Privacy

5426 readers

387 users here now

A community for Lemmy users interested in privacy

Rules:

Be civil
No spam posting
Keep posts on-topic
No trolling

founded 2 years ago

MODERATORS

iopq@lemmy.world

If I can't install Graphene, is Calyx still ok? (lemmy.world)

submitted 4 days ago by AkashicOwl@lemmy.world to c/privacy@lemmy.world

8 comments fedilink hide all child comments

The only Pixel I have is a Pixel 3XL which is not supported anymore for updates. A few questions. does that mean at some point you have to buy a new phone all the time? How long are they supported, do I need the buy the newest one everytime to have a decently long support? If I can install Calyx, but have already degoogled my phone, is Calyx still useful? But I suppose at this point it's still better to get a Pixel anyway and install Graphene which is supposedly better? how risky is it to run an unsupported phone like my Pixel 3XL? What can happen?

you are viewing a single comment's thread
view the rest of the comments

[–] Sophocles@infosec.pub 5 points 3 days ago

The problem lies more with the phone itself no longer being supported, as both Calyx and Graphene only do harm-reduction updates after end of life, not full security updates. You will be taking a risk using either, but both are better than stock android.

For some reason you'll find a lot of Calyx/non-graphene os hate on lemmy (just look at the dowvotes on anything calyx related, even on this post). But if your threat model is just combatting coprorate data harvesting, de-googling, or further securing your phone, it works well and does as promised.

You should also look into Fairphones with Calyx. They're a bit pricey, but they get hardware support for 10 years instead of 5 (most android phones) and they are built with replacable parts in mind to prevent e-waste and unnecessary cost.

So in other words, yes you will have to buy a phone every 5 years (or 10 with fairphone) in order to have comprehensive security, even with graphene or calyx.