Anyone using Lineage? How is it?
I’ve got a Pixel 7 and have been wondering
To be honest I do not see any reason to use Lineage with Pixel while there is GrapheneOS… But maybe there will be some users of it: it is always better to have more free open OS
The only use case i guess if you prefer microG implementation v sandboxed GPS.
I think GOS model will end up being proven right from security/privacy perspective but the debate is ongoing.
GOS chief should not be in any public facing communication position though… that weaponized autism with heavy dose of paranoia is what is needed to develop GOS but not a good look objectively, and I give people a lot benefit of doubt.
My understanding is that Google wallet won’t work with grapheneos. It does with lineage ( with play integrity fix ). This is the only reason I use lineage. I’d love to not have any Google services but Google wallet is just such a huge value add. I don’t carry a physical wallet at all and it’s great. I wish there was a libre alternative to Google wallet for tap to pay, but sadly it does not look like that’s happening any time soon.
Does it support flashing from web browser?
that’s not a feature of the ROM. that’s a tool provided by ROM maintainers. that being said, it almost certainly supports it, as in in someone makes a website that does that, it will be possible.
now, don’t get me started on how bad of an idea it is to use webusb
don’t get me started on how bad of an idea it is to use webusb
I will get you started. Please explain.
there is no way to verify the downloaded package before installation.
also I generally deem both webusb, and chrome’s broader filesystem access apis dangerous, partly because a vulnerability in the website permission checking code with this permission is much worse than with e.g. the camera.
but the more realirealistic problem is that its just too easy to grant a random website so deep permissions to your device, either by accident, by habit or because the user does not understand what is happening. just a click or two and you have just granted a ransom website full access to your drive. with webusb, they can even write a bootable anything to your pendrive.my concern here is not that you cannot make sure that the graphene website will only do what it needs to, but that the feature exists at all, because of all the other websites. I sincerely bless mozilla for not implementing these.
How safe is Lineage?
Their devs dont really care about security so id say its not safe at all.
Any source on this?
Lineage allows people to have newer android/security patches on end-of-life phones, that’s a pretty good security argument.
That first link talks about how it requires an unlocked bootloader, therefore verified boot is disabled and the device is less secure.
While that is true, I think that’s a bit of an unfair thing to hold against it considering on most Android phones, you need to unlock the bootloader to run anything the OEM doesn’t approve, and most vendors do not support installing your own keys.
That should be a criticism against the OEM for forcing you to weaken the security of the device to have full control over it, not Lineage. That is not really their fault.
I think it would be nice of them to mention that the signing keys being held by the OEM and the OEM only is a massive security (and freedom!) weakness on it’s own, and that without being able to sign everything yourself, you can’t really be certain of the security of your device, as you cannot control everything on it.
