I haven’t run graphene, so I can’t speak for it. But on any other android variant, microG is a system-app, so that it can spoof Google’s services properly. That means patching the system.

Functional apps is the important bit, use of microG allows apps to provide push messaging etc without knowing Google services aren’t installed. There’s still some communication with Google as a result, but it’s fully sanitized.

I invite you to try installing common apps like Strava or Pokemon go without any Google services at all.

There’s also CalyxOS if you don’t want to run anything Google on your phone at all, but still have functional apps and such.

I’m on CalyxOS, it works great. Locked bootloader, ability to block connection of devices when screen is locked (defeating cellebrite’s method of choice), work profiles and firewalls etc.

If you drive a Toyota and the infotainment system has a “DCM” icon in the corner, your driving habits and location are being recorded to their servers.

E: this is happening via their own cellular modem built into the vehicle, with its own separate SIM or eSIM. Getting at the module seems to require access behind the dash, almost purposely making it difficult. Pulling the fuse will kill the front passenger-side speaker, though there are YouTube vids on how to reactivate the speaker while keeping the DCM module dead.

Sorry, “google blobs”? A lot of work went into MicroG, and I think it’s a shame that you’d minimize so much good work to reimplement the lynchpin of Google’s control on your devices.

At this point I’ll presume you’re just misinformed, as no proprietary google code operates within microG unless you decide to run with device attestation, and there it’s running as a sandboxed service. At any other time, you are able to run open source code which spoofs your device details to Google, and spoofs google to all these other closed source apps in a reliable and readable, much smaller codebase.

Honestly, the irony of running blobs, when one is completely closed source vs the other which is fully open. Hahaha.

All your points are true, yet still depend on Google in sandboxed form. That negates everything else for me, who wants a reasonably secure device that works out of the box and also respects my privacy.

If a nation-state wants into my phone, it’s delusional to believe even graphene can hold them off, you need real opsec for that, and unfortunately all I’ve seen thus far from graphene guys is cosplaying that the NSA wants your porn selfies.

Graphene and micro g? Cool. Sandboxed Google? Nope.

Agreed, it shouldn’t be their problem. But, I am using applications just fine that are sensitive to root, even device attestation, but I don’t recommend attestation just out of principle.

Even pokemon go seem to run ok with just micro g and aurora.

There’s also CalyxOS, low drama and very reliable. Https://www.calyxos.org

I’ll mention that a pixel with CalyxOS works great as well, no google code code other than AOSP which helps battery life a lot.

Some things like voice controlled companion or android auto are being implemented, but I never really gave a fuck about that stuff, being on bicycle or motorcycle only.

I don’t care how nice the sports car is, if it’s not going where I want it to, I’m not getting in.

Same, I’ve been team calyx for several years now, the dev rocks and I’m very happy to donate to them for keeping my pixel 3 running.

They sort of tried at my last job… There’s portable, non admin installs of Firefox available. The tricky part was ssl inspection certificates, but even that is easier than it used to be.

Same here, even my newly issued work PC always gets the Firefox treatment. Annoyingly, some sites that I need for work (almost, but not quite, zero) just do not work with Firefox, but do with chrome.

I need the ROMs to play with hardware in ways manufacturers and Google don’t intend. I don’t ask the manufacturer for permission, nor do I need to as source code and bootloaders are available.

I’m not willing to be a data point for profit, I don’t give a fuck whether it’s the shithead ccp or fuckbox google, my data stays on my phone unless I decide otherwise.

Can’t do that? Again, proud of your weakest element. How strange. Enjoy your inferior phone.

Get replacement parts, get access to bootloaders, get control of your data. You can’t? Lower quality, and you admit it proudly.

I think I’ve seen you around here before, shilling these lower quality, closed source devices from China.

Some of us wouldn’t proudly admit to doing nothing with their time, but here we are.

I’ve got important stuff on my personal machine, and it’s the principal of the thing, besides. Good luck to you, I suppose.

Fascinating. I work with FPGAs and previously with openCV on a Pi-based platform. The DMA hacks are a technical tour de force.

Yup, so you don’t care. Lmao you literally gave away the key to your house for an uninteresting video game. Pitiful.

Airvpn all the way.

Seriously, y’all should try organic maps, particularly if you like to hike in places without reception.