Recent searches
Search options
@libroraptor @Cal @pezmico reminder that lineageOS does not provide suitable security for your phone (depending on your threat model of course), it is merely a way to keep a phone running, without any regard to security patches
@brahms @libroraptor @Cal @pezmico This generally isn't a problem unless you run lots of junkware on it or need strong protection against data extraction after physical seizure. But the LineageOS folks really hardly understand the software stack they're working on, and it shows. Real solution is getting rid of Android entirely not patching it haphazardly. And making a compat layer to run Android apps in isolation without Android controlling your device. @postmarketOS is the most promising path in this direction right now.
@dalias I have heard a bit about postmarket os but never really invested much research, thanks for the hint.
what I can read from a first glance doesnt seem promising though. default linux (desktop) distros are not even close to the android (or ios) security model. Atomic is a step forward, but still imho a bit away for widespread use.
i will have to dig deeper what they actually implement, hopefully I will remember this thread ^^
@brahms The whole point of the Android model is running malicious apps. You will not be running malicious native apps with user privilege. That's where you run a few genuine trusted apps packaged by your distro (pmOS) like phone, camera, gallery, Firefox, etc. Everything else, whether Android apps or some other kind of 3p app, you run in an extremely locked down namespace much more secure than the Android model.