Privacy

45730 readers

166 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Posting a link to a website containing tracking isn't great, if contents of the website are behind a paywall maybe copy them into the post
Don't promote proprietary software
Try to keep things on topic
If you have a question, please try searching for previous discussions, maybe it has already been answered
Reposts are fine, but should have at least a couple of weeks in between so that the post can reach a new audience
Be nice :)

Related communities

much thanks to @gary_host_laptop for the logo design :)

founded 6 years ago

MODERATORS

115

Switching to GrapheneOS (lemmy.world)

submitted 1 day ago by waddle_dee@lemmy.world to c/privacy@lemmy.ml

47 comments fedilink hide all child comments

Good afternoon, y'all!

I have decided to take the plunge and switch over to Graphene OS. Is there anything I need to know before I use the web installer? I'm a bit bummed about having to set up all my apps again, but I'm exporting all my settings, thanks FOSS apps! to help with the transition. Most of my data is fully backed up through Nextcloud, so I'll be able to just jump straight in with my photos and data.

So yeah, any tips or advice would be greatly appreciated before I go through with it tonight. Thanks, y'all and again, I love being a part of the Lemmy community.

you are viewing a single comment's thread
view the rest of the comments

[–] termaxima@slrpnk.net 8 points 1 day ago (1 children)

Use Obtainium, get your apps directly from the code repositories !

[–] iturnedintoanewt@lemmy.world 14 points 1 day ago (1 children)

I prefer f-droid builds whenever possible. Some github apks will still include google libraries, or not quite mention where they connect. F-droid goes the extra step of checking all of these for you, and give you warnings of any unintended connectivity for example. They're quite strict for a reason. And I appreciate it.

[–] specialwall@midwest.social 2 points 11 hours ago* (last edited 11 hours ago)

This depends whether you care about security or software freedom guarantees. Because if it's security that is the priority, F-Droid is a much weaker option than Obtanium+Appverifier because they use their own signing keys for nearly all apps. If F-Droid's build infrastructure is ever compromised, then almost every app you have downloaded through it is also compromised. The inability for developers to control their own signatures is part of the reason Signal does not release on F-Droid.

Accrescent is a much better option than anything else because it still allows developer-managed keys, although it doesn't have many apps. Google Play (although it does have high-security infrastructure) has the same problem as F-Droid of centrally managed keys. Obtanium with Appverifier at least lets you ensure that your app is signed by the developer.