I don’t like smartphones. I use a dumbphone.
But this is a wonderful initiative.
Great idea, but will never take down here in south America
People know that all these import parts and replacements are not exactly easy to pay for, even less to find. They need a cheap reliable phone that will at least handle day to day for years
I mean come on, the average cellphone user here is still using the equivalent of a Moto G2 or Samsung J2 and thats stretching it.
An S8 is still seen like luxury in here. And I’m not even going into iphones.
Still like the idea behind it and wish there was support for GrapheneOS (going even further than /e/o) as well as better camera quality but this is the price we have to pay for flexibility and sustainability I think. Like the concept here but never tried to go with one so far.
Went to buy one but they don’t sell to USA any more. THAT will tell off tRump.
Fairphone 6 approaching? They are great, the project is amazing and I wish every brand would be like them in terms of caring about users and environment
I’ve owned the 4, for a couple of years. Was really excited to get one.
Parts have been unavailable for a long time when I needed them. The battery is pretty dead after 2 years meanwhile my pixel which is about 5 years old still going strong. The os is the buggiest experience I’ve ever had, sluggish, going from portrait the landscape kills UI formatting if it switches to power save it’ll skip a video. Boot loops constantly.
Never again I’m afraid it’s neat I could fix things with it so quickly but they fail hard past that.
Example navigation buttons have just covered the voyager ui
Can even get it pre-installed with /e/OS to minimise snooping by Google
Fairphone don’t sell replacement mainboards, presumably to stop people building phones from parts but they look very serviceable in other respects.
The hardware is good and I like the idea in principle but Fairphone’s support and software QA is dreadful and you need to hope you never need the former because of problems with the latter. My FP5 was bricked by an update they pushed out and after six weeks of trying to get a solution from their support (four weeks of which they didn’t respond at all) I ended up claiming on insurance and buying a Pixel. According to the forums this problem is far from unique to me.
Please get through the FCC and open sales in the USA before Fairphone 6 is made.
I really don’t want to buy another unrepairable phone.
I really want this to come to the US as well…
Is this phone also more secure?
The problem we are running into right now is Apple and Google are colluding with the US government over fascism and they are supporting their Nazi regime
They have all the power and they can change all of these services overnight, they can track you and everything and you will have no idea and no way to get rid of it
We really need an open replacement. Phones are now used for everything
Is this phone also more secure?
Probably not.
Apple & Google have spent considerable amounts of time building out hardware security infrastructure for their products that I find it extremely unlikely Fairphone would have been able to match.
For example, the popular alternative Android OS GrapheneOS only supports Google Pixels, because: (Emphasis added by me)
“There are currently no other devices meeting even the most basic security requirements while running an alternate OS. GrapheneOS is very interested in supporting a non-Pixel brand, but the vast majority of Android OEMs do not take security seriously. Samsung takes security almost as seriously as Google, but they deliberately cripple their devices when unlock them to install another OS and don’t allow an alternate OS to use important security features. If Samsung permitted GrapheneOS to support their devices properly, many of their phones would be the closest to meeting our requirements. They’re currently missing the very important hardware memory tagging feature, but only because it’s such a new feature”
If even Samsung, the only other phone brand on the market they consider close to meeting their standards, doesn’t support every modern hardware security feature, and deliberately cripples their security for alternate OS’s, as a multi billion dollar company, I doubt Fairphone has custom-built hardware security mechanisms for their phones to the degree that Google has.
Well yeah, because why would phone companies care? Consumers buy devices based on camera and display quality, not for security, privacy, etc. I just had a chat w/ a coworker about a Chinese device with an incredible camera and big battery, and I highly doubt it does anything but the bare minimum for security. It’s a cool piece of hardware, but a no-go for anyone that cares even a little about security updates.
I have a Pixel device because it has a long SW support cycle (Google promises at least 7 years), and I use GrapheneOS because it removes Google’s spyware crap. I’m not married to GrapheneOS or Pixel devices, I just need something where the software support will last at least longer than my desire to keep the device (about 4-5 years for me). I’ve ditched each of my last phones largely because they ran out of security update support, and that sucks.
I’d prefer a Linux phone w/ decent security features, but they don’t meet my minimum standards for things working (just need phone features to work properly, don’t need apps). The moment a Linux phone comes out than actually works properly and has reasonable security, I’ll switch. The FairPhone could be that, but it’s not, so I don’t have one.
how is pixel with graphene os ? does it completely remove all google spyware shit? or do they have some sort of hardware backdoor?
the reason I ask is because i have a motorola right now and it pisses me off immensely … there is this notification they keep pushing, “Activate Live Lock screen” which i don’t even know what it is, some background pictures crap. I uninstalled this app, but the notification remains. Like it’s not there always but keeps coming back every few days. this has been going on for months and i got so pissed i decided to contact support and complain there. they said, something along the lines of, we can connect remotely and do it for you. ( like disable, but they can’t disable because i went through every option on the phone, it cannot be disabled, it’s just bloatware) but their “we can do it for you remotely” got me thinking, backdoors, backdoors everywhere.
now i want a new phone lol and one that can support a custom firmware but installing custom firmwares on pretty much all phones is a nightmare.
but i also hate buying anything google, hence my question.
Understand your worries. I can say that GOS is the gold standard of privacy phones , nothing beats it. Calyx comes in 2nd. A new install of graphene has a browser, pdf viewer sms app and that’s about it. Use as you wish , with secured bootloader and zero google stuff. And I think it’s the easiest install of any , anyone can do it. And 2nd hand phones are available
Agree. Calyx is also an option when GOS support ends , then lineage etc. Wish we had good working Linux phones but I have high hopes my pixel 7 will be my last android
I used a Fairphone 4 with /e/ and it was good. Not great, but useable. I expect the hardware bugs I ran into (using the camera only worked like 20 times before the phone needed a restart, Bluetooth randomly not working) to be ironed out by now. Currently on an old Samsung and it is more solid, but I also liked the environmentalism with the fairphone. Anyone with a Fairphone 5 and something like a glucose sensor thats in constant use?
I wish they could implement the parts of the Pixel phones that allow GrapheneOS to be used.
What parts are these? I’ve always wondered what this was about, why the pixel was the only phone that could support GrapheneOS
The last I looked was that the Pixel was the only phone that allowed you to load a custom rom and relock the bootloader. Other phones kept the bootloader unlocked once it was modded.
So, graphene could be put on those phones if the devs wanted to do it, but it would be less secure since the bootloader would remain unlocked.
Also, supporting a small line a phones is probably infinitely easier than a range, of devices, but it would be nice to have another option. Especially now that the Fairphone pice is reasonable.
The last I looked was that the Pixel was the only phone that allowed you to load a custom rom and relock the bootloader. Other phones kept the bootloader unlocked once it was modded.
That is not the case. SHIFTmq, Motorola and Fairphone allow the bootloader to be relocked with a custom rom. There are many requirements the Fairphone lacks for GrapheneOS, but relocking the bootloader is not one of them.
Thanks! I guess what I read before was either old or just wrong.
The Fairphone can be locked after flashing a custom rom. /e/-OS is officially supported. You can even buy it from them with /e/ preinstalled. iode-OS also works. I don’t know about Graphene OS, but tbh, I don’t see the benefit of Graphene OS for the average user. /e/ has built in privacy features, is google-free and runs MicroG as alternative to Google Play Services. Most apps run fine. You can even use your apps that you purchased from the PlayStore.
I’ve been using Fairphone 5 with /e/-OS for over a year and love it.
/e/ has built in privacy features
/e/ uses a for profit 3rd party for unencrypted backups. That alone should be a big red flag.
is google-free and runs MicroG
So it runs google. MicroG just limits what data is sent to google.
You can even use your apps that you purchased from the PlayStore.
You can do the same with aurora store. That’s available on just about every phone.
You can do the same with aurora store. That’s available on just about every phone.
not if the app attempts to verify its license through the play store. you need microg for that, or patch it
It a perfectly usable Android for the average user. Everything works out of the boy. If it is not for you, fine. Buy a Pixel.
for the average user.
So we are talking about an average user, who
- fully understands the appeal of a degoogled Phone
- Willingly spends extra money for a fairphone
- is able to migrate away from google services to /e/'s services
- Is willing and able to troubleshoot any problems that MicroG has
- is willing to fix not working banking apps
- but somehow can’t use a simple web installer from Calyx
Tell me, is this average user in the room with us right now?
Everything works out of the boy.
So does (and does not) with Calix or Graphene
Buy a Pixel.
I think you don’t get what I’m talking about.
-It takes a base level of understanding why you would buy a Fairphone (or any degoogled phone)
- it takes a base level of understanding phones to be able to use a degoogled one
- If you already have that knowledge, you might as well just take an extra 5 minutes and use the web installer for calyx since it is literally the same AND has less vendor lockin than /e/
Edit: You want an average user friendly ROM? Just use Lineage for gods sake.
Exactly. Even if I wanted /e/, I would re-flash when I got it, because the reason I want /e/ is because I don’t trust the OEM.
It’s the same way with desktops, I see zero value in buying a laptop w/ Linux pre-installed because I’m just going to reinstall when I get it anyway.
In 4 years I have never (and will never) used any service from /e/. There is no vendor lock whatsoever. That’s fully optional.
Points 3, 4 and 5 in your list are moot IMHO.
Also
It takes a base level of understanding why you would buy a Fairphone
It doesn’t really. “Phone is repairable and X can help me”, “they pay the makers fair wages” are not really complex value propositions that require some (technical) understanding.
The point of /e/ and similar distributions is that you can buy a phone with it (average user will never reflash) and just have a phone that doesn’t use Google (it does, for the amount that doesn’t require you to do extra technical stuff and have a sane user experience at the same time).
That said, calyx seems a great alternative and so are iode. I think the advantages of one over the other (for my brief search) are quite small.
I support all people around me when it comes to tech. I help them with their laptops and phones. If I get the chance to install Linux or de-googled Android, I do it, knowing that everything will work as they expect.
There is no baseknowlege required. People will buy what is readily available to them. A brand new Fairphone with e-OS preinstalled is readily available to them. And if the user experience is basically the same, they don’t even need care that their phone is more private.
/e/-OS is based on Lineage, with some stuff pre-installed to make it easier for users. I don’t get your problem. It is basically a distro. You are saying “why use Ubuntu when they can use Arch”. Doesn’t make sense at all.
lemmy is toxic as fuck. Same shit like every other site.
Well even graphene os still runs a version of Android. So there is still some goggle code in that. But ripping oit google play, amd various goggle services means goggle doesn’t track you with those. Yeah if you still ise gmail and log into toutube every day they will.
there is still some goggle code in that.
But that code is open source, and it has been verified that it dosent track you.
e-OS is said to have the worst security of pretty much all Android distributions. Dunno if this is a fact, but apparently the upgrade schedules are not great.
They are usually a month behind
https://www.kuketz-blog.de/weshalb-grapheneos-aktuell-nur-google-pixel-geraete-unterstuetzt/
(From an Interview - The relevant parts are in English)
Security seems not easy.
I mean, you could use CalyxOS
It dosent have such things as 2 factor pin auth for fingerprint, but its the closest to Graphene
Not quite the same. The big thing with GrapheneOS is it can run the actual Google services, but sandboxed. Organic Maps is better than Google Maps in everyway, but it’s routes are so much worse because it has no traffic into to go on. It’s an anticompetitive network effect, but it’s hard to fight without law makers.
Edit: Ok, it is good, but the main thing I like about is the maps can be setup to be as good as ones you’d manually navigate by. A bit like UK’s Ordnance Survey maps.
Organic Maps is better than Google Maps in everyway
It’s really not, here are a few more:
- no reviews for businesses - that’s a huge reason people use Maps
- you have to manually download maps you want to see, and repeat w/ every update
- lots of missing info, especially where I live, and especially businesses
- no satellite images or street view - OSM has it though
That said, I use Organic Maps almost exclusively, and I put in the time to add missing info where I can. I’ve probably added hundreds of places for my area. Basically, when I go somewhere new, if it’s not in OSM, I take a few pictures and add the place when I get home, and I’ll put in the effort to enter hours, phone number, etc from their website. It’s a pain, but hopefully someone down the line appreciates that.
All of that info exists in GM though, so the only reason for me to use OM is stubbornness. OM is fantastic, but it’s hardly “better than Google Maps in every way,” in fact it’s probably worse in most ways. However, I prefer it and will keep using it because I refuse to use Google services.
Ok, I accept all that, but the maps just are better to me. I grew up with the UK Ordnance Survey maps, and that’s kind of what I want from my maps.
I’ll amend.
I’m using this phone right now and I love it. it feels solid. Im using a degoogled ROM and it just works, there seems to be a lot of people pressing for graphene os specifically and discrediting the phone for what it is. its so easy to take apart and cheaply repair its great. it’s perfect for folk who want a decent smartphone that you dont have to worry about being thrown around. sure it’s not perfect but it is still a very good
I have been shopping for a rom for my FP. Which are you running?
calyx os is what I use
I use CalyxOS on mine. It has microG all working by default so if you need that sort of thing it’s probably the easiest way to get it up and running
What’s the cost to replace a cracked screen?
You can buy the OLED display as a spare part for 100 EUR on the official website. https://shop.fairphone.com/shop/category/spare-parts-4?category=4&filters=31
Yeah, that plus labor is 80% of what I typically pay for a whole brand new phone… I know why it is this way, but it really is this way and that makes it very hard for low volume players to enter the market.
Smartphones of this price would be low quality, impossible to self epair, and very likely made with very poor social and environmental conditions. It’s the opposite of what Fairphone does, so the comparison is not possible.
The headphone jack user to lemmy user ratio is apparently nearly 1:1
Shame there is no Graphene OS support for it
Fairphone brand is basically saying to everyone “Hey look at our generic Android phone with everything you need from Google, including AI stuff and data collection” and when you ask if you can have a privacy friendly features they basically say “Nope, we just do a phone with replaceable parts, that’s all. Don’t ask for more”
And it would be such good marketing strategy “replaceable parts + privacy”
At least someone commented CalyxOS supports it which seems to be a good alternative to GrapheneOS
The biggest downside of Fairphone IMO is that they don’t maintain their hardware support in LineageOS and for the retail product then branch development off, add a bit of custom branding and adapt whatever Google requires these days. It would greatly improve custom ROM support in general.
Graphene isn’t the best choice for everything. It doesn’t have good backup solutions nor device to device backup or anything solid for complete snapshots and when restoring your so called backups you’ll realize what all it truly lacks.
It’s hardened and has a lot of security and privacy features but none of that matters if your opsec is bad, or it’s feature set doesn’t match your threat model. I am not knocking it at all. It just isn’t the white knight for every case.
What’s wrong with Seedvault?
Seedvault works, I’ve restored from backups multiple times.
However there are still many parts of overall data that aren’t fully backed up.
Certain app data doesn’t get saved.
Settings are but not in entirety requiring manual rechecks of all settings and reconfiguration if needed. Which saves no time because then you cannot trust it fully for what was and was not altered meaning you then must asses everything which took away the total value, and adds a layer of distrust.
Profiles must be backed up individually which creates a giant hassle to restore/maintain consistent backups, which also requires different drives for each profile to be recognized correctly.
App lists are impartial requiring a wrote down list or some form of rememberance that’s not reliant on the backup list of installed apps.
I can go on with more its late in my time zone and I have to sleep so. It’s a good project and has merit. It is just not where it should be to really be useful at scale. I am aware of the experimental setting to create a more comprehensive backup. Even with it checked on the backups are not complete. Thus the use of Graphene while a great project has definite major flaws. If they implement device to device backups it would be a game changer. Not high up on their list of to dos though.
Thanks for the info. I have not really tested Seedvault myself so this is all good to know.
Ironically, one of the main reasons I switched to GrapheneOS was because Google’s backups were so frustrating and I was hoping Seedvault would be more comprehensive.
It is and its not. You just have to know the limitations, some of which I mentioned. Try it for yourself and to a restore then report back you’ll understand it’s very cumbersome in some ways.
Don’t expect to be able to wipe a phone and restore from backup like you never left it’ll get you closeish. So you need to ask yourself is that good enough for you with your opsec and threat model? To only have part of your data back…
In its current form its just a hassle right now to create backups on seperate drives (not even partitions on one drive I tried, as seedvault and the OS only identifies the drive you don’t get to choose) for each profile plugging them into your phone individually, backing up each one, and keeping them up to date often, it’s a lot! I have swapped several pixels and profiles I hate doing it everytime it really is a subpar process. I AM ALL EARS FOR A BETTER SOLUTION. Having to piece your data back together for it to be complete again doesn’t sit right with me to be considered backed up correctly. It leaves you vulnerable and some of us don’t like being locked into any specific device or situation like having your life on a device and being at the mercy of it for any reason you might encounter. I’m actually moving away from graphene due to these issues. It’s just not there yet.
Its one thing to read the documentation and another to have experience in using the software first hand which is why I got downvotes, over time, daily those are the ones who have experienced what I mean. I just wanted people to be aware that it’s not the saving grace yet.
Imagine the real world use case of backups and maintenance which should be done as often as possible as to lose as little data as possible. Phone gets broken, stolen, confiscated, what have you. Having reliable backups is the difference between starting over and continuing with what could be your entire life in this digital age.
I’m being bugged by Seedvault caring for apps that have a ‘don’t backup app data’ flag.
I could live with that being a default setting, which can be manually overwritten in the Seedvault settings for these apps.
Apps not allowing (in case of Seedvault: encrypted) full backups while offering no or bad built-in backups is just cumbersome when trying to have current backups.afaik their device-to-device mode should be able to workaround that. it can still be saved to storage
I believe you’re right, but that doesn’t solve the problem of making routine full backups, which would come in handy if the device gets lost or breaks.
One can hope future versions of Seedvault care less about what apps want.
Agreed.
That said, it would be awesome to have an alternative to Pixel devices if you do want GrapheneOS.
The project has sort of silo’d itself into security which is only one part of the equation. Rather than overall completeness, functionality, maintainability. It’s lacking major fundamental feature sets. Thus its more of a tails meets whonix/Qubes right now not a all in one bow wrapped package to save the day for its consumer base. Many many other issues/bugs I didnt list. Perhaps I’ll add more tomorrow. If everyone wants.
And that’s exactly what it should be IMO. I prefer a project with narrow goals to one that does everything, but poorly.
If I want backups, I can use something like Syncthing. When moving to a new device, I prefer to install everything from scratch because I generally don’t use most of the apps I have anyway. I don’t put anything critical on it, so why would I need to restore from a snapshot?
If you want those features, it’s not the ROM for you.
I just want a simple device with a long support cycle and no spyware, and GrapheneOS delivers. I have Google Play Services on a seperate profile, and my main profile is completely free of that crap. I want a Linux phone, but every phone has serious limitations, like missing audio, sketchy calls, or completely broken camera. GrapheneOS is the closest experience I have to that.
If I want backups, I can use something like Syncthing.
syncthing cant backup your device. that is a file transfer app. for backing up the device you need either appmanager and root, or good old dd and root (and a half shutdown system)
I don’t put anything critical on it, so why would I need to restore from a snapshot?
- because not everyone uses the device the same way as you
- snapshots are always complete. file based backups are not because of metadata changes. seedvault even less because it picks apps except this and that, and an unknown subset of the settings, and shared storage for the files that you have enabled
If you want those features, it’s not the ROM for you.
currently there’s no ROM on which you could execute a real backup, thanks to encrypted storage with keys stored in TPM. TPM sees a change, and now your backup is a useless blob of practically random data
I just want a simple device with a long support cycle and no spyware, and GrapheneOS delivers.
as does calyx os
I have Google Play Services on a sperate profile, and my main profile is completely free of that crap. I want a Linux phone, but every phone has serious limitations, like missing audio, sketchy calls, or completely broken camera.
with microg, this can be done on calyx too. there’s even a few options on how much you want google to know.
and if your point is that not all apps work with microg, then you would never actually move to a linux phone because that will never have google play services (hopefully, else something has gone way wrong), probably not even microg or apps that would depend on it
syncthing cant backup your device. that is a file transfer app.
That’s exactly what backup software is, it’s keeping copies of important data in multiple places so if one dies/gets stolen, you have backup copies.
I can tell syncthing to copy all my important data to another device.
I don’t need all the installed apps or a disk image, that’s way overkill. I could do that, but it’ll get way more than I need.
as does calyx os
You’re right, Calyx OS is also a good choice.
I went with GrapheneOS for two reasons:
- sandboxed Google Play vs microG - no option AFAIK to disable it
- faster security updates
My goal is a baby step toward Linux phones, not compatibility with Android. I only have Google Play Services on a separate profile, and I spend 95% of my time on the profile without it. The less I rely on Google Play Services, the easier it’ll be for me to transition to Linux alternatives.
Better app compatibility is a nice side effect. I have a handful of apps that rely on Google Play Services, and there’s a decent chance they wouldn’t work on microG. But I rarely use them and I’m willing to go without if it means I can have a Linux phone.
sandboxed Google Play vs microG - no option AFAIK to disable it
you mean disabling microg?
if so you can refuse installation at profile setup. if you make a new profile, you can choose to install it there. then in microg settings there are some toggles for functionality
btw, which of your apps nead google services?
Seedvault worked fine for me when I moved phones last year.
I agree. Seedvault works but if you really use the project and its features as intended you’ll see problems I listed above which is not complete I’m just tired there are plenty more.
You’ll start to see the problems and the lack of value add from graphene. I’d feel much safer on a Linux machine and correct backups, under most threat models and opsecs, even without all the advanced security features than stuck locked into graphene as a half baked project. Which is saying something, and why I said it depends on your opsec and threat model I wasn’t bashing the project it just is not the end all be all right now.
The year of Linux is upon us. Soonish*
Its had more dev time across the board which is why I would choose it first and foremost. What it lacks in certain features its fundamentally more complete. Regardless of distro mostly.
It has CalyxOS support though. A decent alternative.
Agreed. I was debating between CalyxOS and GrapheneOS, and I ended up w/ GrapheneOS because I ended up picking the Pixel 8 due to the long software support cycle. If I picked any other phone, I would’ve ended up w/ CalyxOS.
Both are great projects.
Indeed. I am currently waiting for Calyx to be released for my phone, it’s a Moto g84, and support seems to be coming along nicely.
I probably would have picked a pixel if I could, but they are not available for sale in my country.
And it doesn’t support US bands for TMobile
T-Mobile supports these bands:
-
5G: n2/41/71/258/260/261
-
5G,ER: n25
-
4GLTE: B4/5/12/71
-
4GLTE,ER: B25/66
-
2G,GSM: B2
Fairphone 5 supports these bands:
-
5G: n1/2/3/5/7/8/20/28/38/41/48/71/77/78
-
5G,ER: n66
-
4GLTE: B1/2/3/4/5/7/8/12/20/28/32/38/40/41/42/48/71
-
4GLTE,ER: B66
It looks like the Fairphone 5 covers T-Mobile’s 5G Frequency Band 1 frequencies (bold), but Frequency Band 2 is not covered (italic).
Regarding 4G, the Fairphone 5 covers all LTE networks (bold) except for extended range band B25 (italics).
it doesn’t support US bands for TMobile
It covers some, but not all.
-
For 4G. 5G is fine.
no other manufacturer than google ever will have graphnene os support. their requirements cannot be met unless you are a tech gian, and with exceptionally good connections to the hardware manufacturers
Was thinking the same thing. Not Graphenes fault though but a failing of OEMs to provide what’s necessary.
You could always go for /e/os though
Edit: Didn’t know it was this bad…
/e/os is a security dumpster fire. It’s even worse than stock Android. Stay away from it.
Can you explain?
Every other version of Android gets security updates out within a couple weeks of release at most.
/e/OS users are lucky if they get them within a couple months.
No offense, but that’s not what a security dumpster fire is. Security updates are important, of course, but they are also not the biggest deal.
In fact, I bet that the vast majority of users (on Android or otherwise) are lagging way behind in updates anyway.
That is not the only issue, it’s just one of the more major ones that shouldn’t be dismissed like it’s nothing. Another major one is the unlocked bootloader. You can take a look at all the Android ROMS here.
I think people should treat carefully when changing the OS of a mobile device. Changing your OS to something less secure just because you want to shove it to Google and Apple is not enough to warrant it. Better to stay with something safe that you know than with something insecure like /e/OS.
Luckily we have Graphene so you can actually switch to a more secure and private OS that is not made by an American corporation hungry for data.
/e/OS has official builds for the fairphones, you can re-lock the bootloader there, afaik. At least according to this: https://doc.e.foundation/devices/FP5/install
You can also buy the phone directly with /e/OS pre-installed & closed bootloader, from what I read on the fairphone website.
I am not dismissing it, I am saying that is not as big as you make it to be. Most users lag behind in updates anyway, besides using minimal and trusted applications, the outside exposure to exploitation is relatively small, for a device without a public address. I am not the one APTs are going to use the SMS no-click 0-day against.
Similarly for the bootloader issue. The kind of attacks mitigated by this are not in most people threat models. They just are not. As someone else wrote, it’s possible to relock the bootloader anyway with official builds (such as my FP3). But anyway, even for myself the chance that my phone gets modified by physical access without my knowledge is a fraction of a fraction compared to the chance that someone will snatch the phone in my hand while unlocked, for example (a recent pattern).
If these two issues are what prompts you to call a “security dumpster fire”, I would say we at least have very different risk perceptions.
So an OS that boasts about the “privacy” it offers… Doesn’t need routine and consistent security updates?
Sure thing bud, keep going on like you know what you’re talking about.
Generally speaking privacy and security are related but not really linked to each other. Google services might be very secure, but a privacy nightmare for example. In this particular case, even more, because the chances that using a “googled” phone will mean data collection (I.e. privacy issues) are almost certain, while the risks we are talking about are much more niche and - as I elaborated on another comment - in my opinion not really in most people threat model.
I would like to hear your perspective instead, because I am not really into using authority arguments, but as a security engineer I believe to at least understand well the issue with security updates, vulnerabilities and exploits. So yes, I do think to know what I am talking about.
good on you for asking the question. OP does not know what he is talking about
Thanks for the answer. How does it compare against other Android forks in terms of security update speed?
Also, isn’t Fairphone once also criticised for falling behind on Android security updates or was I misremembering this?
Also correct, though I am not particularly familiar with Fairphone. Seems like they are down to bimonthly updates, if that.
*We are including two months of security patching in a bi-monthly maintenance release.
Only 400€ to go until I can afford it.
