this post was submitted on 13 Nov 2024
79 points (93.4% liked)

Privacy

31975 readers
1060 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Related communities

Chat rooms

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago
MODERATORS
 

TL;DW

LINDDUN card deck PDF for reference: https://downloads.linddun.org/linddun-go/default/v240118/go.pdf

top 50 comments
sorted by: hot top controversial new old
[–] DieserTypMatthias@lemmy.ml 1 points 8 hours ago (1 children)
[–] kekmacska@lemmy.zip 4 points 23 hours ago (2 children)

if you have a xiaomi phone with GrapheneOS, NEVER, REALLY, NEVER!! relock the bootloader

[–] exu@feditown.com 1 points 12 hours ago

That's the case with most non-Google phones

[–] QuazarOmega@lemy.lol 4 points 20 hours ago (1 children)

How did you install Graphene in the first place?

[–] kekmacska@lemmy.zip 3 points 20 hours ago (1 children)

i didn't, but it is possible, altrough, not straightforward and requires some knowledge. I have an aosp-based custom rom, vanilla InfinityXOS (previously Superior-Extended). I have Poco X3 Pro btw. And because of how bootloader unlocking works, it is not a two-way process on xiaomi devices. Once you unlock it, there is no going back. If you try, it will hard brick and you can get a JTAG or something to reprogram the soc capacitors (doesn't worth trying, there isn't any single known xiaomi phone that didn't brick upon an attempt to relock the bootloader)

[–] QuazarOmega@lemy.lol 1 points 12 hours ago

That's really cool! And yeah the bootloader locking checks out with into from other guides.
That unbricking talk flies over my head on the other hand, it sounds like one of those fake tech speaks to my uncultured self lol

[–] Melody@lemmy.one 17 points 1 day ago* (last edited 1 day ago) (3 children)

I actually don't agree with this video; and firmly believe it is more than a little biased.

For example, the Pixel, AOSP and Android are given several undeserved points due to lack of proper information or understanding of how certain features work. I imagine this is the case too for the iPhone; if a bit less so.

The review apparently doesn't deep dive into settings or attempt to maximize privacy by turning off unwanted 'features' when settings switches are available to the user; nor does it assume that you set up accounts in as private of a manner as reasonably possible or toggle off as many default-on consent switches as needed.

While I would support scoring and dinging each case or instance for "Privacy Settings that don't actually work"...this video really doesn't do a lot of legwork and leans on the anecdotal evidence of scary news stories too much.

Worse was the fact that the entire video felt like they were shilling for Graphene OS; which is known to have a slightly unfriendly maintainer and community surrounding him to say the least.

No mention of Lineage or other privacy oriented Android ROMs were analyzed. AOSP too, was unfairly lumped in and dinged for specific points of the Default Pixel configuration....and yes there are major differences between AOSP and Pixel Android; even though Google tries to be less in-your-face invasive than the other OEMs. Not enough credit is given for the "On-Device" smart features implemented properly on the Pixels.

Out of personal experience; I'd actually rate a proper Lineage OS install of 4 whole Android versions ago to be more private than stock. Not quite as private as Graphene; but not quite as invasive and much more enforcing of privacy. The debloating provided by a clean AOSP-like ROM, such as Lineage, as opposed to a "Stock Android" configuration from a major OEM is stark.

Most importantly I personally feel that the privacy model chosen for the video is far too thickly detailed for an average person. Most of the privacy concerns listed on each card contained concern points that might only tangentally apply or don't apply at all to mobile phones. The way that each card was scored and applied felt low effort. None of the points on any of the card(s) were weighted with average users in mind.

I really hope someone goes into a much deeper dive; this video is basically clickbait that parrots the commonly parroted advice in the privacy community; which isn't even good advice, it's just 'One-Size-Fits-All' style advice which gives the user no room to make necessary 'Privacy vs Convenience' tradeoffs that they themselves could have made if they understood proper threat modelling.

[–] jjlinux@lemmy.ml 11 points 1 day ago (3 children)

Worse was the fact that the entire video felt like they were shilling for Graphene OS; which is known to have a slightly unfriendly maintainer and community surrounding him to say the least.

Correction, the developers, not the community, are flat out pricks (not "slightly unfriendly"), but this does nothing to remove how amazing the OS is for anyone wanting to remove themselves from all the mainstream garbage in the mobile devices scenario while being able to keep productivity with a few workarounds.

Out of personal experience; I'd actually rate a proper Lineage OS install of 4 whole Android versions ago to be more private than stock. Not quite as private as Graphene; but not quite as invasive and much more enforcing of privacy. The debloating provided by a clean AOSP-like ROM, such as Lineage, as opposed to a "Stock Android" configuration from a major OEM is stark.

You will see me speak about Grapheme as if it was the Holly grail of mobile OSs, and that is because I actually move between CalyxOS, stock android, grapheme and Lineage every few months, and the fact remains that you have less than half of the control on your privacy you can get on anything other than Graphene. Additionally, show me one mobile OS that has less bloat then Graphene.

Every time I see posts slamming GrapheneOS over the toxic community (which it is not) or the devs (who are extremely toxic in my opinion), all I see is butthurt overly a sensitive individuals that are looking at the wrong thing. GrapheneOS is what Android should be, it's that simple. All these rants about how toxic x or y is only serves to keep people starting in the privacy or security (or both) path away from what is effectively a huge leap from being invaded and helpless in the current tech and surveillance scenario to having near-complete control over their digital lives.

[–] Chulk@lemmy.ml 4 points 1 day ago (1 children)

Correction, the developers, not the community, are flat out pricks (not "slightly unfriendly"), but this does nothing to remove how amazing the OS is for anyone wanting to remove themselves from all the mainstream garbage in the mobile devices scenario while being able to keep productivity with a few workarounds.

Yep. I'm willing to deal with a prick developer who's taking this on their shoulders. Theyve really produced something incredible with GrapheneOS. I'm not willing to deal with the pricks who sell my data to anyone and everyone. Especially pricks who have had contracts with various intelligence agencies.

[–] jjlinux@lemmy.ml 4 points 18 hours ago

Precisely my point. That's the smart stand in my opinion.

load more comments (2 replies)
[–] Imprint9816@lemmy.dbzer0.com 1 points 19 hours ago

I'd actually rate a proper Lineage OS install of 4 whole Android versions ago to be more private than stock.

Its always the lineageos stans that can't take the truth.

Would a research paper change your mind?

https://infosec.exchange/@rene_mobile/113431029855652363

According to this table, Google Pixels beat other devices listed there by far. Even Samsung S-series doesn’t look good

What about a security expert?

Overall, LineageOS does not leave a privacy-friendly or truly secure impression

[–] Melody@lemmy.one 3 points 1 day ago

TL;DR: I think this video oversimplifies the analysis according to the cards and gives Graphene OS undue weight without going into sufficient detail as to why each scored under each category.

[–] davel@lemmy.ml 58 points 1 day ago (7 children)

TL;DR: Out of iPhone, Pixel, Android, AOSP forks, and GrapheneOS, the answer is GrapheneOS by a country mile.

[–] Scolding7300@lemmy.world 16 points 1 day ago (1 children)

Actually good point, added a TLDW screenshot of the summary

[–] Mr_Blott@feddit.uk 6 points 1 day ago (1 children)

Four seconds of reading Vs a 16 minute video

[–] Scolding7300@lemmy.world 4 points 1 day ago

If you want to hear the "why" part, that's the 16m

load more comments (6 replies)
[–] GolfNovemberUniform@lemmy.ml 3 points 1 day ago* (last edited 1 day ago)

I agree with this. However the very latest Pixels (with the stock ROM) might be a bit more invasive than the phones by an OEM like Motorola or Nokia.

[–] mySFWaccount@lemmy.ca 26 points 1 day ago (3 children)
[–] GolfNovemberUniform@lemmy.ml 3 points 1 day ago

Not really. A smartphone with a privacy-respecting OS and E2EE communication apps only is more secure. Though you can argue that it's not really a phone if you don't use the soter service.

[–] SpaceNoodle@lemmy.world 21 points 1 day ago (1 children)
[–] TranquilTurbulence@lemmy.zip 10 points 1 day ago

The tin can phone inherently provides end-to-end encryption. The acoustic signals, which are essentially longitudinal mechanical vibrations, travel directly through a taut string or wire. This physical medium ensures that the sound waves are converted into mechanical vibrations at the transmitting end and reconverted into sound at the receiving end, effectively eliminating any possibility of electronic eavesdropping or interception.

One of the most significant advantages of the tin can phone is its complete absence of a digital footprint. Unlike modern telecommunication devices that rely on electronic signals and data packets, tin can phone operates purely on mechanical principles. This means there are no digital records, metadata, or logs that can be hacked, traced, or subpoenaed.

The simplicity of the tin can phone renders it immune to a wide array of cyber threats. There are no software vulnerabilities, no firmware to update, and no risk of malware or ransomware attacks. The device's operation is entirely analog, relying on the physical properties of sound waves and mechanical vibrations, making it impervious to digital exploits.

The physical nature of the tin can phone also contributes to its security. The string must be kept taut for effective communication, and any attempt to tap into the line would be immediately noticeable due to the loss of tension and degradation of sound quality. This provides a built-in tamper-evident feature, ensuring that any unauthorized access attempts are easily detected. On top of that, if someone attempts a man in the middle attack, you should be able to see it happening during the call and act accordingly before any sensitive data gets exposed.

The operational simplicity of the string and cans phone is another layer of security. With no complex interfaces or user authentication mechanisms, the risk of user error leading to security breaches is virtually nonexistent.

[–] sunzu2@thebrainbin.org 8 points 1 day ago (3 children)

How? Literally uses the same phone lines that have always been not secure or private

load more comments (3 replies)
[–] toastal@lemmy.ml 6 points 1 day ago (3 children)

Which of these smart phones lets me have a headphone jack… ’cause that is how I will choose. I can patch software & be wary about how I use the device, but I can’t just add I/O to the hardware. Until the Pixel brings back the jack, it is dead to me.

[–] gopher@programming.dev 1 points 5 hours ago (1 children)

None basically. There's a Sony phone has LineageOS (including +microg variant) support, but it's not ideal either.

[–] toastal@lemmy.ml 1 points 3 hours ago

And that is exactly what I am running—and without regret since the OEMs are screwing over users just to sell branded Bluetooth earbuds whose batteries will die & not be repairable in a year for you to buy another set. I will not participate in this.

[–] Marbling@feddit.org 1 points 8 hours ago (1 children)

The Apple TypeC-to-3.5mm dongle is cheap and measures better than most phones in terms of audio quality.

If you use mostly the same pair of headphones, you can attach the dongle to them and use them just like before. But it's annoying if you use many different headphones and have to either move the dongle from one set to another or buy multiple dongles.

I gave up on avoiding phones without a headphone jack.

[–] toastal@lemmy.ml 1 points 3 hours ago

Dongles create additional & unnecessary points of failure in your setup (sometimes additional stress on the USB jack too which is usually your only I/O port (which is also making you choose charging or power)). Personal devices that play media need this standard jack that has existed for decades—& I refuse to play ball with these OEMs hurting customers.

[–] DoubleChad@lemmy.ml 4 points 1 day ago

I got a Nokia XR20 because of this. Also waterproof and rugged. A phone that needs a case to survive the hairless monkeys dropping it is a design failure and completely unacceptable.

Just wish I could use proper software with it.

[–] Darkassassin07@lemmy.ca 15 points 1 day ago (1 children)
[–] Darkassassin07@lemmy.ca 25 points 1 day ago* (last edited 1 day ago) (1 children)

Somehow that posted as an entirely empty comment... Here's what was supposed to be in it:

[–] BlackJerseyGiant@lemmy.ml 7 points 1 day ago

Spoiler: It's a banana phone.

[–] undefined@lemmy.hogru.ch 5 points 1 day ago

What is the most private phone? Take a visit to a Google property and curb stomp your privacy to find out!

[–] solrize@lemmy.world 6 points 1 day ago (2 children)

I didn't watch the video but I don't think there is any phone that lets you avoid having your location tracked. If there is wifi near where you want to use the phone, you could run a voip client on on a wifi-only tablet, perhaps.

I've been wondering whether satellite communications gizmos with no GPS allow any type of precise location tracking from the satellite. I've been interested in this, which lets you exchange text messages at fairly low cost (about 2 cents per 50 byte unit). Besides possible privacy advantages, it also lets you communicate where there is cell coverage:

https://shop.blues.com/products/starnote-starter-kit

[–] Scolding7300@lemmy.world 3 points 1 day ago (1 children)

Added a TLDW summary to the post if you want to take a peek

[–] solrize@lemmy.world 3 points 1 day ago (1 children)

Ok but wifi only isn't really a phone?

[–] Scolding7300@lemmy.world 1 points 1 day ago* (last edited 1 day ago) (1 children)

Can you call on wifi? Yes (voip numbers like you said). I think that's a phone.

Obviously you need to be connected

[–] solrize@lemmy.world 2 points 1 day ago

Then my laptop is a phone? It's sort of a phone but it doesn't connect to the phone network, so only sort of. Since it needs a wifi signal it's not so mobile either.

[–] Scolding7300@lemmy.world 5 points 1 day ago* (last edited 1 day ago)

Well technically there is: pixel + graphene os + airplane mode with wifi only, from the video

[–] kekmacska@lemmy.zip 0 points 23 hours ago

i use a customization-oriented aosp custom rom (vanilla version, no google). It is already very private but there is more private than this, but that seriously restricts usability and visual appeal

load more comments
view more: next ›