Out of curiosity, why did you decide on DoT instead of DoH (DNS over HTTPS)?

Not at all. Sandboxed google play is...sandboxed. Micro G has privelged access to your phone. That is a massive canyon in the difference of access you are giving an app.

Its the primary privacy reason why standard Google Play is such a privacy nightmare.

The only difference with Micro G is your shifting trust from Google to Micro G. Which is fine if that's what your threat model allows but it doesn't erase the issue.

I'll answer what I know.

LineageOS doesn't have anything like sandboxed Google Play. That is a flagship feature of GOS.

It is highly unlikely there is a backdoor in the Pixel. It's just not worth the risk for Google. Not only are the phones highly scrutinized by experts but Google has a million other legal ways to get info off your phone for 99% of users who use the stock OS.

There really isn't much comparison.

Graphene only supports Pixels because it is the best phone for hardware security. If you choose to use a different phone you have already accepted a less secure device.

Sandboxed Google Play is going to offer the most compatibility as it allows you to access the main app store in the Android eco system without giving up privileged access to your phone. Devices that use Micro G or regular play store can't make that claim. Which is a massive privacy issue.

Since Graphene OS works with other launchers there really is not a difference in customizability.

I'd love to be able to say there is a good competitor for GOS but none of the other custom ROMs actually focus on Privacy/Security and most are dishonest about that fact. Divest OS was one of the few other ROMs that was honest about what it was so it was sad when the dev moved on.

I'd also note that threat model matters. Not everyone needs top notch security or privacy. There are good reasons to not use GOS, but better privacy/security isn't one. The obvious one is opportunity, whether it's regional or financial, Pixels can be a pain to get.

I wouldn't trust it. It's using a ton of marketing jargon such as "military grade encryption" to make you think its doing more then it is.

This is not providing anything that more proven services already provide.

Thanks for the explanation

Its a very popular way to access pirated material via debrid services.

Its not really anything special outside of that use case, which really doesn't have anything to do with privacy.

What part of it isn't FOSS? Isn't the source available on github?

I would be much more concerned with the sources users attach to it, such as real debrid, then I am with Stremio. Not that I would connect any sort of PII to either.

Sorry if I am misunderstanding what you need.

The most private way to buy Monero would be using https://haveno.exchange/ (no KYC, transactions over Tor)

In terms of wallets I think Feather or Cake Wallet is the way to go.

Its a bit odd to see an employee of a company that has always had a terrible privacy policy now be suddenly alarmed.

It was for me, I got a notice of a refund just a few hours after the account closer email.

Again I just discovered this and don't want to come off like it's a for sure thing.

In terms of payments methods, patreon seems to accept virtual cards, which makes it easy to avoid using the same payment method or tying any part of your identity to the transaction.

I'm a bit surprised that this request is creating so much friction. This to me, is just a run of the mill "help me find a free download of this software" request that shows up all the time here.

I'm not comfortable trying to build this myself. I am happy to just use the inactive Clementine media player this is forked off of if people are really so offended by my request.

I totally understand why the dev wants to be paid, I'm just not going to be the one to do it.