Avoid the Hack! on Nostr: nprofile1q…9ltqv Great and good-intentioned advice here, but I just want to give ...
nprofile1qy2hwumn8ghj7un9d3shjtnddaehgu3wwp6kyqpq5lj87lrp4gkv82za27npxzqhs4y8eua9y59rylnydvjfg4yfnr6qa9ltqv (nprofile…ltqv)
Great and good-intentioned advice here, but I just want to give some of my thoughts on some of the specifics:
- Using a third-party App Store is decent advice. However, would use caution if using F-Droid in particular as its security model is not the best and despite the whole “no proprietary blobs,” their checking mechanism for that is rudimentary at best. Users may want to consider using other app marketplaces like Aurora. GrapheneOS users can use Google Play Store with their sandboxed Play Store services functionality.
Overall, As I constantly say, regardless of the App Store, not everything can be implicitly trusted (meaning, malicious and privacy invasive apps can be any on marketplace.)
- just want to flag that Android users should stick to using Chromium based browsers on Android to maintain sandboxing effectiveness (does not have to be Chrome - also, for rather obvious reasons, wouldn’t recommend Chrome. Gecko’s model on Android doesn’t work as well.
- the only AOSP operating system that is not Google Android worth installing is GrapheneOS. The install process is not that hard (it’s web based). Most other alternative Android systems break/weaken the vanilla AOSP model or fall behind upstream security updates.
Great and good-intentioned advice here, but I just want to give some of my thoughts on some of the specifics:
- Using a third-party App Store is decent advice. However, would use caution if using F-Droid in particular as its security model is not the best and despite the whole “no proprietary blobs,” their checking mechanism for that is rudimentary at best. Users may want to consider using other app marketplaces like Aurora. GrapheneOS users can use Google Play Store with their sandboxed Play Store services functionality.
Overall, As I constantly say, regardless of the App Store, not everything can be implicitly trusted (meaning, malicious and privacy invasive apps can be any on marketplace.)
- just want to flag that Android users should stick to using Chromium based browsers on Android to maintain sandboxing effectiveness (does not have to be Chrome - also, for rather obvious reasons, wouldn’t recommend Chrome. Gecko’s model on Android doesn’t work as well.
- the only AOSP operating system that is not Google Android worth installing is GrapheneOS. The install process is not that hard (it’s web based). Most other alternative Android systems break/weaken the vanilla AOSP model or fall behind upstream security updates.