Previously: Part Zero, Part I.
Part II: Mobile Operating Systems
In Part I we introduced operating systems and discussed some alternatives to Windows and macOS. Recall from Part I that Apple’s devices and OSes are joined in such a way that it is impractical, if not impossible, to replace the OS on an Apple device with an alternative. This is especially true of Apple’s mobile devices, and there are currently no alternatives to the factory OS on any iDevice. That being the case, the present discussion of mobile OSes will by needs ignore the Apple mobile ecosystem.
Thus we arrive at Android, almost certainly the worst offender in OS privacy. This shouldn’t be surprising, of course. Google is an advertising company, and every product they develop is in furtherance of selling ads, from their web browser (more on that later), to their search engine, to their email service, to their mobile OS. The Android OS that makes its way onto your smart phone begins life as the Android Open Source Project (AOSP). AOSP is the bare bones of the OS without any Google services, specific hardware drivers, or third party applications. As the name suggests, it is fully open source, so anyone can use or modify the source code, and that’s just what third party ROM developers do.
ROM is an acronym for “read only memory”, and in the context of Android it’s actually a misnomer. An Android “ROM” is just a flashable OS image that can be written to the device, more similar to the actual definition of firmware. The upshot is that, thanks mostly to the largely unpaid work of volunteers who integrate the drivers and kernel for a mobile device with the AOSP source code, there are a variety of third party Android OS images available for a variety of mobile devices that you can use in place of the larded up spy-happy version of Android that the manufacturer installed. Unfortunately, unlike with desktop and notebook PCs, the firmware and standards for mobile devices are not as open and interoperable, so whether a particular device is supported by a third party ROM is often a crapshoot. If the manufacturer has locked down the bootloader or not made a device tree and device drivers available, you’re out of luck. Of the hardware manufacturers, Motorola and OnePlus (now Oppo) generally have the best support for third party ROMs, while some of the more premium brands like Samsung tend to lock down their bootloaders, firmware and drivers. Devices that are locked to a specific cellular carrier are usually the most difficult to mod, even if the carrier lock has been removed, as these devices typically have non-unlockable bootloaders and hence cannot boot any alternative OS. Even a carrier-locked variant of the exact same unlocked device will usually not have an unlockable bootloader. You can get a good idea of which phones will have the best third party ROM support by looking at the LineageOS device database. Pay careful attention to the actual model numbers listed as compatible rather than the generic handset name to avoid the aforementioned issues with incompatible or carrier-locked sub-models. Officially supported devices will usually have an easy time running any third party ROM, not just LineageOS. With US mobile carriers having just switched off their 3G networks, it is important to verify that voice over LTE (VoLTE) and/or 5G is supported by the device and OS. This can be complicated, especially if you use AT&T or a MVNO that uses AT&T’s network infrastructure, as AT&T has implemented a device whitelist for VoLTE. Even if your device supports VoLTE (at this point pretty much all devices in common usage do), and even if your ROM includes the correct drivers to implement it (this is hit or miss – check the device database), if the device is not on the whitelist it will not work on AT&T’s network. You must cross-reference the AT&T device whitelist with the LineageOS device database to ensure compatibility. T-Mobile and its MVNOs are much more flexible with provisioning devices for VoLTE, and generally any device with VoLTE capability in the hardware and OS will work on T-Mobile’s infrastructure.
The aforementioned LineageOS is a third party AOSP-based ROM that sticks very closely to stock AOSP, and by default does not include any Google services, including the Google Play Store. This does not leave you without the ability to install new software, as you can sideload APK files onto the device or use an alternative app store, like F-Droid or APKMirror. LineageOS is my preferred mobile OS and the one that currently runs on my mobile device. My mobile phone needs are very simple: I need to place and receive phone calls, send and receive SMS and MMS text messages, play locally-stored music in my car, and have access to the web and email. I do not have a Google account and do not use any Google services. If your needs are more complex and you wish to use Google services, you can add that functionality to LineageOS by installing MicroG, which is an open source re-implementation of the Google Play Services APIs. If you don’t know what any of those words mean, in essence it allows you to have access to the Google Play Store and most Google apps and services (Maps, Gmail, Drive, etc) without having the proprietary Google Play Services software installed on your device. Quite obviously, this is not a privacy schizo recommended solution, as breaking away from Google’s surveillance is one of the key reasons for installing a third party ROM in the first place. But even if you don’t typically use many, or any, actual Google apps, there may be third party apps you use that make use of the Google Play Services APIs. This is particularly true of banking apps, which rely on Google Play Services for “security”. I personally won’t have anything associated with my bank accounts or money on my phone under any circumstances, but as I said, my use case is uncommonly simple. You can still always use your bank’s website to access their online banking features from the browser of your mobile device just like you would with a desktop or notebook computer, but some banks include additional functionality in their official app that isn’t available from their website. If you need that sort of functionality, that’s where MicroG can help.
There are several forks of LineageOS that add or remove certain functionality. /e/OS is one such fork, which attempts to replace many Google services with their own alternatives, and includes MicroG by default. DivestOS is another such fork, which focuses on free/libre software and supports some older devices that are no longer supported by LineageOS. But there are other options as well. If you stick to the Google Pixel hardware lineup, GrapheneOS and CalyxOS are alternative ROMs that are security-focused, tightly integrate with the hardware and preserve the Google services you may depend upon in a less-invasive manner. GrapheneOS accomplishes this by implementing the proprietary Google Play Services software as a user program that is sandboxed from the rest of the system. CalyxOS, like LineageOS, relies upon MicroG for that functionality. Each method has its supporters and detractors. My preference if I had to choose would be MicroG because I prefer to avoid proprietary software to the maximum extent possible. However, because MicroG is a reverse-engineered version of Google Play Services, not everything works. Certain apps you install may expect certain API features that aren’t there and not run properly. GrapheneOS, by using the proprietary Google Play Services APIs, but isolating them from the rest of the system, avoids that problem, and furthermore they argue that this is a more secure way of implementing those features since the Google Play Services do not have elevated permissions, while MicroG runs as a privileged program. I will leave it to the reader to do their own research and decide which method they would prefer. There are other differences between GrapheneOS and CalyxOS as well, a brief summary of which can be found here. Either OS is a much better alternative to the stock Android OS shipped with the device, and the differences come down to different priorities and methodologies of the respective development teams. The online pissing matches between GrapheneOS and CalyxOS users are a legendary example of the aforementioned performative extremism of the privacy schizo community. Suffice to say, both are good choices, and unless you have very specific requirements and/or very strong feelings about particular software development and security practices, a coin flip will make a good decision either way.
Flashing a third party ROM to an Android device, particularly if the device has official support from the ROM developer, is fairly trivial, although you will have to type a handful of commands into the dreaded command line. If that doesn’t sound appealing to you, there are a few options to buy phones with a third party ROM preinstalled. Private Phone Shop sells a small variety of refurbished phones with your choice of third party ROM preinstalled. Privacy Practical sells phones from the Google Pixel lineup with GrapheneOS or CalyxOS preinstalled. Murena is a project of the e Foundation, developer of the aforementioned /e/OS, which sells devices with /e/OS preinstalled. Be prepared to pay rather exorbitant prices at these sellers. For instance, the Motorola One 5G Ace being sold by Private Phone Shop costs $349. A couple of months ago I paid just under $200 for the same model in like-new condition in the original box on eBay and installed LineageOS myself. That’s a healthy premium for about 20 minutes worth of total work. But if you aren’t inclined to DIY, ask yourself if your time, privacy, and data are worth the added expense. I know many of us have hobbies that cost more than $149 for one day’s entertainment.
On a final note, you can also install a Linux-based OS onto a very small number of smart phones, and there are two smart phones currently being marketed that are designed as Linux devices from the ground up. UBPorts and postmarketOS are two older Linux distros that predate the two Linux phones currently on the market, and have been ported to a small number of Android devices. The two Linux phones currently on the market are the Librem 5, available from the aforementioned Purism, and the PinePhone and PinePhone Pro, available from Pine64. The Librem 5 and both models of the PinePhone support both UBPorts and postmarketOS, as well as several other mobile Linux distros. However, even as a Linux enthusiast and privacy schizo, I cannot recommend any of the Linux phones as a mainstream consumer device. I pre-ordered the original PinePhone months before release and was one of the first people in the US to receive one. I dabbled at it for several months before finally selling it to a developer to tinker with as it was simply unusable as a mobile phone at that time. While the state of the software has improved immensely since those very early days, I have followed the progress pretty closely and I still do not believe that either iteration of the PinePhone, nor the Librem 5 are quite ready for prime time to replace iOS or Android for mainstream phone users. If you like to tinker, the original PinePhone in particular is a good option as it is relatively inexpensive and completely hackable. But if you can’t tolerate abysmal battery life and at least occasionally having to open a console and type commands on a touch screen keyboard, these are not the devices for you. For the price of a Librem 5 or PinePhone Pro, you could get much better hardware specs with a de-googled Android OS preinstalled and be much better served.
TL;DR: Consider installing a third party Android ROM, like LineageOS, /e/OS, GrapheneOS or CalyxOS, and avoid Google services. If you would prefer not to install a third party ROM yourself, consider purchasing a phone that runs an alternative OS from a company like Private Phone Shop, Privacy Practical or Murena.
Next week, “Part III: The Cloud.“
Next week, “Part III: The Cloud.“
Sounds like a short article: Don’t use the “Cloud” if you want to maintain your privacy.
One hand washes the other.
The third hand jerks off.
They don’t call it “the gripping hand” for nothing.
Almost forgot what I had to do today.
Nut health November.
With machine technology there is no truth to the trope, “I am too small for them to notice my stuff on the cloud.” Nope. The opening photo of HAL is too true.
“I’m sorry, Dave, I’m unable to comply with that request.”
Shorter series: don’t go online.
Spoiler alert, Ted!
It is, in fact, the shortest article in the series, but not quite that short.
Far too many Acounting programs have gone cloud based. No thanks. If the IRS wants to look at my stuff they can come to my house with a warrant.
Thanks for writing.
Since I barely use my phones for other than phone calls, trying to replace the OS sounds like a huge PITA that isn’t worth doing.
“I still do not believe that either iteration of the PinePhone, nor the Librem 5 are quite ready for prime time to replace iOS or Android for mainstream phone users.”
That’s disappointing. Also $400 for a PinePhone Pro isn’t inexpensive.
All things being relative. The Librem 5 is about $1,300 for worse hardware specs, although the software experience is more tightly integrated (Purism is playing Apple to Pine’s Google, if you will).
*gasp*
That’s more than three times my iPhone. Yeah, I have the cheap one. I have no idea what another $700 or $800 is supposed to accomplish. It makes phone calls, it plays music, it holds my shopping list, it displays books (and I don’t even use that anymore since I stopped commuting).
This has been my favorite of the series. Thanks for taking the hit on the Pinephone. I almost got that. You have me itching to install clean degoogled Android on a phone.
You think this is great, you should see the paranoid fantasies yet to come.
I can see that Pat’s tinfoil hat rivals mine. Unlike Trump, I accept and celebrate my rivals.
We’re gonna have a YUGE, big, beautiful tin foil hat, and Google will pay for it.
Yay!
My beloved street urchins, the both of you. Now remember, for every shilling you nicks I get a threepence.
Is that the deal Biden struck with Sam Bankman-Fried?
I still do not believe that either iteration of the PinePhone, nor the Librem 5 are quite ready for prime time to replace iOS or Android for mainstream phone users.
Ouch. I was hearing good things about PinePhone. Oh well.
The PinePhone is certainly in a state where it’s usable now. The progress on that really has been impressive, considering there are no major corporate sponsors of the project. If you’re an enthusiast, or you can put up with some minor hiccups like occasionally having to restart the modem from a terminal, it’s well worth a look. But it’s just not quite a consumer appliance yet, IMO.
OT: How is the house hunt going?
I’ve got a pretty good list of properties compiled that would be compatible with my current price range, but still haven’t put in any offers yet, as I want to be certain my budget can’t go any higher and we’re still at the “hurry up and wait for Medicaid’s filings” stage of probate. There was a place in Gilmore that caught my interest a few weeks ago that I was prepared to move on, but the seller had just inked a contract with another buyer a couple days before I inquired.
“If you’re an enthusiast, or you can put up with some minor hiccups like occasionally having to restart the modem from a terminal”
That’s the last thing I want to do if I need to make a phone call.
#metoo
It doesn’t seem to be an every day type of occurrence anymore, but was still happening sometimes when bringing the phone out of suspend on incoming calls not too long ago. Which in and of itself is major progress from the early days when suspend wasn’t even functional and the battery would die after 8 hours on idle. The pace of development is still pretty brisk, so things still break from time to time.
https://i.imgur.com/Qo4ETVI.jpg
NSFW.
https://i.imgur.com/QmLMxNW.jpg
NSFW.
https://archive.ph/Jkuyi/d2937a04d82954d8461fe7ad36312fb1960ddfad.webp
NSFW.
https://archive.ph/TARov/8399dc70b5aa18c947f74eeabcbaeee8c43ccd4d.webp
NSFW.
Temperatures finally reached chilly, so I decided to carry my coat just in case. Problem was, I couldn’t find it. I hadn’t used it since spring, so I kept wracking my brain, asking where I could have left it. Had to be in the house, I knew that much.
I did eventually find it. It was on the coathook. That I made in blacksmithing class. And attached to the wall specifically for the purpose of hanging my coat. It had been there all summer.
tl;dr – I couldn’t find my coat because it was exactly where it was supposed to be.
I’ll bet that was the last place you looked, too.
Well, once I found my coat, why keep looking for it?
Who knows what else you’d have found?
His other coat?
Well, g’Night Glibs.
Isn’t the cloud just some guy’s computer?
Yes.
Does it use a series of tubes?
No, now we use switches.
BJT, FET or MOSFET?
I don’t know, most of them just say Cisco.
I think it has things that go up.
Go on…
See my posts above.
It’s a beauty.
Don’t fall in love. She’s a one in a million girl.
Why would I lie?
https://www.youtube.com/watch?v=mQ_k_VG6Syc&ab_channel=TheTubesVEVO
No. So don’t stop saving those pics to my, I mean the cloud. You know. The candid shots. Wink wink, nudge nudge.
ALL YOUR PENIS PICS BELONG TO US
ATTEMPT NO “LANDING” HERE, IF YOU KNOW WHAT I MEAN AND I THINK YOU DO
I love the idea of having to pay extortion to access documents I created.
Let’s celebrate the reign of terror.
https://japantoday.com/category/sports/paris-organizers-reveal-mascot-for-olympics-paralympics
The need a dancing guillotine to go with that hat.
Also, lol at the second comment on that article.
lol wtf is that? and I thought Atlanta’s was bad.
Though I probably shouldn’t say anything since I’m sure the LA one for 2028 will be terrible.
Thanks for the excellent article, Pat. I would be interested a de-Google-ized phone someday. I have to think I’m not the only one.
The performance of my Samsung S9 is piss-fucking-poor. Texts are not reliable. It sometimes refuses to receive calls, preferring to shuttle them to voicemail. Voicemail sometimes garbles the message, usually at inopportune times. It doesn’t work well with my VPN. Google maps sucks. Apple Maps suck worse.
Come on, man! This is the best you can do?
THAT FACE MASK GRAB NO-CALL WAS BULLSHIT!!!!
/no dog in the fight
I swear, the officiating this year has been sucking big, fat donkey cock.
It was, and I don’t get what is the point with reviews if they refuse to review obviously bullshit calls.
It’s like the sports version of elections.
The Eagles are apparently having an off night.
Tell me about it.
/Josh Allen
Oh yeah. The bits I saw were rough.
Found out a coworker of mine the last few years had passed away in February. Cherubic, old Japanese lady that liked the drink and a devoted Go Hiromi concert goer. Always laughing and just let comments that she didn’t like (if there were any) slide by without comment or reaction. She had a two year old grandchild she gushed about. Fun hearted jokes at her husband’s expense. I didn’t know her very well, so I’m feeling a bit gray. Sad? Can’t tell, yet. No idea how I’m supposed to feel when tangential people kick the bucket.
Go
https://m.youtube.com/watch?v=f8XUgBMSDWo
Sorry, friend. You never know how those random deaths will affect you. I remember crying over someone that probably gave not a whisk of a lamb’s tail about me.
This is such a good Thievery Corp/Flaming Lips track. I hadn’t heard it in a couple years. Reminds me of the mid 2000’s.
https://www.youtube.com/watch?v=Zr1sgXQyLsQ
Love that track. Comes up on Groove Salad now and then.
In that vein, love some Lemon Jelly https://youtu.be/F5FmBml6ZiE
Just watched Tulsi fill in for Tucker. Aside from a few hiccups she may have found a new gig, just like the old Gypsy said.
Still don’t trust her.
Nope.
She was my congresscritter. No trust from me either.
I am pretending that everything is fine. That’s my way forward and I’m sticking to it. Depends upon how sleepy I feel.
Now to go back to read Animal’s story and get some sleep.
Right there with you
https://giphy.com/gifs/XEo7YJHUeplXa
That’s a “pinky swear” going forth.
Festyvus! How you been?
I just had the flu (best guess, anyway) but recovering.
Have you tried some maca root?
“I am pretending that everything is fine.”
A form of Stoicism, I believe. Hang in, bro.
I need to buy new wiper blades today.
Morning y’all.
https://www.bbc.com/news/av/world-australia-63630971
Flooding should kill the spiders, right?
https://www.cnn.com/2021/06/16/australia/spider-webs-australia-floods-scli-intl/index.html
https://www.wfmz.com/news/in-asylum-dispute-austrian-mayor-takes-down-migrant-tents/article_504ae3f3-43fb-5777-ab71-a5d15a7e0448.html
Based.
https://www.pennlive.com/elections/2022/11/katie-hobbs-beats-kari-lake-in-arizona-gubernatorial-race-flipping-state-for-dems.html
Sad.
She refused to recuse herself from counting the ballots as AG and she squeaked out a close race. Who could have seen that coming? Fortified? Maybe, maybe not, but as fishy as fuck.
LOL why would Lake accept the result claimed by an outfit that is obviously biased in favor of her opponent.
Not surprising, if that’s the way it goes. The Repubs here adamantly refused to fix our voting system after 2020, even after watching both Senate seats go to then Dems. We also have another Dem Sec State, and if Hobbs clinches, no hope of any electoral reform, and little prospect of anyone but a Dem winning a statewide race again. All so easily avoided (or at least postponed), but nope. Spineless idiots gonna idiot, spinelessly.
https://m.youtube.com/watch?v=75geStyepkc
Random.
suh’ fam
whats goody
Good morning, homey, Stinky, & Sean! I spent most of yesterday evening wrassling with a slightly lower-tech device – I was trying to relearn how to operate my only-used-a-few-times-and-not-for-a-long-time overlock/serger sewing machine in hopes of using it to make new sofa cushions. I already have the foam cut, so now it’s on to pick out the fabric. Please don’t ask why I consider the need for new cushions urgent. (::glares at a certain cat::)
I understand sewing machines involve sharp pointy things. Which is why I keep them at a safe distance.
Yes, and I managed to break one of the sharp pointy things in the process of testing the stitching. Luckily, I had lots of spares – it was just tricky to get the new one in, as the opening was down where I couldn’t see. Had to use a dental mirror to find where to put it.
Metro Silver Line extension opens today
Only 4 years behind schedule and $250 million (8%) over budget. Efficient compared to California’s magic choo choo.
They do love their damn trains.
It could be worse, a streetcar.
Can’t send boxcars of badthinkers to the camps without trains, after all.
Sure you can. Use rickshaw wagons.
I mean, the boxcar might run over the pullers on the downhill, but that’s why you have badthinkers pull it.
Mornin’, reprobates!
Good morning, ‘patzie! How are you and all of yours today?
Cold. New boiler has now shut off overnight for the second consecutive night. Installer will be here today, probably a faulty software component (on topic for Pat’s series, sorta).
Oh, no! Leave it to software to screw up a machine that’s been functioning in the analog realm for generations! 🙄 Hope it’s fixed ASAP!
Morning, Glibs.
Mornin’, U.
Anything new with you other than the chill?
Good morning, U! How are you today? Sleep schedule back on track?
Not so far, I still slept in too late despite getting to bed at a reasonable hour. And I’m having trouble focusing my eyes on my screen to read emails.
However much I don’t want to read emails, I am required to for my job.
Daily Quordle 295
4️⃣5️⃣
9️⃣6️⃣
quordle.com