lol you are so wrong.

TL;DR: I think this video oversimplifies the analysis according to the cards and gives Graphene OS undue weight without going into sufficient detail as to why each scored under each category.

I actually don’t agree with this video; and firmly believe it is more than a little biased.

For example, the Pixel, AOSP and Android are given several undeserved points due to lack of proper information or understanding of how certain features work. I imagine this is the case too for the iPhone; if a bit less so.

The review apparently doesn’t deep dive into settings or attempt to maximize privacy by turning off unwanted ‘features’ when settings switches are available to the user; nor does it assume that you set up accounts in as private of a manner as reasonably possible or toggle off as many default-on consent switches as needed.

While I would support scoring and dinging each case or instance for “Privacy Settings that don’t actually work”…this video really doesn’t do a lot of legwork and leans on the anecdotal evidence of scary news stories too much.

Worse was the fact that the entire video felt like they were shilling for Graphene OS; which is known to have a slightly unfriendly maintainer and community surrounding him to say the least.

No mention of Lineage or other privacy oriented Android ROMs were analyzed. AOSP too, was unfairly lumped in and dinged for specific points of the Default Pixel configuration…and yes there are major differences between AOSP and Pixel Android; even though Google tries to be less in-your-face invasive than the other OEMs. Not enough credit is given for the “On-Device” smart features implemented properly on the Pixels.

Out of personal experience; I’d actually rate a proper Lineage OS install of 4 whole Android versions ago to be more private than stock. Not quite as private as Graphene; but not quite as invasive and much more enforcing of privacy. The debloating provided by a clean AOSP-like ROM, such as Lineage, as opposed to a “Stock Android” configuration from a major OEM is stark.

Most importantly I personally feel that the privacy model chosen for the video is far too thickly detailed for an average person. Most of the privacy concerns listed on each card contained concern points that might only tangentally apply or don’t apply at all to mobile phones. The way that each card was scored and applied felt low effort. None of the points on any of the card(s) were weighted with average users in mind.

I really hope someone goes into a much deeper dive; this video is basically clickbait that parrots the commonly parroted advice in the privacy community; which isn’t even good advice, it’s just ‘One-Size-Fits-All’ style advice which gives the user no room to make necessary ‘Privacy vs Convenience’ tradeoffs that they themselves could have made if they understood proper threat modelling.

Actually; (basically) SIP over (basically) IPSec sounds pretty correct. Wish the dense technical manuals I read had explained it that way; makes a lot more sense to me as a Net Admin type of IT person.

I do remember reading that the protocol was basically encapsulated. Dunno about any encryption; probably there’s not any at the IPSec level. I do know that the SIMs themselves probably contain certs that have some value; I just don’t know if they handle any encryption or if they’re just lightweight little numbers for authentication only.

If I’m understanding how 'WiFi Calling" works; it’s still “identifying you” to the cell provider the same way; via your SIM. The only difference is they don’t get an exact location because you’re not using any cell towers typically.

I do suspect SIMs and eSIMs are still doing all the heavy cryptographic signing done on a typical phone network though…they’re just not screaming your IMEI/IMSI all over open or even encrypted airwaves; nor is a WiFI signal triangulate-able typically due to it’s short range.

They certainly make it easier to do so; by making it a switch you can toggle; which allows you to generate an identity; or choose not to and roll with the identity they’ve already seen.

Agreed.

Without concepts of privacy; things will soon fall into fascism.

(People can’t DM you)

This is false. However, you must generate an “identifier / group / channel” for them and share that link out-of-band to them." Basically it means nobody can slide into your DMs unless you yourself consent to it and forge a connection with them to do so. It does offer a way to invite other users to chat; but the other user must consent as well…which makes it far safer usually.

Personally there’s just certain controls in a car I firmly believe should NEVER be digitized anyways.

I mean; there’s nothing stopping you from using a car from an earlier era; and bodging in an Android Tablet into your dashboard as an infotainment system.

The thing doesn’t need to be concerned with your climate controls or anything else on your CAN bus for security reasons anyways. So you can leave those controls as they are and just let the tablet replace your Radio effectively for 100% DRM free media enjoyment with your favorite fully rooted and flashed tablet running whatever FLOSS version of Android firmware you like.

In general; I think even 2 billion is too much. Nobody needs that much money.

At best; I think no one should be able to have more than about 500 Million. You get one house, and one car for each adult family member if you’re married with non-adult kids. Adult kids don’t add uncounted vehicles; they have their own limit. Anything that is seaworthy or airworthy counts as about as much “Wealth” as you initially spent on it minus a reasonable depreciation rate yearly as determined by the market, so no buying a thing and having it lose 30% of it’s value the moment you drive it off the lot after buying it.

Additionally; to block too many shenanigans; wealth added by any property that is bought sticks; 3 years at minimum. This prevents people from storing too much excess in property and shell-gaming it. A company you own or have stake in cannot lend (in a long term) or gift you property in excess of 1% to 10% the wealth limit. (Depending on what the thing is). Companies may also not hold property or money in lieu of an individual personally; everything the company owns must have a global company function; and not personally benefit one or more people only. (Basically no executive-only or owner-only Jets; everyone from the tiniest manager on up should have access to it if there’s a business reason for it)

Now we wait for someone to build an absolutely wonderful chat app on top of this wonderful bit of PoC code…

I genuinely hope someone does. Imagine what this could do if this was routed over Tor using Private Services.

Run this over that; and you’d have a bullet-proof text chat. Wrap a nice GUI client around all of that and you have a proper secure, anonymous messenger with no problems. With a little more build-out; you could even implement the Matrix protocol over this wire-line and basically have full inter-federation and moderation over a secure wire protocol; allowing for complete privacy and client integration.

TL;DR: Matrix over PQChat over Tor. Think about it. A Post-Quantum Dark-Matrix web.

Ah; I don’t use Chinese branded phones at all. Never have.

Phones in the US market do not usually have them, unless they’re Samsung branded, and since I don’t include Chinese made phones in that “group”, what I’m saying is true for the US.

Uh, No. Hell to the fucking no. Bring back SD expansion. Treat it like the data storage device it was.

Your beefs with Google are misplaced; because they were trying to mess with what folders were used; and with trying to protect user privacy because applications were misusing storage to violate their user’s privacy.

• Losing SD Expansion sucks; they should bring this back. Only reason they stopped this is greed.
• Yet another Nice-To-Have that is gone; but I’ve never seen any phones that weren’t Samsung with this. This one doesn’t really even affect waterproofing; or phone size so they have no excuse.
• I certainly miss this one; but the FM Radio was present back on my 2020 Moto G6 Power. It was present on my 2020 Moto Edge. This one got stolen from us because we lost the 3.5mm Jack too…they used the wire from your wired headphones as an FM Antenna lead.
• This is nice; but I ended up having to root my Nexus 6 to make this work properly and use all the colors the LED could perform. I don’t really miss it with Bezel-less phones.
• I hate that bootloaders are frequently locked; but it’s been less necessary to root Android as it’s improved over the years. There are still a few pain points; but not quite as many that require root.
• This is another case of greed. There’s no reason why we shouldn’t have removable batteries for phones that aren’t IP67 or higher. If it ain’t waterproof; there’s no reason to seal the battery in…and replaceable batteries is a benefit when they accidentally ship units that become “spicy pillows” when the batteries swell due to bad batteries. It also simplifies disposal of phones; which don’t need disassembly if they’ve got a removable battery.

Can it? Maybe. It’s not impossible; but it isn’t practical and most ISPs limit their shenanigans to grabbing your unencrypted DNS requests.

Will it? Probably no; aside from the previously mentioned DNS redirections; they’re not interested in most people’s packets, only in how many they deliver.

Should you care? I won’t tell you not to take precaution, but I do urge you to consider your threat model carefully and consider the tradeoffs. When Security & Privacy goes up, Convenience and Functionality WILL go down. Balance your needs. Don’t put yourself in a state of Privacy fatigue.

Are there easy fixes? Maybe. I think a VPN or using Tor would solve your concerns here anyways; it’s not required that your modem be running OSS that you can control. If you can achieve it; that’s still good for you; but it’s not something to be sweating if your modem isn’t capable and your invasive ISP is the only effective option.

The rot is deep. Avoiding it often requires you to become a hermit.

You try convincing your tech unsavvy friends to change services, your boss to let you use linux, and all your favorite communities not to use Discord, Google and YouTube. Last of all; good luck finding that one obscure widget you need right now to make something work without using Amazon.

I promise all of the above are harder than they sound. It shouldn’t be harder; but it is.

(As if spoken by the King to Simba:)

Rust: Everything from the bottom of this cliff to the acacia tree there is ours. Make sure you ask permission before you take something, take nothing you are not permitted to take. We don’t go beyond that tree; and if you even think about the elephant graveyard beyond it; I’ll kill you myself.

C: Everything the sun touches is yours. I caution you to not venture into the shadows; but I will not stop you, for you are a king, and nothing a king can do is unnecessary if it is for his people.

I think there’s a problem with the ‘C only’ devs refusing to be accomodating to the Rust developers. Instead of being stubborn; why not provide them what is needed and help the Rust team learn how to maintain what is needed themselves?

None of the reasons I’ve seen mentioned are legitimate reasons for refusing to at least help them a few times, and helping them to learn how to do the onerous task themselves so they can keep it off the main plate for too long.

C devs do not need to learn Rust to provide critical information; they need only be present and cooperative with Rust devs to help them find, convert, and localize data structures for Rust use. They can stand to sit and pair code with their Rust Dev counterparts long enough to teach a Rust Dev counterpart how and what they need to look for in C code. It’s not that big of an ask, and it’s not something that really is a large ask. Provide the bindings for a short period of time, and work on training a team of Rust Devs to maintain the bindings.

That way both sides are stepping up to meet the others and the data isn’t being sat on by the C-only Devs.

In aggregate; 5 instances, less than 5 communities, and more than 69, nice, blocked users.

I don’t mess around. I don’t hesitate to block people who argue needlessly, make my experience less informational or less entertaining, troll, or disregard arguments made in foundational logic to push a point of view or ‘win the argument’. Similarly my instance ignores downvotes and does not display them; as with most platforms which behave similarly to reddit; they simply do not work outside of your personal, local account, local instance, user-sorting context.