Privacy

32512 readers

1255 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Posting a link to a website containing tracking isn't great, if contents of the website are behind a paywall maybe copy them into the post
Don't promote proprietary software
Try to keep things on topic
If you have a question, please try searching for previous discussions, maybe it has already been answered
Reposts are fine, but should have at least a couple of weeks in between so that the post can reach a new audience
Be nice :)

Related communities

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago

MODERATORS

GrapheneOS (lemmy.world)

submitted 1 day ago by m4th1337@lemmy.world to c/privacy@lemmy.ml

13 comments fedilink hide all child comments

So i am installing GrapheneOS rn and i need help:

i want app tracking protection to every app something like duckduckgo's app tracking protection if there is something better?!
someone explain me (with simple words) what is auditor cause i can't understand even if i read about it on GrapheneOS' website (i am like 50% noob with these things)
is my wifi masked automatically with GrapheneOS or should i 100% use a vpn? is there a setting in the OS somewherere? i need a lot of privacy and security to my phone!!!

also tell me additional tips for privacy/security for GrapheneOS if u have any!

thanks a lot!

you are viewing a single comment's thread
view the rest of the comments

[–] sloppy_diffuser@sh.itjust.works 8 points 1 day ago* (last edited 1 day ago) (1 children)

Not sure on this one.
The auditor is to make sure you are installing an authentic version of graphene. That it is not a modified version that has been tampered with (e.g., backdoors).
Automatically enables MAC randomization. This can help with being tracked on public networks. Fingerprinting techniques have gotten better though with deep packet inspection and even measuring radio characteristics. I've seen demos of two brand new and identical models of iPhones being distinctly picked out due to variances in the radios during manufacturing.

Doesn't help with advertisers tracking behavior based on IP. VPNs help with "blending-in" by putting multiple users behind the same IP. Provider matters here. Needs to be a VPN provider that won't just sell your data or cave to law enforcement. Mullvad is my preference. Paid with crypto. RAM only logs. That said, use Tor or I2P for anything you don't want subpoenaed.

For additional tips:

Can't remember if its on by default, but auto-reboot to put data at rest (encrypted and not in RAM). This is for a state-actor threat level, and less about advertisers.
I prefer pin codes to unlock my device and don't use biometrics. Graphene has a feature to randomize the pin pad every time to protect against a recording of the pin be entered. Specifically where the numbers aren't picked up on the video but the pattern your hand makes can be seen. Again, more of a state-actor threat level.

[–] ballskicker@sh.itjust.works 1 points 1 day ago (3 children)

I've been eyeing Graphene for a while now but I'm not really a tech person. I fumbled my way through installing and doing basic tweaks on Linux Mint but I don't know the first thing about coding or programming. Is that kind of knowledge a must for this OS or is it more dummy friendly? And what's a good cheap phone to grab to start messing with it and getting familiar, do you have any recommendations on that front?

[–] catloaf@lemm.ee 4 points 1 day ago

It's almost the same as plain Android, only with the Google services removed or locked down, and additional security restrictions and permissions control. Most apps work without any additional configuration, unless they're doing something unusual.

The only supported devices are Pixels, so take your pick from the list: https://grapheneos.org/faq#supported-devices

[–] sloppy_diffuser@sh.itjust.works 4 points 1 day ago

No programming knowledge required.

Graphene only supports Pixels due to the titan chip. The versions with "a" are cheaper. Check when they go end of life to find the cheapest if you care about updates. So probably the 6a or 7a if you want at least 2 years of updates.

[–] Facebones@reddthat.com 3 points 1 day ago

It's pretty dummy friendly. Accept that some things may not work or will work differently (Most notably tap to pay is a no go AFAIK,) and be willing to learn if something comes up would probably be how I describe it. The only problem that might turn up that an app that you need doesn't pass gOS' security checks, but there's an app level setting to lessen security restrictions if it's something you NEED.

Otherwise, meh? Flashing back to stock is super easy via a google web tool if you don't like it. (I had to for a trip, Ticketmaster was being wonky and all my shows were ticketmaster haha. I've never had a problem before with the Ticketmaster app so IDK if it's an ongoing thing or not)