Hello, making this post to get some honest, and technical opinions about GrapheneOS. Please do not be bother by this question. No drama here pls 🙏. I’ve heard that there is some of the google code into the “sandbox” feature. Say your opinion below! 👇👇

  • user@lemmy.world
    link
    fedilink
    arrow-up
    5
    arrow-down
    1
    ·
    5 months ago

    By this logic rpiOS sucks because its only supported on Raspberry PIs. Only Pixel hardware meets the security requirements of Graphene.

    • Possibly linux
      link
      fedilink
      English
      arrow-up
      2
      arrow-down
      2
      ·
      5 months ago

      Raspberry Pis suck in general as they lack open firmware. You are stuck with the Raspberry Pi kernel and all of its blobs. “Security requirements” is something Microsoft says about Windows 11. If you are concerned about security your best bet is stock software as it is maintained by Google.

      • user@lemmy.world
        link
        fedilink
        arrow-up
        1
        ·
        5 months ago

        Again, you demonstrate that you don’t have the sufficient knowledge. There is no commerical device with open-source firmware. “Security Requirements” are not some kind of marketing bullshit as you seem to think. Graphene’s can be found here: https://grapheneos.org/faq#future-devices

        I doubt you understand what any of them mean, since you seemingly think Windows 11 requirements are just random things that are just there to hurt you.

        You thinking that Stock Google devices are more secure than GOS simply shows that you fundamentally lack the understanding of how things work. They are built on the same core but Graphene has massively reduced attack surface and fewer ways to exploit remotely. And then we didn’t even talk about the hardened kernel and such.

        I wouldn’t try to discredit projects I don’t know anything about if I were you.

        • Possibly linux
          link
          fedilink
          English
          arrow-up
          1
          arrow-down
          2
          ·
          5 months ago

          https://www.fsf.org/resources/hw/single-board-computers (2021)

          https://pine64.org/documentation/ROCK64/

          Pine64 boards rarely need proprietary software and they don’t need it to boot like the raspberry pi does. However, that is a discussion for another time.

          You are also illustrating my point. The Graphene community has a my way or the highway mentality. As it turns out stock will often be more secure as it will have the latest security updates and will have less people handing it in general so less risk of supply chain attack from a bad actor in the community. However, this is a non issue. I find a lot of the so called security holes to be fairly mild as they require very specific targeting to exploit.

          In general, the people around Graphene os and Divest OS are very toxic. In the F-droid board meeting the issue was brought up that the is censorship is promotion happing for Divest OS. People who criticized Divest OS were getting banned. The person who brought this complaint has a page where they go over there beliefs and bring forward evidence. I think they are a bit harsh but they do have a point.

          http://opinionplatform.org/