In between been called out this weekend I’ve been playing with my #Fairphone4 which has #Calyxos and #MicroG . I’ve know about #Obtainium for a while but never thought I’d install it until now. Guess who loves it and I get new releases of apps before #Fdroid . I also ditched calyxos default launcher for #NiagraLauncher and I’m really loving the work flow. Even bought the full version and installed the apk with Obtanium. It maybe doesn’t look much but I like it. 😍
#Android

https://github.com/8bitPit/Niagara-Issues?tab=readme-ov-file

  • GrapheneOS@grapheneos.social
    1·
    1 month ago

    @[email protected] @[email protected]

    Fairphone 4 uses publicly available private keys for signing the OS and parts of the firmware so verified boot and attestation don’t work. CalyxOS acts as if it works since the verified boot screen appears. Similarly, the CalyxOS release notes consistently claim to have shipped all open source Android security patches despite not having them for non-Pixels and often being behind for Pixels. They also set an inaccurate Android security patch level in the OS like LineageOS does.

    • GrapheneOS@grapheneos.social
      1·
      1 month ago

      @[email protected] @[email protected]

      The network toggles they’ve incorporated from LineageOS and presented as being their Datura firewall app are leaky.

      The global VPN and tethering features they incorporated from LineageOS introduce new VPN leaks and even aside from the leaks reduce privacy compared to per-profile / per-device tunnels.

      The USB toggle taken from LineageOS is based on the standard AOSP feature available via device admin apps leaving most attack surface enabled with an added LineageOS weakness.

      • GrapheneOS@grapheneos.social
        1·
        1 month ago

        @[email protected] @[email protected]

        The panic toggle is based on the PanicKit app and integration which is unsafe and lacks reliable deletion across the board.

        Each month, LineageOS and CalyxOS set an inaccurate Android security patch level across devices claiming to have shipped all Android security patches when they haven’t. The CalyxOS release notes claim to have shipped all open source Android security patches when they haven’t. This results in users not realizing they aren’t receiving all ASB patches.