And hopefully does something about. Disciplinary for the poor OPSEC and/or better resources to avoid it and/or better laws to stop this unfettered data collection and/or better training to avoid it in the future. Here’s hoping. Holds breath

old system of writing them down on paper

That’s harder to steal/hack by someone across the globe.

all media organisations use X

NPR quits Twitter after being falsely labeled as ‘state-affiliated media’

Your data has monetary value to google. Giving them access, without getting any money from them (or even knowing what ways it will be used) is not something you must do.

To be fair, while you may not be getting money in its direct form (cash, bank deposit, etc) from Google, they are providing you a service which costs them money for free. So they are providing something of monetary value.

Only the individual can determine if their data is worth that free (to the individual, not free to Google) service. I’m assuming that most people in a privacy community would be against that, though.

CalyxOS relocks the bootloader and they supported the FP5 right after launch.

CalyxOS is not a hardened OS, and GrapheneOS requires more than than just relocking the bootloader.

Fairphone’s devices do not meet basic security requirements for hardware, firmware and the software device support including drivers. Please look at the hardware requirements at https://grapheneos.org/faq#future-devices and check for yourself how many of those are provided by the Fairphone. Even the Fairphone 5 has a CPU core from 2021 without even PAC and BTI.

Ref: https://discuss.grapheneos.org/d/7208-8y-security-updates-on-fairphone-5-will-the-devs-consider-porting-grapheneos

You can still be part of a project without being lead, to be part of the “we.” Did he contribute and/or is he part of GrapheneOS, yes? So he’s part of the “we.”

Or does only the lead developer get the “we?” Wouldn’t that make it more of an “I” instead?

We’ve heard this one in 2016.

He was a convicted felon who had the Supreme Court in his pocket who granted him immunity as well as an attempted insurrection in his honor and he saluted hostile generals?

I don’t remember if he promised to be a dictator on day one or had already praised dictators back then, so I’ll grant you that one out of…everything else he’s done since then which was not covered in 2016.

It’s a game of chicken now.

And if you’re not scared of a convicted felon who promises to be a dictator on day one and has the Supreme Court in his pocket who granted him immunity as well as a cult like following who stormed the Capitol to attempt an insurrection yet who also praises dictators and salutes their generals and has nothing to lose getting ahold of the Presidency then I don’t know what to tell ya. But sure, let’s play chicken with the saner and lesser of the two evils and help MAGA win.

Why do people phish, dumpster dive, or social engineer? So they can snoop and grab anything of value.

I’d love to have working NFC pay

NFC works. NFC payment is dependent on the app as some block those that fail Play Integrity / Google certification. Google Wallet / Pay does not work for payment because Google blocks it.

Do you have Google services installed? I use MicroG…

Yes, I have Google Plays Services, Google Services Framework, and the Google Play Store installed, which are all sandboxed. MicroG isn’t supported by GrapheneOS.

https://grapheneos.org/usage#sandboxed-google-play

Nope, nor do I intend to. GrapheneOS frowns upon rooting and modifying the system as it typically widens your attack surface. I’m not using a secure OS then going around to purposefully make it less secure.

but I’m concerned RCS is going to become a deal break for me

For what it’s worth, I have RCS working with GrapheneOS. I don’t think I did anything special, but it did take awhile. I did see stuff on their forum about others having a bigger issue with it, though.

And of course, I prefer Signal, where possible.

Even just being rooted on the stock Pixel rom is a fight.

That, I can see being more of an issue than an unmodified, trusted 3rd party OS. If I remember right, rooting makes the device fail Verified Boot:

It establishes a full chain of trust, starting from a hardware-protected root of trust to the bootloader, to the boot partition and other verified partitions including system, vendor, and optionally oem partitions.

https://source.android.com/docs/security/features/verifiedboot

I’ve got old apps that won’t work any more.

I’m actually for this. The bar to entry for the Play Store is too low with too many low quality and unmaintained apps. I’m all for booting insecure and super old apps. They cheapen the ecosystem.

I’m holding out for the 10. The 8 added mirrored display (so you can mirror your screen on a monitor… I’d rather this come with the Pixel Tablet 2 and the Pixel Tablet skipped it form some reason) and MTE, which GrapheneOS says is the most significant addition to security since they’ve started the OS. If those come with the 10, not to mention the 10 is supposed to have Google’s inhouse chip and not Samsung’s…yep, I’m upgrading.

Do you pass play integrity?

GrapheneOS, and other non-OEM OSes, do not. It’s kinda the whole point of the article/OP I linked.

I’ll have to make do with a secondhand 7 pro

Ouch, that hits me right in the 7Pro feels lol. Make do, indeed, lolol.

I could see things as simple as…

Last I heard, the McDonalds’ app doesn’t work, of all things.

https://discuss.grapheneos.org/d/9123-the-mcdonalds-app-doesnt-work/

I don’t even use proprietary apps so most if the “security features” aren’t even useful to me

So only proprietary apps may have malware? Malware aside, only proprietary apps may have bugs that can be exploited? And all nonproprietary apps are perfectly safe? But seriously, there is so much wrong with that thinking.

Apps aside, GrapheneOS protects the actual OS and is kept up to date, much quicker than pretty much any other variant.

It is overly complex for no benefit to me.

What’s overly complex? Contact and storage scope I mentioned? You don’t have to use it. Separate profiles for work I mentioned? Again, don’t have to use it. GrapheneOS is one of the closest OSes to AOSP that I’ve seen. You could even just install the Play Store (which is in a sandbox by default, with no root, and you don’t have to do anything to specify that), only use the owner profile, and you get all of the security benefits with no extra work. You introducing F-Droid and using all nonproprietary apps is more complex than GrapheneOS out of the box.