I feel like Guyana is the Nebraska of South American

So Syria?

That would be quite the discovery

I think most animals are absolutely terrified of anything human

Upvote

Graphene doesn’t play nice with others

rips off mask

It is a vendor kernel!

Honestly we need a community OS like Android/Chome OS

I like Linux but it would be really cool to have a OS that was less modular and more purpose built. I feel like there is enough people interested that we could raise some money to hire some developers. On think Chome OS and Android get right is the hassle free unified experience.

A server isn’t a mobile phone though

Ubuntu Touch, Postmarket OS and others

It doesn’t though

Standard Linux doesn’t check for tampering since that requires hardware and firmware support.

Source?

I’m basing this all on the Android documentation along with my experience on desktop Linux. I would love if there was a Linux system that was as solid as Android but I haven’t seen anything as of yet.

Cyanogenmod is now Lineage OS

That feels a bit like Apples and Oranges…

A lot of the security features are things found in regular AOSP. Sure it does have some cool features but I think the community overhypes it quite a bit.

The biggest “snake oil” though is the sandboxed Google play services. Google services depend on Google to work and require your data to function. Privacy wise I haven’t seen anything explaining how Graphene magically makes it private. If they did somehow make it work offline they would likely get sued by Google for violating Google terms of service since Google play is proprietary. MicroG attempts to solve these issues but the main dev of Graphene OS harassed the MicroG team instead of working with them. That is a common thing in Graphene. The devs like to be the center of attention so they don’t work with anyone else in the community.

Android also doesn’t require root for basic functionality

Flatpak has promise but the sandbox much weaker than Android. I wouldn’t run anything untrusted with it as sandbox escapes are likely possible. Bubblewrap is highly portable at the cost of being less secure. Kernel level sandboxing such as SElinux and Namespaces are much more bulletproof since they leverage the kernel.

Honestly if you are building something from the ground up I would instead focus on virtualization since the Linux kernel isn’t exactly free of security issues.

Sort of

It does use SElinux but the user space software is all Android specific.

Current Linux doesn’t come close to Android. I wish it did but you still need root access and permission controls leave something to be desired. I think that is mostly fine for desktop but on mobile the stakes are much higher since spyware could have much more access.

I would love some more open hardware. I think it is possible for it to happen as long as there is a market for it. The difficult part is getting a 5G chipset that isn’t completely tied to a vendor kernel.