51

I really like the convenience of using fingerprint unlock for lockscreen and password manager. I do however don't like the thought of being forced to unlock both physically.

I use Android with GrapheneOS.

I have set up lockdown, but it takes some time to hold the power button and then click lockdown.

Any creative solutions?

all 36 comments
sorted by: hot top controversial new old
[-] unclad8226@lemmy.ml 16 points 2 weeks ago

Since you're on grapheneos you could always set up the 2 factor unlock when using biometrics. You would then unlock your phone using fingerprint and a pin. This way even if you're forced to unlock the device they'd still need your secondary pin to unlock. The pin can be much shorter than your main password so its still fast to unlock.

[-] LoveSausage@discuss.tchncs.de 4 points 2 weeks ago

Wow ty , had mine off for unlocking screen since i got this phone , wasnt visible until i turned on unlock with fingerprint :)

wow I've been waiting for this feature on smartphones.... feels like been waiting for centuries!

thank you for bringing this up!

[-] CubitOom@infosec.pub 15 points 2 weeks ago* (last edited 2 weeks ago)

As others have said, the most secure option is to not use biometrics.

However an app like private lock might be a decent compromise

Edit: I just noticed that private lock seems to not have a new release in a few years and should probably be considered orphaned. So I might recommend ParanoidsPal-PrivacyLock instead

[-] MoonlightFox@lemmy.world 6 points 2 weeks ago

Great app, just installed it. The default amount of movement is perfect. Now it's really easy to prevent being physically forced to unlock, and theft

[-] swelter_spark@reddthat.com 3 points 2 weeks ago

I use Paranoid's Pal, a similar app. It's great. In addition to locking in response to motion, I have it set to automatically lock the phone a few minutes after the screen turns off.

[-] smeg@feddit.uk 2 points 2 weeks ago

automatically lock the phone a few minutes after the screen turns off

Isn't the default behaviour of phones to lock as soon as the screen turns off?

[-] CubitOom@infosec.pub 2 points 2 weeks ago

Im not an android dev but I think the difference here is it's a secure lock. Which means that encryption is engaged and requires the decryption string to unlock which means that biometrics are not asked for.

[-] swelter_spark@reddthat.com 2 points 2 weeks ago

You can set your phone to do that, of course, but I prefer not to have to unlock mine when I've just used it.

[-] lightnsfw@reddthat.com 1 points 2 weeks ago* (last edited 2 weeks ago)

Mine doesn't.

[-] MoonlightFox@lemmy.world 2 points 2 weeks ago

This also seems nice. I'll probably test this one as well. I like the lock after x amount of time feature. The pictures have max 15 minutes, so that might be too little, but maybe it'll work

[-] smeg@feddit.uk 2 points 2 weeks ago

Requirements - Device admin permission for locking screen.

Does this mean it requires root access (which brings additional security concerns) or just that a non-restricted user needs to set it up?

[-] CubitOom@infosec.pub 2 points 2 weeks ago

It doesn't require root. Device admin is different.

I currently run this app on android 15 without root and it runs very well. However I just noticed that it seems to not have a new release in a few years and should probably be considered orphaned. So I might recommend ParanoidsPal-PrivacyLock instead.

[-] smeg@feddit.uk 2 points 2 weeks ago

Good to know, thanks!

[-] original_reader@lemm.ee 2 points 2 weeks ago

Isn't this basically the same as Android's theft detection lock?

[-] CubitOom@infosec.pub 1 points 2 weeks ago

I am running stock Android and have no idea what that is. But this forces your phone to use your none biometrics unlock after it senses acceleration.

[-] Filetternavn 13 points 2 weeks ago

Well, you could use the wrong finger. After 3 attempts, my GrapheneOS install brings up the password field, but you can go back to the lock screen and try 2 more times until it locks out of fingerprint unlock (so 5 times total). You could always hold the power button down while it's in your pocket or bag, pretending you are searching for the phone or something, and then lock it down as soon as you lift the screen up.

[-] MoonlightFox@lemmy.world 1 points 2 weeks ago

Thats kinda interesting. If I use an unusual finger, and there is a limited amount of tries. I still get somewhat the convenience of biometrics, but can still massively increase the odds of too many attempts.

[-] adespoton@lemmy.ca 3 points 2 weeks ago* (last edited 2 weeks ago)

That’s what I did when I had a fingerprint reader— I used a non-tip part of one of my fingers. So if “forced” I’d just work my way through my fingertips and it would lock out.

This had the benefit that if someone had already watched which finger I used in the past, the print still wouldn’t match.

[-] datavoid@lemmy.ml 12 points 2 weeks ago

Carry a lighter to remove your fingerprints if captured?

[-] hexdream@lemmy.world 4 points 2 weeks ago
[-] Coldmoon@sh.itjust.works 6 points 2 weeks ago

Damn they can unlock phones with toothprints??

[-] azalty@jlai.lu 2 points 2 weeks ago

I don’t get this thread… if you’re captured they can ask for anything

[-] dwindling7373@feddit.it 3 points 2 weeks ago

And in many circumstances you can choose/have a right not to answer.

[-] azalty@jlai.lu 2 points 2 weeks ago* (last edited 2 weeks ago)

I would imagine you also have the right not to act

Else... they can just force you to enter the code the same way as they can force you to put your finger on the screen... or force you to look at the screen

[-] Zorsith 12 points 2 weeks ago

Just... dont use biometrics for device unlock?? You can still use it for apps separate from device unlock

[-] MoonlightFox@lemmy.world 6 points 2 weeks ago

Of course I can do this, but that is a major inconvenience when I unlock my phone hundreds of times per day.

[-] Gutless2615@ttrpg.network 12 points 2 weeks ago

Disable biometrics.

[-] LoveSausage@discuss.tchncs.de 10 points 2 weeks ago* (last edited 2 weeks ago)

Its built in in GOS. And duress pin as well. Best middleground for security, you can still use fingerprint for apps.

[-] CubitOom@infosec.pub 3 points 2 weeks ago

In stock android 15 it looks like this.

[-] LoveSausage@discuss.tchncs.de 2 points 2 weeks ago

Seems it found its way there as well then. Think it was a GOS thing on 14

[-] Ascend910@lemmy.ml 7 points 2 weeks ago

Ether way the new American government will threaten you with your family's death until you gave them the password

[-] Nursery2787@lemmy.ml 5 points 2 weeks ago

Lots of great answers. For iOS lemmy people, you can just press up volume and power button at same time to disable biometrics

[-] Mac@mander.xyz 2 points 2 weeks ago* (last edited 2 weeks ago)

How long does lockdown take for you?
It takes me less than 2 seconds (i checked).

this post was submitted on 20 Mar 2025
51 points (100.0% liked)

Privacy Guides

18657 readers
40 users here now

In the digital age, protecting your personal information might seem like an impossible task. We’re here to help.

This is a community for sharing news about privacy, posting information about cool privacy tools and services, and getting advice about your privacy journey.


You can subscribe to this community from any Kbin or Lemmy instance:

Learn more...


Check out our website at privacyguides.org before asking your questions here. We've tried answering the common questions and recommendations there!

Want to get involved? The website is open-source on GitHub, and your help would be appreciated!


This community is the "official" Privacy Guides community on Lemmy, which can be verified here. Other "Privacy Guides" communities on other Lemmy servers are not moderated by this team or associated with the website.


Moderation Rules:

  1. We prefer posting about open-source software whenever possible.
  2. This is not the place for self-promotion if you are not listed on privacyguides.org. If you want to be listed, make a suggestion on our forum first.
  3. No soliciting engagement: Don't ask for upvotes, follows, etc.
  4. Surveys, Fundraising, and Petitions must be pre-approved by the mod team.
  5. Be civil, no violence, hate speech. Assume people here are posting in good faith.
  6. Don't repost topics which have already been covered here.
  7. News posts must be related to privacy and security, and your post title must match the article headline exactly. Do not editorialize titles, you can post your opinions in the post body or a comment.
  8. Memes/images/video posts that could be summarized as text explanations should not be posted. Infographics and conference talks from reputable sources are acceptable.
  9. No help vampires: This is not a tech support subreddit, don't abuse our community's willingness to help. Questions related to privacy, security or privacy/security related software and their configurations are acceptable.
  10. No misinformation: Extraordinary claims must be matched with evidence.
  11. Do not post about VPNs or cryptocurrencies which are not listed on privacyguides.org. See Rule 2 for info on adding new recommendations to the website.
  12. General guides or software lists are not permitted. Original sources and research about specific topics are allowed as long as they are high quality and factual. We are not providing a platform for poorly-vetted, out-of-date or conflicting recommendations.

Additional Resources:

founded 2 years ago
MODERATORS