this post was submitted on 08 Dec 2023
23 points (89.7% liked)

Privacy

31872 readers
555 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Related communities

Chat rooms

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago
MODERATORS
 

I'm currently using GrapheneOS and I quite like it, but I would like to switch to something else. Will I lose much privacy if I switch to e/OS? Can I lock bootloader after flashing it like on GrapheneOS? I'm using Pixel 7 btw

all 15 comments
sorted by: hot top controversial new old
[–] Atemu@lemmy.ml 11 points 11 months ago (2 children)

Were you using the Google espionage services on GOS? If so, you'd likely gain a little privacy because of µG.

Some devices can lock the bootloader but that's not a generally supported feature on /e/OS.

[–] driveway@lemmy.zip 1 points 10 months ago (1 children)

Ah yes, gaining privacy by running microG as root which already has Google code in it instead of running GSF in a sandbox as user.

[–] Atemu@lemmy.ml 1 points 10 months ago
  • µG is not running as root
  • It does not "already have google code in it". That's an optional, tightly scoped feature with one specific blob that is required to implement the SafetyNet feature in any implementation
  • I see no reason why you couldn't run µG inside a sandbox too; the differentiating factor for security is the sandbox, not the GMS implementation. Also has nothing to do with privacy as, contrary to the original GMS, µG doesn't spy on you to begin with.
[–] random65837@lemmy.world -2 points 11 months ago (1 children)

Prize for being overly dramatic!

[–] T0RB1T@lemmy.ca 1 points 11 months ago

Seems like the exactly appropriate amount of drama to me!

[–] bbbhltz@beehaw.org 2 points 11 months ago

Not sure if you can relock the bootloader

Their site doesn't include that info

https://doc.e.foundation/devices/panther

/e/ is a "degoogled" experience, but as noted on their site and by others here:

Google Services are replaced by microG and alternative services (see below for more details)

For a regular uninformed user like myself (I just use the stock ROM on my phone because I am stuck with it) I read that as:

We made this experience as frictionless as possible at at a cost.

The friction here would be banking and/or tap-to-pay apps that I think cause some issues for some people (please correct me if I am wrong).

So, you would lose something that is offered by GrapheneOS and gain a different interface and access to apps that have a hard requirement for GSF.

[–] sir_reginald@lemmy.world 1 points 11 months ago

it depends.

you'll definitely be loosing security, which can turn into loosing privacy if you get affected by malware.

you'll also be loosing privacy if installing proprietary apps, since GrapheneOS has features like storage scopes and a better permission system that help minimizing privacy issues.

I think that locking your bootloader in a Pixel is possible regardless of the ROM you install.

Anyway, I think that there's no real benefit of installing any other custom ROM in a Pixel other than GrapheneOS. You'll be just loosing out in security and potentially privacy for no real reason.

[–] possiblylinux127@lemmy.zip 1 points 11 months ago
[–] jacktherippah@lemmy.world 1 points 11 months ago* (last edited 11 months ago) (1 children)

I recommend sticking to GOS. If you'd like to use something else, I'd recommend DivestOS. CalyxOS, LineageOS, /e/OS and iodéOS are all significant downgrades in usability, privacy and security and therefore not worth using on a Pixel.

[–] version_unsorted@lemmy.ml 2 points 11 months ago

Can you speak to how those are significant downgrades?

[–] random65837@lemmy.world 0 points 11 months ago

It literally makes less than zero sense to go from Graphene to e, Graphene is the most hardened privacy tweaked OS available, e would be a huge step backwards on many fronts, what's your reason for wanting to switch? No, you can't lock your bootloader with e, verified boot won't be there, you'll lose the hardened kernel , the improved sandboxing, the memory protection. It's a fail from every angle.