trude/web
1
0
Fork 0
mirror of https://github.com/TrudeEH/web.git synced 2025-12-06 00:13:36 +00:00
Code Issues Packages Projects Releases Wiki Activity

Finish private phone post

Browse Source
This commit is contained in:
TrudeEH
2024-06-18 01:30:34 +01:00
parent ea249f1b6d
commit 2bdcd786ac
1 changed files with 18 additions and 20 deletions
Download Patch File Download Diff File Expand all files Collapse all files

38
content/posts/private-phone.md
View File

@@ -1,10 +1,10 @@
---
---
# Post
draft: true
draft: false
searchHidden: false
showToc: true # Table of Contents
author: "TrudeEH"
title: "SmartPhone Security and Privacy Guide."
title: "Smartphone Security and Privacy Guide."
date: 2024-06-16T12:44:18+01:00
tags: ["android", "privacy", "security", "grapheneos"]
description: "Most people need a phone, but they all collect personal data and track you. How can we fix our phones, then?"
@@ -39,7 +39,7 @@ The iPhone is entirely proprietary, which gives Apple a lot more control over th
Apple can also remotely lock devices, wipe them, and the user can't replace the launcher and some default apps and services.
Overall, iPhone is better for privacy than Android, *by default*, but the user has much less control over their own device. Also, because iOS is proprietary, it's much harder to tell which data is being collected.
Overall, the iPhone is only slightly better for privacy than Android, *by default*, but the user has much less control over their own device. Also, because iOS is proprietary, it's much harder to tell which data is being collected.
### Feature Phones
@@ -53,7 +53,7 @@ The first step is to determine what your threat model is - how far you are willi
For example, are you being targeted specifically? Is the government interested in you? Or are you only trying to cut off Big Tech from your data?
Write down who your targets are, to help you decide what to defend against. The further you go, the more convenince you must sacrifice.
Write down who your targets are, to help you decide what to defend against. The further you go, the more convenience you must sacrifice.
## Some ideas of things to do and explore
@@ -64,7 +64,7 @@ Write down who your targets are, to help you decide what to defend against. The
- Remove unnecessary apps and delete their respective accounts.
- Use strong and unique passwords: These are hard to remember, so use a password manager like [KeePassDX](https://www.keepassdx.com/) or [Nextcloud Passwords](https://f-droid.org/packages/com.hegocre.nextcloudpasswords/). There are more apps like these, but be sure to check that they encrypt your passwords, and are open-source.
- Use open-source apps whenever possible. [Fdroid](https://f-droid.org/en/), an alternate app store for Android, only has open software listed.
- Move away from Google and Apple services, in favour of local solutions.
- Move away from Google and Apple services, in favor of local solutions.
- Switch away from Chrome. Both [Brave](https://brave.com/) and [Firefox](https://www.mozilla.org/firefox/new/) are good alternatives.
- Avoid personal information on social media.
- Use [Matrix](https://matrix.org/) or [Signal](https://signal.org) for private chats.
@@ -75,14 +75,12 @@ Write down who your targets are, to help you decide what to defend against. The
- Switch to a Pixel Phone (mainstream, easy to modify, kind of ironic since it's a Google device).
- Install [GrapheneOS](https://grapheneos.org/) (More security) or [CalyxOS](https://calyxos.org/) (Easier to use) on your Pixel.
- Stuck with any other phone? Try to install LineageOS on it. If supported, you will be better off with it, but avoid it if you can.
- Stuck with any other phone? Try to install [LineageOS](https://www.lineageos.org/) on it. If supported, you will be better off with it, but avoid it if you can.
- Avoid anything that requires Google services.
- Communicate only through Matrix or [XMPP](https://xmpp.org/).
- ...
There are many more things, some of them I can't help you with, since this is as far as I'm willing to explore myself.
It's impossible to be 100% safe, but following these steps will certainly help you *a lot* already.
There are many more things you can do, but I can't help you with some of them, since this is as far as I'm willing to explore myself. It's impossible to be 100% safe, but following these steps will certainly help you *a lot* already.
## Reality check
@@ -92,20 +90,20 @@ You might want to make sacrifices to have nice things, and that's okay. Start by
## Open-source apps that I recommend
- [InnerTune](https://f-droid.org/packages/com.zionhuang.music/) - Youtube Music replacement (also no more ADs and free premium features)
- [LibreTube](https://libretube.dev/) - YouTube alternative (also with premium features, SponsorBlock and no ADs)
- [InnerTune](https://f-droid.org/packages/com.zionhuang.music/) - YouTube Music replacement (also no more Ads and free premium features)
- [NewPipe](https://f-droid.org/packages/org.schabi.newpipe/) - YouTube alternative (also with premium features, SponsorBlock and no Ads)
- [Fossify Calendar](https://f-droid.org/es/packages/org.fossify.calendar/) - Open Calendar app
- [Pie Launcher](https://f-droid.org/pt/packages/de.markusfisch.android.pielauncher/) - Simple and efficient APP launcher
- [DAVx⁵](https://f-droid.org/packages/at.bitfire.davdroid/) - Sync calendars, TO-DOs and contacts with NextCloud
- [DAVx⁵](https://f-droid.org/packages/at.bitfire.davdroid/) - Sync calendars, To-dos and contacts with Nextcloud
- [Element](https://f-droid.org/pt/packages/im.vector.app/) - The most popular Matrix client
- [Fdroid](https://f-droid.org) - Open-Source-only App Store
- [K-9 Mail](https://f-droid.org/pt/packages/com.fsck.k9/) - Email client (supports Gmail)
- [Fossify SMS Messenger](https://f-droid.org/packages/org.fossify.messages/) - SMS Messenger
- NextCloud Suite - [Files](https://f-droid.org/packages/com.nextcloud.android.beta/); [News](https://f-droid.org/packages/de.luhmer.owncloudnewsreader/) [Passwords](https://f-droid.org/packages/com.hegocre.nextcloudpasswords/); [Notes](https://f-droid.org/packages/it.niedermann.owncloud.notes/) [Talk](https://f-droid.org/packages/com.nextcloud.talk2/) - Replace Google Services with your NC instance
- Nextcloud Suite - [Files](https://f-droid.org/packages/com.nextcloud.android.beta/); [News](https://f-droid.org/packages/de.luhmer.owncloudnewsreader/) [Passwords](https://f-droid.org/packages/com.hegocre.nextcloudpasswords/); [Notes](https://f-droid.org/packages/it.niedermann.owncloud.notes/) [Talk](https://f-droid.org/packages/com.nextcloud.talk2/) - Replace Google Services with your NC instance
## GrapheneOS
Earlier in the list I mentioned switching to GrapheneOS as an advanced step.
Earlier in the list, I mentioned switching to GrapheneOS as an advanced step.
Graphene is the AOSP (core Android) without Google services, and with only open software. It also has regular security patches and many [security features](https://grapheneos.org/features) are applied, making Android much safer. This is the best solution out there, but with no Google services, things like Android Auto, Google Maps, and many other apps like the Play Store itself would be unavailable.
@@ -113,7 +111,7 @@ This would not work for me - however - GrapheneOS has a very clever solution. Th
If you are not used to the concept of virtual machines and containers, picture a smaller phone inside your own. This small phone is isolated and limited, and so, even if it is compromised, you don't really lose anything of value.
For GrapheneOS, this means that you can still install the Play Store, and keep your private stuff separate. GrapeheneOS also has more advanced security features, supports Quick Share, Android Auto, and most modern Google features.
For GrapheneOS, this means that you can still install the Play Store, and keep your private stuff separate. GrapeheneOS also has more advanced security features; and using the container, supports Quick Share, Android Auto, and most modern Google features.
You don't have to enable these features if you don't need them, obviously, but most people will benefit from them.
@@ -128,15 +126,15 @@ You may also want to sync your photos to some cloud that you can access on other
There would be no private solution to this, as "The cloud is just someone else's computer". But what if *you* own that computer?
I won't get into too much detail in this post (I will discuss NextCloud in a future post soon, and how to install it), but if you have a spare computer, or are willing to build yourself a home server (often cheaper than paying for Google One in the long run), you can install NextCloud on it, and replace all Google services with it. You also get a lot more storage, and it's easy to extend it if you need more.
I won't get into too much detail in this post (I will discuss Nextcloud in a future post soon, and how to install it), but if you have a spare computer, or are willing to build yourself a home server (often cheaper than paying for Google One in the long run), you can install Nextcloud on it, and replace all Google services with it. You also get a lot more storage, and it's easy to extend it if you need more.
## Parting Thoughts
In conclusion
- It is impossible to be 100% private and secure. Choose your threat model and focus on it, one step at a time.
- Switch to open-source apps whenever possible.
- If you're comfortable with tinkering and own a Google Pixel device, install GrapheneOS, it's easier than it seems.
- It's impossible to be 100% private and secure. Choose your threat model and focus on it, one step at a time.
- Switch to open-source apps and OSes whenever possible.
- If you're comfortable tinkering and own a Google Pixel device, install GrapheneOS, it's easier than it seems.
- If you can, use Nextcloud instead of Google services.
Stay safe out there.