cross-posted from: https://slrpnk.net/post/15995282

Real unfortunate news for GrapheneOS users as Revolut has decided to ban the use of ‘non-google’ approved OSes. This is currently being posted about and updated by GrahpeneOS over at Bluesky for those who want to follow it more closely.

Edit: had to change the title, originally it said Uber too but I cannot find back to the source of ether that’s true or not…

  • floreana@poliverso.org
    link
    fedilink
    arrow-up
    3
    ·
    2 days ago

    @Sunny
    Gatekeeprs of wealth sticking together against the ambition for freedom of poorer people?
    Oh, color me surprised. 🙄

    (I want to de-Google step by step, thanks for the heads up).

  • I don’t think it’s a coincidence that the shittiest companies are those, who enforce Google’s broken and monopolistic “Play Integrity” API. Revolut has connections to Russia, McDonalds supports the Israeli genocide in Palestine and Authy has always just been a massive piece of shit, not even allowing users to export their TOTP seeds. These are three companies I would NEVER even consider using anyway.

    And “Play Integrity” API actually does NOTHING, absolutely NOTHING for your security as an end user.
    You use an outdated, unpatched Android version with multiple severe, publicly known exploits on an insecure device?
    Google doesn’t give a single fuck.
    You use the newest version of Android with all the patches applied on Google’s own hardware, with a locked boot loader and a hardened operating system?
    That’s not allowed by the “Play Integrity” API.
    It’s only purpose is to serve Google’s monopolistic business interests.

  • ouch@lemmy.world
    link
    fedilink
    arrow-up
    11
    ·
    3 days ago

    Google has ruined Android by closing it up.

    EU needs to step in and force Google to open it up.

    While at it, go for Apple’s monopoly as well.

  • HiddenLayer555@lemmy.ml
    link
    fedilink
    English
    arrow-up
    341
    ·
    edit-2
    5 days ago

    This makes me want to use GrapheneOS more. If the dataminers don’t want you to use it then it must be doing something right.

      • Realitaetsverlust@lemmy.zip
        link
        fedilink
        English
        arrow-up
        64
        ·
        5 days ago

        It’s only officially supported on google phones because sadly those are the only ones that are not modified to fuck which makes installing and supporting other OS’es way too much work.

        Giving google money once for a device is not a problem from a privacy or security standpoint.

        • Samsy@lemmy.ml
          link
          fedilink
          arrow-up
          27
          ·
          5 days ago

          That’s correct, but not the reason grapheneOS chooses only pixel phones. It’s the level of hardware security features.

        • Irelephant@lemm.ee
          link
          fedilink
          arrow-up
          3
          ·
          4 days ago

          In the EU almost every phone has an unlockable bootloader, there just isn’t any roms or custom recoveries for a lot of them.

        • HiddenLayer555@lemmy.ml
          link
          fedilink
          English
          arrow-up
          4
          arrow-down
          2
          ·
          edit-2
          4 days ago

          Wish they’d at least support Fairphone.

          If Graphene reached out to them I bet Fairphone would even actively work with them to make it an official OS option.

        • 50MYT@aussie.zone
          link
          fedilink
          arrow-up
          11
          arrow-down
          3
          ·
          edit-2
          5 days ago

          Your options are:

          Apple phone

          Bloated android phone like Samsung etc.

          Chinese android phone (xiami etc)

          Google phone with Android

          Google phone with graphene. This still looks like the best of those options.

          Or no phone? I guess people are hardcore enough that will be the option.

          Edit: I stand corrected.

            • Andromxda 🇺🇦🇵🇸🇹🇼@lemmy.dbzer0.com
              link
              fedilink
              English
              arrow-up
              2
              arrow-down
              1
              ·
              edit-2
              3 days ago

              All of these are insecure as hell. Linux phones especially https://madaidans-insecurities.github.io/linux-phones.html

              Fairphone also really fucked up: They signed their own OS with the publicly available (!) AOSP test signing keys. These guys really don’t know that they’re doing, and I would trust their hardware or software whatsoever. And no, installing a custom ROM doesn’t solve this. Considering how bad their security practices are, we genuinely have to assume that there are security issues with the device firmware as well.

              /e/OS is based on the already insecure LineageOS, and it weakens the security further, so it’s not a good option either.

              None of the options you mentioned can be compared to GrapheneOS. It’s currently the best option if you value your privacy and security. You don’t have to give Google money either, since you can just buy a used device, which is also cheaper and more environmentally friendly. Google also makes repairing their devices pretty easy for consumers and even works with iFixit. Here’s a Mastodon post I recently saw about that: https://social.linux.pizza/@midtsveen/113630773097519792

              • Venia Silente@lemm.ee
                link
                fedilink
                English
                arrow-up
                1
                ·
                3 days ago

                An used Pixel, assuming I can find one in my country, still costs four (4) times what I need to shell out for a in-market Lineage compatible phone.

                Theoretical security is cute, but it has to be adjusted to practical feasibility. The most secure computer in the world is useless to you if you can’t boot it up.

                • Andromxda 🇺🇦🇵🇸🇹🇼@lemmy.dbzer0.com
                  link
                  fedilink
                  English
                  arrow-up
                  1
                  ·
                  edit-2
                  18 hours ago

                  Security-wise you’re better off using whatever OS comes with your device (as long as it gets updates) than downgrading to LineageOS. At least most smartphone vendors (except for Fairphone) manage to ship their Stock OS with a locked bootloader and somewhat working Verified Boot.

            • Killercat103@slrpnk.net
              link
              fedilink
              arrow-up
              3
              ·
              edit-2
              5 days ago

              Is swiftphone its own thing or did you mean shiftphone? I kinda want the shiftphone 8 myself even if they only ship to neighboring countries of mine.

            • SeekPie@lemm.ee
              link
              fedilink
              arrow-up
              3
              ·
              5 days ago

              I don’t think LOS has any privacy/security improvements over the stock android?

              (IIRC) it’s even worse than stock because you can’t lock the bootloader after installation.

              Though if your phone isn’t getting official updates, it’s probably safer with LOS.

          • zerozaku@lemmy.world
            link
            fedilink
            English
            arrow-up
            4
            arrow-down
            1
            ·
            5 days ago

            Xiaomi has the biggest custom ROM scene out there btw despite them trying their hardest to stop bootloader unlocking. You really don’t need to have a company supporting unlocking to make ROMs for them. If they outright block it then that’s an issue.

              • DoeJohn@lemmy.world
                link
                fedilink
                arrow-up
                1
                ·
                2 days ago

                My friend just got a new Xiaomi phone. He tried unlocking it a few days ago and got “try again in 168 hours”. That happened in Europe. It’s an absolute mess nowadays, I remember when they started blocking you from unlocking the bootloader. First you had to wait 24 hours, then 3 days, now it’s an entire week. You also need to make sure you’re logged into your Mi Account on both phone and PC and do even more weird fuckery to ensure the process actually go through. Meanwhile, on GOOGLE Pixel devices you just type one command after you enable oem unlocking in settings and reboot into fastboot mode. Crazy.

  • Roopappy@lemmy.world
    link
    fedilink
    arrow-up
    26
    ·
    4 days ago

    Why would anyone load an app from McDonalds? You want to give them elevated access to your most personal data for a few dollars of coupons?

    What are they taking from you that’s worth more than the discounts they are giving you? Because they are definitely making a profit, or they wouldn’t be doing it.

    • Sips'@slrpnk.netOP
      link
      fedilink
      arrow-up
      14
      ·
      4 days ago

      We are definitely in the era where people think discounts before user privacy. I bet most of people downloading the Mcdonald app do it exactly because of cheeper prices and easy of access.

      • dharmik@linuxusers.in
        link
        fedilink
        arrow-up
        2
        arrow-down
        1
        ·
        4 days ago

        just had medium fries and coke. i and many i know use the mc D app because of the discounts it gives when i order through my app.

      • dharmik@linuxusers.in
        link
        fedilink
        arrow-up
        1
        arrow-down
        1
        ·
        4 days ago

        just had medium fries and coke. i and many i know use the mc D app because of the discounts it gives when i order through my app.

      • dharmik@linuxusers.in
        link
        fedilink
        arrow-up
        1
        arrow-down
        1
        ·
        edit-2
        4 days ago

        just had medium fries and coke. many people i know, including myself, use the mcd app because of the discounts it offers when ordering through the app. however, i am under the impression that since i use an ios device and have the option to decline being tracked by the app—which i very eagerly press “no” to—i am on the safe side. am i?

        • pound_heap@lemm.ee
          link
          fedilink
          arrow-up
          6
          ·
          edit-2
          4 days ago

          Apple does extensive audit of mobile apps, including limitations of tracking. So the app cannot spy on something you are not letting it to know. But you are giving it a bunch of info voluntarily.

          I’d say using that app on iOS is similar to making a food delivery order using a loyalty member ID. Basically, you are letting the company (McDonald’s) know who you are, what is your phone number, where do you live, and what do you like to eat. And if they wish to, they could use all that to purchase your profile from a data brocker. Or they can sell that info for a few cents to make up on that discount.

      • dharmik@linuxusers.in
        link
        fedilink
        arrow-up
        1
        arrow-down
        1
        ·
        4 days ago

        just had medium fries and coke. i and many i know use the mc D app because of the discounts it gives when i order through my app.

      • dharmik@linuxusers.in
        link
        fedilink
        arrow-up
        1
        arrow-down
        1
        ·
        4 days ago

        just had medium fries and coke. i and many i know use the mc D app because of the discounts it gives when i order through my app.

  • Dr. Moose@lemmy.world
    link
    fedilink
    English
    arrow-up
    18
    ·
    4 days ago

    Authy has been utter garbage for a long time and if you ever needed a reason to migrate away then now is as good as ever.

    • 4lan@lemmy.world
      link
      fedilink
      arrow-up
      6
      ·
      edit-2
      3 days ago

      It’s crazy how they can just do illegal things because they have so much money…

      Do I own my phone or not??

        • theroff@aussie.zone
          link
          fedilink
          arrow-up
          3
          ·
          3 days ago

          Graphene shills have been banging on this point for donkey’s ages. Reality is that many people use phones that are out of OEM support and many OEM ROMs are bundled with questionable software (Oppo, Samsung etc.) There are some decent criticisms to be made about LineageOS, but others to be made about Grapheme, like its Google-suggestive configurations, which is quite bad for security and privacy. Graphene says this is all optional and not part of the OS, but doesn’t include any equivalent F-Droid installer.

          • DoeJohn@lemmy.world
            link
            fedilink
            arrow-up
            2
            ·
            2 days ago

            Yeah. As much as I love GrapheneOS and all the security work, sometimes I feel like their “ideal” setup is to just install GrapheneOS on the latest Pixel phone and use only the 5 or so built in apps, as everything else is insecure, brings additional code baggage and can introduce flaws. I don’t think anyone can live like that.

  • Anivia@feddit.org
    link
    fedilink
    arrow-up
    57
    ·
    5 days ago

    Time to switch away from Auth I guess. Not even using GrapheneOS cause I have a Samsung phone, but this is not acceptable

    • m-p{3}@lemmy.ca
      link
      fedilink
      arrow-up
      129
      arrow-down
      1
      ·
      5 days ago

      On the other hand, it makes it easy to find which apps aren’t to be trusted with your data.

      • themurphy@lemmy.ml
        link
        fedilink
        arrow-up
        62
        ·
        5 days ago

        Also very obvious when an app or website have an US and an EU version. You just know they buttfuck the Americans because no rules.

        Even Apple had to make two versions of iOS.

    • dutchkimble@lemy.lol
      link
      fedilink
      arrow-up
      5
      ·
      5 days ago

      Maybe graphene will find a way into duping those apps to think you have a regular android phone?

    • Avid Amoeba@lemmy.ca
      link
      fedilink
      arrow-up
      1
      ·
      4 days ago

      Err, you could firewall an app from your data in Private Space or Shelter for older Android versions. That should work on any Android device.

  • AstralPath@lemmy.ca
    link
    fedilink
    arrow-up
    101
    ·
    5 days ago

    Fuck both of these companies. Never used McDicks app in the first place. Spyware bullshit.

    • Wilmo Bones@lemmy.world
      link
      fedilink
      English
      arrow-up
      54
      ·
      5 days ago

      Right people who install various apps like McDonalds apps etc, are these even typical to GrapheneOS users? I’d think most would avoid superfluous data stealing apps.

      • HereIAm@lemmy.world
        link
        fedilink
        arrow-up
        15
        ·
        5 days ago

        I’ve been thinking of switching the GrapheneOS. I certainly enjoy my privacy, and are taking steps to move to sources that don’t harvest my data. Outside of YouTube and android I’ve completely degoogled myself, even replaced Maps with magic earth and OsmAnd. I even swapped full time to linux a handful of months ago as a gamer with a VR interest. But I’m not so hardcore to not use any service that might sell my data. I still use vanilla firefox, food ordering apps, and discord for example. So while I’m not someone who goes to extreme lengths to protect my data, moving over to GrapheneOS doesn’t seem like a huge inconvenience compared to the gains you get.

    • Sips'@slrpnk.netOP
      link
      fedilink
      arrow-up
      6
      ·
      5 days ago

      Sorry but it seems I might have been mistaken by calling out Uber on this one. Thought i read about Uber during this but I cant find back to it. Have changed the title.

    • jagged_circle@feddit.nl
      link
      fedilink
      English
      arrow-up
      1
      ·
      5 days ago

      What do you mean webapp? Isn’t the app that you install a webapp? And isn’t a website not an app because you dont install it?

      • seang96@spgrn.com
        link
        fedilink
        arrow-up
        6
        ·
        5 days ago

        PWA - Portable Web App, Apple was going to make this the primary way to run apps but then decided an app store and private stuff was more profit and their support for it tends to be on the suckier side, but has gotten better over the years. You install a PWA in your browser by either “Install” or “Add to home screen” or something like that depending on browser and device being used.

        • jagged_circle@feddit.nl
          link
          fedilink
          English
          arrow-up
          1
          ·
          4 days ago

          Apparently not. I guess some apps you install in the browser. Which is an important distinction, if they’re using the word correctly

          • bitwolf@lemmy.one
            link
            fedilink
            arrow-up
            2
            ·
            edit-2
            4 days ago

            Yes both are PWA capable. However I stand corrected. The McDonalds webapp now redirects you to the play store when you try to order.

            Guess they don’t want me as a customer. (Not that I’d eat McDonalds anyway).

            riders.uber.com is fully functional though, I use it often