My setup on GrapheneOS with all the exploit protections on except some off for apps with compatibility issues. Thoughts?
Only one: ditch that crap named Proton.
Bring the downvotes bots 🤣
It would have been helpful to explain why, whether that's privacy, ethical, or political concerns.
But maybe the use of "🤣" says it all
Ceo of Proton is a huge Republican fan, that might deter some people. Are you not interested in this?
I would be in the loop, but not necessarily OP. I am calling out OC to defend their suggestion with more than a simple accusation.
As a looped in person. Do you think I should stick to Proton for less hassle (migration) or is moving to Tuta for example the right move currently?
My take is that Proton CEO Andy Yen's pro-Trump comments were born out of naĂŻvety, not the same mindset that plagues tech CEOs in the US. Combining that with Proton's benign actions since then, I think it's a good time to diversify, become familiar with alternatives like Tuta as you say, and make a backup plan should they enshittify, but don't rush to jump ship now.
Uhhh why?
Goldfish memory? It was one of the biggest things on lemmy
https://lemmy.world/post/24301835
Proton ceo not politically neutral as he advertised
Are those green mini icons an indication of a PWA shortcut?
I use the app Hermit to run isolated websites, usually as PWAs. It's replaced quite a few apps, but I've noticed that many companies are intentionally making their web experience shit so they force you to use invasive apps.
Anyway, it can create home icons for those sites, and they run separately (i.e. in your task switcher), so it works better than browser shortcuts.
It does, that's the icon for Cromite.
What device are you using
Google Pixel 8 with GrapheneOS
KeePassDX, nice choice! I really wish I could have DX or XC on both phone and desktop. Love both but would prefer to donate to one. Wallet is unhappy but I really try to donate to all FOSS apps I use...
What’s the chrome app?
Is nano GPT 100% offline? Or self hosted?
I see two: Cromite (Green) and Vanadium (Gray, Chromium variant by GrapheneOS)
In NanoGPT You also got TEE (Trusted Execution Environment) models which are more private/secure from my understanding. From GPT-OSS 120B TEE:
"TEE‑based AI models run their inference or training inside a Trusted Execution Environment (TEE), a hardware‑secured enclave that isolates code and data from the rest of the system. This provides data confidentiality, protects the model’s IP, enables cryptographic attestation of the exact model version, and satisfies regulatory privacy requirements, making AI services trustworthy and suitable for secure multi‑party or decentralized applications." One downside is that they are usually pretty expensive to run
Some apps that you use are not safe. Aurora store doesnt send too much data to google but it doesnt verify app signatures which can lead to installing malicious apps, use normal play store instead which verifies app signatures (its also suggested to use by grapheneos devs). Whatsapp, collects data about you. Cromite, uses adblock plus which is really bad. Also here is another reason why cromite is bad:
“Cromite has very problematic changes included which substantially reduce privacy and security. It reduces security more than it improves it. For example, it includes the highly problematic Eyeo filtering engine from the company behind Acceptable Ads, Adblock Plus, etc. which took over the forked uBlock extension misleading people with the name pretending to be the uBlock Origin project among other extensions. Eyeo’s C++ code is low quality and has memory corruption issues… Cromite including the incredibly sketchy Eyeo content filtering engine and stuff like additional codecs goes against what we’re trying to achieve. We also don’t think the randomization-based anti-fingerprinting approach works, among other issues”.
"Casually reminds you that Ironfox exists & it's a lot more "private" than most chromium-based browsers, & has ublock origin. (slow by default tho)
also while aurora store doesn't verifies signatures, is has Exodus integrated which dynamically analyses & warns about spyware, tracks and telemetry so you more caucious about the littered "free" apps...
Yes, ironfox is good too (i forgot to mention it) but on grapheneos you will want to end up using their browser
Avoid Gecko-based browsers like Firefox as they're currently much more vulnerable to exploitation and inherently add a huge amount of attack surface. Gecko doesn't have a WebView implementation (GeckoView is not a WebView implementation), so it has to be used alongside the Chromium-based WebView rather than instead of Chromium, which means having the remote attack surface of two separate browser engines instead of only one. Firefox / Gecko also bypass or cripple a fair bit of the upstream and GrapheneOS hardening work for apps. Worst of all, Firefox does not have internal sandboxing on Android. This is despite the fact that Chromium semantic sandbox layer on Android is implemented via the OS isolatedProcess feature, which is a very easy to use boolean property for app service processes to provide strong isolation with only the ability to communicate with the app running them via the standard service API. Even in the desktop version, Firefox's sandbox is still substantially weaker (especially on Linux) and lacks full support for isolating sites from each other rather than only containing content as a whole. The sandbox has been gradually improving on the desktop but it isn't happening for their Android browser yet.
Also, having exodus integration in app downloader is good but not worth it for exchange of no signature verification, so it's better to just check it in browser instead or use their app to check trackers
Is this my phone? Lol
You might wanna run auditor lil bro
Completely out of topic but,
I just noticed that this post has more comments than upvoted
🤣
If anyone Is wondering, this setup was based mainly on PrivacyGuides
Kind reminder that Brave is a crypto browser and the devs are against LGBTQ+. Also, it's closed source.
Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.
In this community everyone is welcome to post links and discuss topics related to privacy.
much thanks to @gary_host_laptop for the logo design :)