reputation they gained from before the split. When they were still publishing their sources they were often lagging months behind with basic AOSP security updates.…
Yes it will take many years. This whole thing has already played out with FSF and Replicant. They ended up stuck working on a couple of ever aging devices as many new generations of devices were launched and all the…
All android devices launched with android 15 or newer need to support Android Virtualization Framework. So there will be support for VMs.
>GrapheneOS can not do anything about that. GrapheneOS does not include any of the Google apps that implement Play Protect. You can install them, but they run in the sandbox like normal apps and so are not highly…
GrapheneOS recently added toggles to work around this https://grapheneos.org/releases#2025100300
Rethink DNS app provides the ability to do that. Also can use it to connect to any Wireguard VPN and also monitor connections. There are various apps that either connect directly to an IP address or do DNS resolution…
What if you truly want the security properties provided by a device which can keep keys in a way where you fully control their use but its extremely hard for anyone to extract them?
Theres been a consistent pattern of both low quality and advanced malware looking for and targeting the weakness introduced by rooting a device. Here is a recent report of widespread advanced malware looking to see if a…
Ive been using GrapheneOS for years and was in the chat rooms a fair bit, this isnt something common. Sounds like it may be hardware failing. Having bootloader locked you get verified boot, big security benefits and…
Not sure if you've used GrapheneOS recently? If apps are heavily tied to Google Play Services you can install that and, in the vast majority of cases, get very good compatibility. Compatibility with carriers also…
Or you couod look at using an android operating system which also supports bootloader relocking, but that doesnt have a history of repeated significant delays rolling out security patches…
Some apps suggest they use it when they dont. Some (most) apps use a weaker form which an android/AOSP operating system can comply with, without being registered with Google (licencing Play Services) see eg.…
It used to be the case that iphones were way ahead of security in android. With the efforts that have gone into improving things in the last few years and Google stepping up the quality of their hardware security with…
The writeup of the bug states that it was patched in the January update for Pixels, which GrapheneOS has. But previous work on applying mali patches early led to GarpheneOS having a fix earlier than stock Pixels…
While its likely Cellebrite make use of some known (and possibly some unknown) exploits to bypass the screen lock on some phone models and get at user data, sometimes they require the device to be unlocked and…
Theres a lot more to the android app sandbox than just running processes as seperate users. Theoretically something similar could be implemented in some other 'typical linux system'. It would be a huge undertaking. If…
There are endless launcher apps and icon packs you can get from F-Droid or elsewhere if you want to change the look of your phone. AnySoftKeyboard is the keyboard on F-Droid with the most features
Magikeyboard is a function you enable in KeepassDX. Gives you an extra 'keyboard' you can switch to just for entering passwords. Stops other apps being able to swipe your passwords from your clipboard.
This is what CopperheadOS has become. Trading off the reputation they gained from before the split. When they were still publishing their sources they were often lagging months behind with basic AOSP security updates.…