Remix.run Logo
Remix clone Hacker News
new | show | ask | jobsGithub
fsflover 5 days ago

This is another project that knows what you need better than yourself. People are constantly asking them to add support to other hardware, but the answer is "it's insecure". This is completely wrong and forces everybody without a(n expensive!) Pixel to abandon reasonable security. Even Qubes OS allows installing itself on hardware without VT-d, with respective warnings, and plans to enable GPU acceleration in VMs on demand. Their priority clearly isn't to make as many people as possible more secure but to force Google on you.

Are you calling the above a "character attack"?

I would love to use GrapheneOS on my Librem 5 and Pinephone. No proprietary drivers are required. Yes, some security features are lacking. Yet it would be a win for everybody.

I didn't say anything about CalyxOS: I don't care about this.

scheeseman486 5 days ago | parent [-]

> the answer is "it's insecure".

Can you give me a quote where they outright say this? Because my hunch is that what they actually say is something along the lines of 'because it doesn't have the security requirements that we desire' which would be true. Whatever their reasons for those choices, it also makes sense to limit scope given the extreme constraints they're working under and that scope is best limited to phones with the widest security feature support for their security-focus Android OS.

> Are you calling the above a "character attack"?

Grow up.

Ghoelian 5 days ago | parent [-]

'because it doesn't have the security requirements that we desire'

aka, insecure.

pessimizer 5 days ago | parent | next [-]

I am continually puzzled that sometimes people can't put together a denial without including an affirmation as a crucial part of that denial. It's like they're doing the opposite of question-begging, they're saying that you're wrong because you're right.

scheeseman486 5 days ago | parent | prev [-]

No, those don't mean the same thing.

All phones are insecure to some extent, most phones compared to GrapheneOS/Pixels are less secure and this has largely proven out whenever there's been leaks of the capabilities of law enforcement phone cracking tools.

fsflover 4 days ago | parent [-]

I just don't see how it refutes any of my arguments. See the example of Qubes OS in my above reply.

scheeseman486 4 days ago | parent [-]

QubesOS is an OS for PCs which have a standardized hardware interface. Support for older systems is basically "free". Smartphones aren't standardized in the same way and the amount of effort it takes to properly support other phones has a considerably higher cost on developer bandwidth.

Anyone can fork GrapheneOS and build it for other phones if they want, instead of doing this the developers instead focus their time and effort on the most suitable hardware for their needs. This isn't a part of some agenda or a swipe at Linux, open source or Stallman's cholesterol filled heart, it's just pragmatism.

fsflover 3 days ago | parent [-]

I agree that the lack of resources is a reasonable argument. However this not the argument provided: https://news.ycombinator.com/item?id=30765013

scheeseman486 3 days ago | parent [-]

Instead there's a bunch of other arguments that are just as reasonable which underline why deploying their security focused OS on such a hardware platform would be a waste of their time. This is your refutation?

It really seems like you're more concerned about hurt feelings than objective fact here. Every link you've provided thus far was framed by you as evidence of poor decisions or behaviour on the part of the GrapheneOS team but you've done nothing to elaborate, and after reading the content of those links for myself there is nothing there that support the things you've been implying.

It doesn't make a whole lot of sense, at least not unless I put myself into the mindset of a child and read any negativity expressed towards FOSS projects as an attack, or taking their choice to not target phones I like personally.

fsflover 2 days ago | parent [-]

I have no idea where you managed to find any feelings in my replies, and I will ignore the personal attacks.

The linked security-related arguments aren't reasonable at all. They talk about improving users' security but instead the actual result is less security for the majority of people, due to (1) the high price of the supported hardware, (2) reliance on Google hardware not trusted by many users (https://news.ycombinator.com/item?id=45101524).

scheeseman486 2 days ago | parent [-]

> I have no idea where you managed to find any feelings in my replies, and I will ignore the personal attacks.

Your username is fsflover and your posts clearly have an ideological bias that favours purely open source solutions even if it goes against reason.

> The linked security-related arguments aren't reasonable at all. They talk about improving users' security but instead the actual result is less security for the majority of people, due to (1) the high price of the supported hardware, (2) reliance on Google hardware not trusted by many users

All SoCs are a black box and all of them are made by untrustable companies that are likely already working with the security services of whatever country they're R&D'd or manufactured in. There is no good solution to this, so they picked the best worst option.

Nonetheless, most of the evidence that is available shows that GrapheneOS on Pixels are the most secure phones currently available. So, clearly not security theatre, whereas if they also supported phones that didn't even let you lock the bootloader it absolutely would be.

GrapheneOS isn't to blame for every other phone manufacturer dropping the ball.

fsflover 2 days ago | parent [-]

> fsflover

Thanks for the clarification. Free software ideology is not like a religion, where people believe in a god. Every Stallman's essay explains a very practical reason for following his ideas. FLOSS protects you from the enshittification, walled gardens, backdoors (to a degree) and similar things.

GrapheneOS have put themselves in Google's walled garden in terms of the supported devices and now Google can easily make them less secure or even kill them completely at will.

This is like saying "you clearly have an ideological bias that favors democracy/ or freedom even if it goes against reason". Sometimes a tyranny is more efficient at forcing people to do a particular thing, e.g., produce weapons. It doesn't mean that choosing it can be reasonable sometimes.

> All SoCs are a black box and all of them are made by untrustable companies

You clearly can't understand that different people have different threat models. This is a huge problem of GrapheneOS developers: they never accept this possibility and force the single threat model upon everyone. This reminds me of Apple by the way: They do the same. In reality, some people can trust Chinese devices more than Google's ones (imagine that), or trust a particular company that didn't perform a ton of evil action like Google did (that's me and many others).

> There is no good solution to this

The good solution to this is security through compartmentalization, which is the best security approach ever invented. The more varied hardware people use, the harder it is to make a targeted attack or to mass compromise every single device sold.

> most of the evidence that is available shows that GrapheneOS on Pixels are the most secure phones currently available

I don't dispute that, and you won't find me saying that GrapheneOS is insecure in itself. I am saying that they did a wrong bet long-term, and their approach leaves a lot of people without Google's hardware insecure.

> not security theatre, whereas if they also supported phones that didn't even let you lock the bootloader it absolutely would be.

Once again, this is implying one single threat model upon everyone. I never leave my phone unattended, so nobody can secretly reflash it. And whenever I suspect a compromise, I reflash it myself using a disposable VM on Qubes OS. Does it look somewhat secure to you?