Android
DROID DOES
Welcome to the droidymcdroidface-iest, Lemmyest (Lemmiest), test, bestest, phoniest, pluckiest, snarkiest, and spiciest Android community on Lemmy (Do not respond)! Here you can participate in amazing discussions and events relating to all things Android.
The rules for posting and commenting, besides the rules defined here for lemmy.world, are as follows:
Rules
1. All posts must be relevant to Android devices/operating system.
2. Posts cannot be illegal or NSFW material.
3. No spam, self promotion, or upvote farming. Sources engaging in these behavior will be added to the Blacklist.
4. Non-whitelisted bots will be banned.
5. Engage respectfully: Harassment, flamebaiting, bad faith engagement, or agenda posting will result in your posts being removed. Excessive violations will result in temporary or permanent ban, depending on severity.
6. Memes are not allowed to be posts, but are allowed in the comments.
7. Posts from clickbait sources are heavily discouraged. Please de-clickbait titles if it needs to be submitted.
8. Submission statements of any length composed of your own thoughts inside the post text field are mandatory for any microblog posts, and are optional but recommended for article/image/video posts.
Community Resources:
We are Android girls*,
In our Lemmy.world.
The back is plastic,
It's fantastic.
*Well, not just girls: people of all gender identities are welcomed here.
Our Partner Communities:
view the rest of the comments
I'm running a 7a, would have liked to go to an 8a (or something with a headphone jack) but my company will drop me from email/work apps after end of security updates.
I went with 7a because it runs grapheneeOS without issue and allows my to sandbox play services a little which I need for work but don't want to just let them run wild.
So far so good.
Wait, your company will drop you when security updates end, but they are okay with you installing a custom ROM? Seems weird.
I work for a security company so they have strong opinions in the various custom ROMs. Most of the security so they make an exception for it as long as its not rooted.
Out of curiosity how does graphene allow you to sand box apps? Is it just disallowing permissions or closer to a vm?
Full independent user profiles. You can set as many as needed, for different sets of apps. But the "work profile" functionality doesn't always work (it fails to set up in my case).
Have you tried setting it up with Insular?
Not the same level of insulation. Also, only one single shadow profile is available. And also, if you try to use a work profile, it will either destroy your island or fail to install. Graphene is miles ahead on this with simultaneous multi user.
Actually, it's graphene I'm using Insular on. Seems to do the job.
All apps in Android are sandboxed, Graphene's is just stricter about it.
Well, no, in android, all non google apps sandboxed. In graphine all Google apps are also sandboxed as well.
They're sandboxed either way in either setting, the difference is the Play Services has privileged access normally, that doesn't negate the sandboxing that's happening either way. Even with GrapheneOS apps can be allowed to communicate out, all depends on their permissions. Also, Play Services aside, Google's apps are typically userland only apps, without any special privilege. Apps have multiple ways to communicate with each other.
No, normal google apps don't ask for permissions, they just get access to whatever they want.
False....