Lineage is about providing a Google free version of android AOSP and supporting as many phones as possible.
Graphene is about making a privacy centric version of android that can run Google apps sandboxed. Graphene only supports pixel phones.
Lineage is not about providing a google free version of Android. It does not contain google apps, for licensing reasons, probably also to let the user choose. But it does not go further, all the other stuff like captive portal check, agps, dns etc still uses google servers. It's not "degoogled" in any way. Love lineage btw but we need to be aware of what it is and isn't.
I wonder where this misconception is coming from, it's the second time in the last few days I've seen it. I can't remember custom roms ever coming with the Google apps preinstalled, you'd always need to flash them separately before the first boot (thanks XDA). That's why we have MindTheGApps.
It used to be that Cyanogenmod (the precursor project to LineageOS) shipped with Google apps pre installed until they got a cease and desist from Google.
I can’t remember custom roms ever coming with the Google apps preinstalled, you’d always need to flash them separately before the first boot
Many of them do these days. Which is a bit annoying when you want a no-gapps variant and can't find it.
That's interesting! They aren't supposed to do that though, right? It goes against Google's policy.
Probably because the lack of google apps is the most noticeable difference to stock android?
Sure, but installing them is a step in the LineageOS installation guide.
Is there still a good guide on how to fully degoogle lineage?
LineageOS4MicroG is a reasonable starting point. It includes MicroG out of the box, while disabling further app spoofing in the OS (whereas normally if you install MicroG yourself it's much more difficult to disable app spoofing after you've got it set up).
But as /u/baatliwala@lemmy.world said, this is more likely adding Google (or a mock version of it) to your phone, and LineageOS still doesn't have a few things that other custom ROMs might - eg captive portal check, A-GPS and DNS settings that /u/afunkysongaday@lemmy.world mentioned. To get rid of those you'll have to try a proper custom ROM and just read the feature specs. I use DivestOS, and that seems to cover most things.
In my experience, not all that many apps require Google anymore. I get a few apps complain that they won't work without Google services, but find that it's just the map and payment functions that don't work (meanwhile dedicated map apps like Waze work just fine). Going without Google services altogether is really just about sacrificing a relatively small bit of convenience.
My thing is, I like having root. Lineage tells me, "that's okay." Divest, Graphene, etc. tell me (correctly) that that's insecure and I shouln't do it. But I still want root, and don't like the idea of opposing my ROM in what I'm doing.
Ditto, at least Divest doesn't moan too much once you're set up.
Degoogle is the wrong word for lineage because it hasn't been "engoogled" in the first place, it doesn't ship with Google services at all. If you simply install the base ROM you don't have Google.
The question is if you want to replace Google with mock Google services so certain apps relying on GMS still work, or if you want to replace it completely with FOSS alternatives.
Does graphene allow banking apps ? Does it trip safety net ?
I think GrapheneOS isn't made for that purpose. It's made to be safe and do privacy well. I think signature spoofing, rooting to circumvent things etc are opposing requirements. I don't think everything works. There are websites and other comments with more info. My Banking TAN App works, though. Google Pay doesn't.
So google pay doesn't work. That's a bastard
Not to start an argument but why would one want to be using Google Pay after going through the process of de-googling their phone? Seems counterproductive.
Fair point. Is there an alternative to Google pay. I don't use a card and pretty much refuse to use anywhere that requires care or cash
There are a few different ones. I highly recommend doing your own research to find one you're comfortable with; reading multiple different reviews of each and whatnot. But here's a site specialising in finding alternatives to services
Every alternative except Apple and Samsung pay, which are device specific and proprietary, seem to just be crypto. No NFC FOSS purchases.
Sadly, there's not too much I can do about that. From what I've understood, there's a whole lot of red tape around tap-to-pay transaction technology. Personally, I don't use any of it. Only cash or card where I have to.
So many cards have an nfc chip in them now. Just tap the physical card.
I don't want to tap the card. Point of preference. I don't have a wallet. I have a phone.
Google Pay gives you worse consumer rights than using your card with contactless. A contactless card purchase is processed as "cardholder not present", the same as phone catalogue purchases always used to be done, and the same as online purchases. The seller assumes default responsibility in any dispute. When you make a purchase with your card pin, or when you make a purchase with Google Pay, both are considered secure and authorised by you, so that becomes the default position in a dispute.
If someone steals your card and uses it to make a bunch of contactless purchases, you'd have a much easier time getting them refunded than if the purchases were made with your phone.
How would they use my phone? It's locked and requires fingerprint to unlock? Card requires nothing. Can lock down phone. Can lock card but need to contact bank.
Fingerprint is fairly easy to bypass, face unlock sometimes moreso. A PIN or password can be captured by just watching someone, and you'll have far more opportunity to capture their phone PIN than you would their card PIN. If anything, you're perhaps less likely to lose your card as it spends more time safe in your pocket.
The point is it can be done, and you're in a worse position if/when it happens.
Sorry. Where are fingerprint readers easy to crack ? Maybe government agencies and high level crime syndicates. Not petty thief's. I don't use phone pin. I use fingerprint as discussed.
I don't use card pin so that's not an issue. The problem would be a contactless card. Which is the debate we are currently engaged in.
So no. I'll stick with my phone using Google pay. I had my card skimmed with a card reader and my bank emptied. Funnily enough has never happened with my phone.
Fingerprint readers aren't easier to crack, but they're easy enough to spoof. That's certainly getting harder - just like spoofing facial recognition is - but ultimately biometrics are heavily flawed as a security method. Primarily, it's almost impossible for a person to change their biomentrics, meaning once they are compromised there is little if anything that can be done.
I would say that you shouldn't use Google Pay. You should revert to using your card directly, particularly contactless card purchases. Not only will this give you better consumer rights in the event of any dispute, but also you won't be giving even more detail to Google.
Even so, cash is king. You can always haggle a lower price if you're paying in cash, particularly when you highlight the 1.5% that card providers (MasterCard and VISA) levy for all card transactions, on top of their statutory fee.
Oh I don't disagree with biometrics. They are the ultimate in security. But if you lose access you are fucked.
They could be spoofed. But each year it's harder and harder and as I said. Petty crime would weigh up the odds. Contactless card that you can use a few times before locked or need to spoof a fingerprint to get into a phone and then use contactless.
I know which one id choose. Also we need to keep the phone connected to the Google account. Increasing my ability to trace you and retrieve my phone. Card will ping location but it doesn't say where your house is. I can remotely lock my Google phone and trace it. Can't do that with card. I think phone is a Much riskier endeavor.
And I will be er revert to using card. As states above it's a worse experience in all aspects. Easier to lose card, easier to be stolen and worse protection. Always have phone on me and can do a multitude of jobs. Card can do one thing.
That's the pay off isn't it. Google data vs bank data. It's the same data yet It inconveniences me more. Same outcome.
Literally no one is haggling. That's a ridiculous proposition. When was the last time you haggle for a beer. Money is cumbersome and completely unnecessary. Yes it's great for illicit nefarious reasons. 99% of people have no need for that. Cash means wallets pockets and then I'm stuck with useless change.
Cash hadn't been king for a while. Jesus during COVID-19 places wouldn't even accept it. Contactless or I don't shop there.
Card will ping location but it doesn’t say where your house is. I can remotely lock my Google phone and trace it. Can’t do that with card. I think phone is a Much riskier endeavor.
I mean, I've never used Google Pay, so I can't really comment on the functionality. But it is very easy to block card.
My point is that when you block the card, you have the opportunity to object to any purchase that wasn't authenticated by you. Any contactless card purchase could be challenged. Meanwhile, any purchase where you used your PIN, or your phone, leaves you no opportunity to challenge it.
Furthermore, perhaps the most common form of card fraud involves friends and family. Such a friend could conceivably gain access to your phone and the details needed to make a transaction. If that transaction involves using your phone (which many close family members might have access to) then you will have no recourse with the card company. If you have a bunch of suspicious transactions that used your card PIN, you will be expected to explain them, but if yoiu have a bunch of suspicious transactions made with contactless cards then the default position is that the business has to explain them.
It's a fairly subtle difference, but it is very significant. You're on the back foot when you casually use your phone, compared to casually using a card.
Literally no one is haggling. That’s a ridiculous proposition.
Not quite, but yeah, very few are. We've almost reverted to the point where terms and conditions are dictated to us, and we have the privelege of paying for it. That's bullshit. We have the money, they want it, they should taylor their terms to suit us.
You should try apps. Be good UK try other side. Can always cancel after a trial period. It's easier to block google pay than a card, but only by a fraction. Both can be completed in app.
That is true but it's an antiquated system that requires updating. But I get ya.
My phone is password and fingerprint protected and I change the password regularly. No one would be attempting that. My Family members would never attempt something so brazen and my friends wouldn't gain access. But again I can understand the point. It's pretty out there. You could use the same argument for a card. If someone gets access to your card it has all the details available to you and doesn't require password or fingerprint
And a few non-pixel devices, though it's incredibly short list. Expansion was to start last fall, afaik.
I'd love to see this come to fruition. I've wanted Graphene since I first heard about it but refuse to pay the Google tax for admission and live with all the restrictions a Google device comes with
Google tax is a definite pain in the ass, but with graphene those restrictions no longer apply
By "Google tax" I mean having to buy one of their devices and the "restrictions" I'm referring to are the lack of headphone jack and micro SD card slot. They may mean nothing to you or others but they're both bare minimum requirements for myself and others. For as long as they aren't available on Pixel devices, I will never consider a Pixel.
I also hate the ass-backwards hole punch camera but that seems to be even more of a losing battle than the other common sense features I mentioned.
I've always found it both weird and ironic that GrapheneOS is only available for Pixel phones when the whole principle of the project is basically "we don't trust Google".
The pixel device is (as far as I’m aware) the only mainstream device that allows you to re-lock the boot loader.
Otherwise, once a phone is cracked, it remains cracked. I’m not entirely sure what that buys, but that’s why they do it
Most brands allow relocking bootloader. But after that you with be only able to use stock rom. Pixel lets you lock the bootloader with a different signature, so in this example you are basically able to lock it to only boot grapheneos and nothing else.
They also have an accessible secure element that graphene uses a lot. I'd recommend listening to the podcast interviews with graphene staff
Security. You're caught with your pants down if you have any personal data on a phone with an unlocked bootloader. All data is effectively plaintext, all security is nullified with trivial difficulty. This is the actual worst-case scenario for journalists, whistleblowers, or anyone who is or may become under surveillance for any reason.
That's wrong, data is still usually encrypted.
A locked bootloader 'just' prevents tampering with the OS. You're only pwned when using the phone after it has been manipulated.
Yeah but if you have the phone with an unlocked bootloader and anyone gains access to it (physical or otherwise)...
They still wouldn't be able to do very much. All an unlocked bootloader does is let you flash things via fastboot.
Even with a locked bootloader, you could still get into recovery and cause mischief with physical access. You wouldn't be able to access the storage partition without decrypting it, but you could still maybe flash stuff to the system partition to infect it for the next time the phone is booted up.
Remote access to the phone won't be able to do much of anything with an unlocked bootloader. The far bigger hazard is app signature spoofing (eg Magisk and MicroG), which if successfully exploited can cause all sorts of havok - you can have apps pretending to be other apps that have root access.
Even then, though, I think it's a fair trade of risk. The chances of any of this happening are very, very low, albeit the consequence is extreme. I personally prefer that to the absolutely certain risk that Google is spying on my phone, even if the consequences of that spying are relatively low.
This isn't true at all. Daniel Micay has stated multiple times the goal isn't to degoogle, it's to provide a secure and private OS that's actually usable. They worked tirelessly to integrate GMS compatibility layer and give users the choice to install sandboxed Google play for app compatability.
GrapheneOS has said countless times that by using Linux and other open source softwares that Google contributes massive amounts of code, you ARE inherently trusting them to not be malicious https://nitter.1d4.us/GrapheneOS/status/1672998518573740033#m
Google play does what it says and they are very open about what data they collect, which is obviously a lot. GrapheneOS stops much of this collection through sandboxing, where you can deny any permissions you desire.
G provides a phone that is incredibly friendly to developers (as friendly as it can get without free hookers and blow), in all aspects, which makes sense considering they want devs to adopt android as their platform for apps and stuff. This also goes into things like security vulnerabilies/research, and also alternative android-based systems. It's humorous but not at all ironic. Be friendly to devs, and make money hand over fist because of it.
It's logical for both, just for very different motives.
What happened to LineageOS?
Nothing. What makes you think something happened to it?
It's still very much alive! Still getting regular updates on my S10 and even security updates for my OnePlus 3t.
I'm using LineageOS 20 right now, waiting on 21. I've been getting weekly updates since I installed it, so things seem fine for them.
Also on Lineage and loving it
Aren't they differing systems? Graphene was mostly pixel / Google devices. Whereas lineageos was a hunch of different devices. Lineageos was an evolution from cryomod
LineageOS is still in development. While there's no official Android 14 (LineageOS 21) yet, there are development builds available, and LOS 20 is still receiving regular official weekly updates.
No lol GrapheneOS is a different project run by developer divas. It's super secure, but only if you use a Google phone, which totally makes it safe. The television ad told me so.
LineageOS is the main pure AOSP ROM, over all the others. It's still chugging along quite fine, albeit its customisation options have always been fairly limited compared to other custom ROMs.
If you're using LineageOS4MicroG and complaining about updates, well, you wouldn't be the first. This fork follows the main tree but updates veeeeeery slowly, such that there are always people asking if it's dead. So far, after every one of the countless times that's happened, it's still been going - so it probably still is.
I personally run DivestOS and feel happy. No developer drama, and I'm not locked in to Google hardware. Ultimately though, all Android phone hardware manufacturers play the same games. It sickens me that so many of them require you to ask their permission to unlock the bootloader on the device you own.
I tried running dos but the location services being removed made life rather difficult so I had to go back to a different room. How do you get taxi apps to work without location services?
I don't use them too much, but manage to get Uber working with just addresses.
You can also set up location services with MicroG and modules, but setting that up is like stacking a house of cards.
Edit: You could also just install GApps, of varying densities. This is literally installing Google Play Services and its various features, as would normally be found. That kind of undermines the whole privacy aspect of the ROM, but it does get things working very easily, and you can at least limit the amount of crap you install with the various packages (nano, pico, full, etc).
Oh weird. I played around with micro g, but I couldn't get location services to work I just thought it had been totally stripped out. I'll give it another go
Location with MicroG is done by additional modules. However, some apps explicitly look for Google Maps' back end, so there's another module that installs an old version of that.
No. They are two different projects.
Lineage is about providing a Google free version of android AOSP and supporting as many phones as possible.
Graphene is about making a privacy centric version of android that can run Google apps sandboxed. Graphene only supports pixel phones.
Lineage is not about providing a google free version of Android. It does not contain google apps, for licensing reasons, probably also to let the user choose. But it does not go further, all the other stuff like captive portal check, agps, dns etc still uses google servers. It's not "degoogled" in any way. Love lineage btw but we need to be aware of what it is and isn't.
I wonder where this misconception is coming from, it's the second time in the last few days I've seen it. I can't remember custom roms ever coming with the Google apps preinstalled, you'd always need to flash them separately before the first boot (thanks XDA). That's why we have MindTheGApps.
It used to be that Cyanogenmod (the precursor project to LineageOS) shipped with Google apps pre installed until they got a cease and desist from Google.
Many of them do these days. Which is a bit annoying when you want a no-gapps variant and can't find it.
That's interesting! They aren't supposed to do that though, right? It goes against Google's policy.
Probably because the lack of google apps is the most noticeable difference to stock android?
Sure, but installing them is a step in the LineageOS installation guide.
Is there still a good guide on how to fully degoogle lineage?
LineageOS4MicroG is a reasonable starting point. It includes MicroG out of the box, while disabling further app spoofing in the OS (whereas normally if you install MicroG yourself it's much more difficult to disable app spoofing after you've got it set up).
But as /u/baatliwala@lemmy.world said, this is more likely adding Google (or a mock version of it) to your phone, and LineageOS still doesn't have a few things that other custom ROMs might - eg captive portal check, A-GPS and DNS settings that /u/afunkysongaday@lemmy.world mentioned. To get rid of those you'll have to try a proper custom ROM and just read the feature specs. I use DivestOS, and that seems to cover most things.
In my experience, not all that many apps require Google anymore. I get a few apps complain that they won't work without Google services, but find that it's just the map and payment functions that don't work (meanwhile dedicated map apps like Waze work just fine). Going without Google services altogether is really just about sacrificing a relatively small bit of convenience.
My thing is, I like having root. Lineage tells me, "that's okay." Divest, Graphene, etc. tell me (correctly) that that's insecure and I shouln't do it. But I still want root, and don't like the idea of opposing my ROM in what I'm doing.
Ditto, at least Divest doesn't moan too much once you're set up.
Degoogle is the wrong word for lineage because it hasn't been "engoogled" in the first place, it doesn't ship with Google services at all. If you simply install the base ROM you don't have Google.
The question is if you want to replace Google with mock Google services so certain apps relying on GMS still work, or if you want to replace it completely with FOSS alternatives.
Does graphene allow banking apps ? Does it trip safety net ?
https://grapheneos.org/usage#banking-apps
I think GrapheneOS isn't made for that purpose. It's made to be safe and do privacy well. I think signature spoofing, rooting to circumvent things etc are opposing requirements. I don't think everything works. There are websites and other comments with more info. My Banking TAN App works, though. Google Pay doesn't.
So google pay doesn't work. That's a bastard
Not to start an argument but why would one want to be using Google Pay after going through the process of de-googling their phone? Seems counterproductive.
Fair point. Is there an alternative to Google pay. I don't use a card and pretty much refuse to use anywhere that requires care or cash
There are a few different ones. I highly recommend doing your own research to find one you're comfortable with; reading multiple different reviews of each and whatnot. But here's a site specialising in finding alternatives to services
Every alternative except Apple and Samsung pay, which are device specific and proprietary, seem to just be crypto. No NFC FOSS purchases.
Sadly, there's not too much I can do about that. From what I've understood, there's a whole lot of red tape around tap-to-pay transaction technology. Personally, I don't use any of it. Only cash or card where I have to.
So many cards have an nfc chip in them now. Just tap the physical card.
I don't want to tap the card. Point of preference. I don't have a wallet. I have a phone.
Google Pay gives you worse consumer rights than using your card with contactless. A contactless card purchase is processed as "cardholder not present", the same as phone catalogue purchases always used to be done, and the same as online purchases. The seller assumes default responsibility in any dispute. When you make a purchase with your card pin, or when you make a purchase with Google Pay, both are considered secure and authorised by you, so that becomes the default position in a dispute.
If someone steals your card and uses it to make a bunch of contactless purchases, you'd have a much easier time getting them refunded than if the purchases were made with your phone.
How would they use my phone? It's locked and requires fingerprint to unlock? Card requires nothing. Can lock down phone. Can lock card but need to contact bank.
Fingerprint is fairly easy to bypass, face unlock sometimes moreso. A PIN or password can be captured by just watching someone, and you'll have far more opportunity to capture their phone PIN than you would their card PIN. If anything, you're perhaps less likely to lose your card as it spends more time safe in your pocket.
The point is it can be done, and you're in a worse position if/when it happens.
Sorry. Where are fingerprint readers easy to crack ? Maybe government agencies and high level crime syndicates. Not petty thief's. I don't use phone pin. I use fingerprint as discussed.
I don't use card pin so that's not an issue. The problem would be a contactless card. Which is the debate we are currently engaged in.
So no. I'll stick with my phone using Google pay. I had my card skimmed with a card reader and my bank emptied. Funnily enough has never happened with my phone.
Fingerprint readers aren't easier to crack, but they're easy enough to spoof. That's certainly getting harder - just like spoofing facial recognition is - but ultimately biometrics are heavily flawed as a security method. Primarily, it's almost impossible for a person to change their biomentrics, meaning once they are compromised there is little if anything that can be done.
I would say that you shouldn't use Google Pay. You should revert to using your card directly, particularly contactless card purchases. Not only will this give you better consumer rights in the event of any dispute, but also you won't be giving even more detail to Google.
Even so, cash is king. You can always haggle a lower price if you're paying in cash, particularly when you highlight the 1.5% that card providers (MasterCard and VISA) levy for all card transactions, on top of their statutory fee.
Oh I don't disagree with biometrics. They are the ultimate in security. But if you lose access you are fucked.
They could be spoofed. But each year it's harder and harder and as I said. Petty crime would weigh up the odds. Contactless card that you can use a few times before locked or need to spoof a fingerprint to get into a phone and then use contactless.
I know which one id choose. Also we need to keep the phone connected to the Google account. Increasing my ability to trace you and retrieve my phone. Card will ping location but it doesn't say where your house is. I can remotely lock my Google phone and trace it. Can't do that with card. I think phone is a Much riskier endeavor.
And I will be er revert to using card. As states above it's a worse experience in all aspects. Easier to lose card, easier to be stolen and worse protection. Always have phone on me and can do a multitude of jobs. Card can do one thing.
That's the pay off isn't it. Google data vs bank data. It's the same data yet It inconveniences me more. Same outcome.
Literally no one is haggling. That's a ridiculous proposition. When was the last time you haggle for a beer. Money is cumbersome and completely unnecessary. Yes it's great for illicit nefarious reasons. 99% of people have no need for that. Cash means wallets pockets and then I'm stuck with useless change.
Cash hadn't been king for a while. Jesus during COVID-19 places wouldn't even accept it. Contactless or I don't shop there.
I mean, I've never used Google Pay, so I can't really comment on the functionality. But it is very easy to block card.
My point is that when you block the card, you have the opportunity to object to any purchase that wasn't authenticated by you. Any contactless card purchase could be challenged. Meanwhile, any purchase where you used your PIN, or your phone, leaves you no opportunity to challenge it.
Furthermore, perhaps the most common form of card fraud involves friends and family. Such a friend could conceivably gain access to your phone and the details needed to make a transaction. If that transaction involves using your phone (which many close family members might have access to) then you will have no recourse with the card company. If you have a bunch of suspicious transactions that used your card PIN, you will be expected to explain them, but if yoiu have a bunch of suspicious transactions made with contactless cards then the default position is that the business has to explain them.
It's a fairly subtle difference, but it is very significant. You're on the back foot when you casually use your phone, compared to casually using a card.
Not quite, but yeah, very few are. We've almost reverted to the point where terms and conditions are dictated to us, and we have the privelege of paying for it. That's bullshit. We have the money, they want it, they should taylor their terms to suit us.
You should try apps. Be good UK try other side. Can always cancel after a trial period. It's easier to block google pay than a card, but only by a fraction. Both can be completed in app.
That is true but it's an antiquated system that requires updating. But I get ya.
My phone is password and fingerprint protected and I change the password regularly. No one would be attempting that. My Family members would never attempt something so brazen and my friends wouldn't gain access. But again I can understand the point. It's pretty out there. You could use the same argument for a card. If someone gets access to your card it has all the details available to you and doesn't require password or fingerprint
In dome ways yes but that's the system we live
And a few non-pixel devices, though it's incredibly short list. Expansion was to start last fall, afaik.
I'd love to see this come to fruition. I've wanted Graphene since I first heard about it but refuse to pay the Google tax for admission and live with all the restrictions a Google device comes with
Google tax is a definite pain in the ass, but with graphene those restrictions no longer apply
By "Google tax" I mean having to buy one of their devices and the "restrictions" I'm referring to are the lack of headphone jack and micro SD card slot. They may mean nothing to you or others but they're both bare minimum requirements for myself and others. For as long as they aren't available on Pixel devices, I will never consider a Pixel.
I also hate the ass-backwards hole punch camera but that seems to be even more of a losing battle than the other common sense features I mentioned.
I've always found it both weird and ironic that GrapheneOS is only available for Pixel phones when the whole principle of the project is basically "we don't trust Google".
The pixel device is (as far as I’m aware) the only mainstream device that allows you to re-lock the boot loader.
Otherwise, once a phone is cracked, it remains cracked. I’m not entirely sure what that buys, but that’s why they do it
Most brands allow relocking bootloader. But after that you with be only able to use stock rom. Pixel lets you lock the bootloader with a different signature, so in this example you are basically able to lock it to only boot grapheneos and nothing else.
They also have an accessible secure element that graphene uses a lot. I'd recommend listening to the podcast interviews with graphene staff
Security. You're caught with your pants down if you have any personal data on a phone with an unlocked bootloader. All data is effectively plaintext, all security is nullified with trivial difficulty. This is the actual worst-case scenario for journalists, whistleblowers, or anyone who is or may become under surveillance for any reason.
That's wrong, data is still usually encrypted.
A locked bootloader 'just' prevents tampering with the OS. You're only pwned when using the phone after it has been manipulated.
Yeah but if you have the phone with an unlocked bootloader and anyone gains access to it (physical or otherwise)...
They still wouldn't be able to do very much. All an unlocked bootloader does is let you flash things via fastboot.
Even with a locked bootloader, you could still get into recovery and cause mischief with physical access. You wouldn't be able to access the storage partition without decrypting it, but you could still maybe flash stuff to the system partition to infect it for the next time the phone is booted up.
Remote access to the phone won't be able to do much of anything with an unlocked bootloader. The far bigger hazard is app signature spoofing (eg Magisk and MicroG), which if successfully exploited can cause all sorts of havok - you can have apps pretending to be other apps that have root access.
Even then, though, I think it's a fair trade of risk. The chances of any of this happening are very, very low, albeit the consequence is extreme. I personally prefer that to the absolutely certain risk that Google is spying on my phone, even if the consequences of that spying are relatively low.
This isn't true at all. Daniel Micay has stated multiple times the goal isn't to degoogle, it's to provide a secure and private OS that's actually usable. They worked tirelessly to integrate GMS compatibility layer and give users the choice to install sandboxed Google play for app compatability.
GrapheneOS has said countless times that by using Linux and other open source softwares that Google contributes massive amounts of code, you ARE inherently trusting them to not be malicious https://nitter.1d4.us/GrapheneOS/status/1672998518573740033#m
Google play does what it says and they are very open about what data they collect, which is obviously a lot. GrapheneOS stops much of this collection through sandboxing, where you can deny any permissions you desire.
G provides a phone that is incredibly friendly to developers (as friendly as it can get without free hookers and blow), in all aspects, which makes sense considering they want devs to adopt android as their platform for apps and stuff. This also goes into things like security vulnerabilies/research, and also alternative android-based systems. It's humorous but not at all ironic. Be friendly to devs, and make money hand over fist because of it.
It's logical for both, just for very different motives.
Nothing. What makes you think something happened to it?
It's still very much alive! Still getting regular updates on my S10 and even security updates for my OnePlus 3t.
I'm using LineageOS 20 right now, waiting on 21. I've been getting weekly updates since I installed it, so things seem fine for them.
Also on Lineage and loving it
Aren't they differing systems? Graphene was mostly pixel / Google devices. Whereas lineageos was a hunch of different devices. Lineageos was an evolution from cryomod
LineageOS is still in development. While there's no official Android 14 (LineageOS 21) yet, there are development builds available, and LOS 20 is still receiving regular official weekly updates.
No lol GrapheneOS is a different project run by developer divas. It's super secure, but only if you use a Google phone, which totally makes it safe. The television ad told me so.
LineageOS is the main pure AOSP ROM, over all the others. It's still chugging along quite fine, albeit its customisation options have always been fairly limited compared to other custom ROMs.
If you're using LineageOS4MicroG and complaining about updates, well, you wouldn't be the first. This fork follows the main tree but updates veeeeeery slowly, such that there are always people asking if it's dead. So far, after every one of the countless times that's happened, it's still been going - so it probably still is.
I personally run DivestOS and feel happy. No developer drama, and I'm not locked in to Google hardware. Ultimately though, all Android phone hardware manufacturers play the same games. It sickens me that so many of them require you to ask their permission to unlock the bootloader on the device you own.
I tried running dos but the location services being removed made life rather difficult so I had to go back to a different room. How do you get taxi apps to work without location services?
I don't use them too much, but manage to get Uber working with just addresses.
You can also set up location services with MicroG and modules, but setting that up is like stacking a house of cards.
Edit: You could also just install GApps, of varying densities. This is literally installing Google Play Services and its various features, as would normally be found. That kind of undermines the whole privacy aspect of the ROM, but it does get things working very easily, and you can at least limit the amount of crap you install with the various packages (nano, pico, full, etc).
Oh weird. I played around with micro g, but I couldn't get location services to work I just thought it had been totally stripped out. I'll give it another go
Location with MicroG is done by additional modules. However, some apps explicitly look for Google Maps' back end, so there's another module that installs an old version of that.