479
you are viewing a single comment's thread
view the rest of the comments

The problem is that (as far as i know) only pixels fulfill their security requirements, for example that the bootloader is not only unlockable but also lockable. But I also would like to have more devices supporting it

[-] unexposedhazard@discuss.tchncs.de 34 points 2 months ago

Fairphones should be supported imo. CalyxOS relocks the bootloader and they supported the FP5 right after launch.

[-] FutileRecipe@lemmy.world 37 points 2 months ago

CalyxOS relocks the bootloader and they supported the FP5 right after launch.

CalyxOS is not a hardened OS, and GrapheneOS requires more than than just relocking the bootloader.

Fairphone's devices do not meet basic security requirements for hardware, firmware and the software device support including drivers. Please look at the hardware requirements at https://grapheneos.org/faq#future-devices and check for yourself how many of those are provided by the Fairphone. Even the Fairphone 5 has a CPU core from 2021 without even PAC and BTI.

Ref: https://discuss.grapheneos.org/d/7208-8y-security-updates-on-fairphone-5-will-the-devs-consider-porting-grapheneos

[-] unexposedhazard@discuss.tchncs.de 8 points 2 months ago

Thanks for the info!

[-] huginn@feddit.it 31 points 2 months ago

Fairphone should sell phones outside of Europe

Unfortunately neither of us get what we want

[-] unexposedhazard@discuss.tchncs.de 6 points 2 months ago

Oh they dont? 0.o I didnt know that, weird

[-] wreckedcarzz@lemmy.world 1 points 2 months ago

Mmmhm. I've been eyeing them since their first phone. I'm sure they will offer even the most basic "international shipping with no warranty or support" any day now...

my skeleton, 64 years from now, in front of a computer with the website loaded, waiting for the global debut

[-] unexposedhazard@discuss.tchncs.de 3 points 2 months ago* (last edited 2 months ago)

Idk where you are, but looking at their shipping info they list some authorized resellers that ship to the US. As you said, they will have varying levels of warranty etc but yiu also have to check hardware stuff like mobile network compatibility etc

[-] wreckedcarzz@lemmy.world 1 points 2 months ago* (last edited 2 months ago)

Unfortunately, it's only murena that I can see (https://murena.com/america/products/smartphones/?wcpbc-manual-country=US), which only has the FP4. It's quite frustrating, I want to support the project and FP is just uninterested in doing so for NA. Even when the 4 came out, it was going to be a downgrade from my Pixel 5, but like 3y (?) later with no sign of the FP5 is oof.

(I forgot too that it's only compatible with 1 of the 3 nationwide networks here, which I don't currently use... but baby steps, just having availability here would be nice)

[-] unexposedhazard@discuss.tchncs.de 1 points 2 months ago

I can understand your frustration but there are probably reasons. Also the FP5 only came out exactly 1 year ago.

[-] wreckedcarzz@lemmy.world 1 points 2 months ago

Yeah, the 5 is much newer than the 4, but the 5 is unavailable here. I assume this is all because they simply lack the staff/resources (and customer base) for a NA operation, it's just :(

[-] sugar_in_your_tea@sh.itjust.works 4 points 2 months ago

You can get the previous model (FairPhone 4) in the US through Murena.

[-] huginn@feddit.it 8 points 2 months ago

Paying full price for a phone that was weak when it released 3 years ago that is also missing most US cell bands and is locked to T-Mobile.

Oh and also the parent company doesn't ship anything to the US, so parts are aftermarket only.

That's not available in the US: that's you can hack together a workaround.

[-] sugar_in_your_tea@sh.itjust.works 4 points 2 months ago

Yup, I looked into them because so many people talked them up, but due to all of those issues you mentioned, I crossed it off my list. I ended up going with Pixel 8 due to long software support, GrapheneOS compatibility, and acceptable repairability, though I would have preferred a PinePhone Pro (if it had better speakers and software support) or FairPhone (if it had better support in the US).

I guess we'll see what happens when my phone goes out of support (so, 6+ years?) or I break it.

[-] jet@hackertalks.com 5 points 2 months ago

gos is open source. If the fairphone people wanted to maintain a fork of GOS for their phones, they could.

[-] sugar_in_your_tea@sh.itjust.works 2 points 2 months ago

And they could discuss w/ GrapheneOS devs about upstreaming changes and collaborating on longer-term support. I highly doubt GOS project has the resources and desire to support another phone line.

[-] jet@hackertalks.com 4 points 2 months ago

https://grapheneos.org/faq

Many other devices are supported by GrapheneOS at a source level, and it can be built for them without modifications to the existing GrapheneOS source tree. Device support repositories for the Android Open Source Project can simply be dropped into the source tree, with at most minor modifications within them to support GrapheneOS. In most cases, substantial work beyond that will be needed to bring the support up to the same standards. For most devices, the hardware and firmware will prevent providing a reasonably secure device, regardless of the work put into device support.

if fair phone wanted to, they could, but gos will not volunteer for the work.

[-] sugar_in_your_tea@sh.itjust.works 2 points 2 months ago

And that's completely fair IMO. If FairPhone did do the work and supported US customers as first-class on their platform, I'd probably buy my next phone from them.

[-] Noxious@fedia.io 3 points 2 months ago

Fairphones aren't even anywhere close to meeting the security requirements of GrapheneOS. Daniel Micay explained this many times, most notably in this Reddit thread (before they left Reddit and switched to their own, self-hosted forum) https://redlib.nohost.network/r/GrapheneOS/comments/10b5x4n/has_anyone_managed_to_install_grapheneos_on_a/j67pbny

[-] Persen@lemmy.world -1 points 2 months ago

I think some op phones also meet the requirements.

[-] gwilikers@lemmy.ml 1 points 2 months ago

What does a lockable bootloader mean? Is it just encrypted so the kernel never gets loaded without the user?

this post was submitted on 30 Aug 2024
479 points (98.4% liked)

Technology

59670 readers
1939 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 1 year ago
MODERATORS