I guess it’s because it’s available on so many devices and it can be made to be private as much as possible.
Saying “you can ONLY have privacy by encouraging the Google monopoly with your money when buying their devices” sounds dumb to me.
Forgot about the sheer number of devices supported. Even unsupported. Couple of my older devices still get regular unofficial builds with backported security patches. Nougat even which I run on my daily driver in a Google/Facebook-free setup.
@marcdw1289
Nougat is missing many absolutely critical security patches. For example:
https://nvd.nist.gov/vuln/detail/CVE-2021-0515
https://nvd.nist.gov/vuln/detail/CVE-2021-0514
- No ROM actively provides the Pixel Security Bulletin patches to older branches.
- ROMs are not actively integrating patches from the Qualcomm security bulletins.
- Example: NVD - CVE-2019-2306
- No other ROM is doing kernel security patching like DivestOS does:
- Nearly every device running kernel <4.4 is likely vulnerable to this: NVD - CVE-2019-2215
I strongly would not daily drive any device with less than Android 10.
And I’d use GrapheneOS or DivestOS if possible.
2 Likes
I found my pixel 6a at 140 euros on ebay so I don’t think it’s expensive. especially since pixels are the only device in android to be supported for 5 years
Some posts earlier, the discussion was about a secure desktop OS. What about arch linux?
If you customize it as far as possible, could it be as secure as Qubes OS for example?
@LeonPetter
Qubes isn’t secure*, it just provides a reasonably high assurance of isolation between traditional operating systems, so that if one is compromised it doesn’t affect the thers.
Yes, I heard about it. But would you use arch linux with some customizations / security enhancements?
Could I make it damn secure?