this post was submitted on 09 Oct 2023
328 points (95.8% liked)
Privacy
31991 readers
507 users here now
A place to discuss privacy and freedom in the digital world.
Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.
In this community everyone is welcome to post links and discuss topics related to privacy.
Some Rules
- Posting a link to a website containing tracking isn't great, if contents of the website are behind a paywall maybe copy them into the post
- Don't promote proprietary software
- Try to keep things on topic
- If you have a question, please try searching for previous discussions, maybe it has already been answered
- Reposts are fine, but should have at least a couple of weeks in between so that the post can reach a new audience
- Be nice :)
Related communities
Chat rooms
-
[Matrix/Element]Dead
much thanks to @gary_host_laptop for the logo design :)
founded 5 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
I've never used /e/OS before, so I don't know what it feels like to use it, and I really don't want to shit on a FOSS project for no reason, but the frequency at which they deliver updates is terrifying. I wouldn't recommend people to run an OS that is constantly out-of-date and has unpatched security vulnerabilities. But I would appreciate it, if you could tell me what is so awesome about /e/OS. I did some research and as far as I can see it's just LineageOS with microG and a skinned Aurora Store, and a Launcher that desperately tries to look like iOS. You can recreate a better version of all of this with ease on GrapheneOS. The Sandboxed Google Play services implementation is miles ahead of microG, and has better app compatibility, while not compromising on privacy. Also, Graphene has many low-level security improvements to the system like a hardened memory allocator, hardened SELinux policies, etc. I like that Murena ships /e/OS on Fairphones, but I will always prefer GrapheneOS on a Google Pixel, because of the hardware security features (Titan M2 Secure Element). TL;DR: /e/OS has better privacy than stock Android ROMs, but pretty bad security, because of a lack of frequent security patches.
I don't mind being slightly behind other android ROMs in terms of updates, I get updates every once in a few months on e/OS. One of the main freatures is that there is a feature caled advanced privacy you can block all trackers, spoof your GPS location and Tunnel your IP Adress through Tor from the settings or from its Widget at a per App basis without root out of the box. It also comes completly degoogled and with microg all default apps replaced with a foss alternatives. Its fork of Aurora store "app lounge" has privacy ratings for all the apps calculated using the permissions they require and trackers they have, it includes FOSS and pwa apps too.(also must admit I mostly just use fdroid). There is a lot to love about it and it is compatible with a lot more phones than grapheneOS. I know that you can achieve most of it, if not all of it on graphene too but /e/OS makes privacy "convenient".
It's probably just a DNS filter. You can achieve the same thing on any Android phone using NextDNS (or any DNS resolver that blocks trackers) and the native Android DNS-over-TLS implementation, which is present on every Android ROM that's based on Android 9 or higher. It takes 5 minutes to set up.
You can do that with the free Orbot app released by the Tor Project.
The information about Trackers and Permissions comes from Exodus Privacy and it's included in the normal Aurora Store too
This is actually a nice feature. Of course, you can get FOSS apps and PWAs on other ROMs as well, but it's nice to have all the apps in one central place. Very useful, especially for new users.
That's what I do on GrapheneOS too
It is not DNS as far as I can tell since you can edit dns settings seperately. I use quad9 dns for example
You understand, that you can locally filter DNS and then send these filtered requests to a remote nameserver, right? DNS filtering can absolutely happen locally. A great example for that is the /etc/hosts file on Unix/Unix-like operating systems (including Android, e.g. DivestOS locally filters network requests using a hosts file)
No I didn't know that :)