@kev @purism you may also wanna add that it lacks default disk encryption, apps run unsandboxed by default, and lacks any kind of boot security.

It litterly sets back years of security advancements made in the mobile space.

@blacklight447 @kev not defending the librem 5, but not sandboxing apps is totally fine if you install them from a trusted distribution. It's only necessary on Android because Google Play is a malware distributor. Debian is not.

@sir yeah, I see your point. Lack of local FDE is a big miss though, if that's actually the case.

@blacklight447

@kev @blacklight447 I don't know about the defaults, but pmOS supports the librem 5 and has FDE support.

@kev @blacklight447 with truly open phones, the idea of using the stock OS is about as dumb as the idea of using the OS that comes with your laptops. I would expect to reflash any open phone on day one.

@sir @kev but if your not expected to run the stock os: 1. Why do they even develope it in this case?
2. Then it shouldn't be marketed as something normal end users could/should use, but only tech savvy folks with 800$ to burn.

P.s. the librem 5 is still full of binary blobs, so its not even nearly "truly open"

@blacklight447 @kev they might expect you to run the stock OS, but _I_ don't expect you to run the stock OS.

Also, we're not talking about security anymore. For the record, I don't like the Librem 5 for a multitude of reasons. I am not defending it.

@sir @kev thats okay, my opinion on the matter is: if you are a tinkerer who likes messing around with your device, then the librem 5 is just for you, but its just not ready for normal end users to adopt, i would say having default disk encryption enabled is a fair minimum requirement for mobile devices.

@blacklight447 @kev I think you have a lot of work to do if you want to get FDE by default on most mobile devices

@sir @kev i would say thats less unlikely then you think, android has had default encryption since (i think?) Android 5, ios has had it for ages as well. Laptops are more problematic, but atleast mac os and linux have out of the box support(not turned on, but support). Regarding windows, MS need to get their ass of the enterprise throne and allow windoes home users to utilize bitlocker

@blacklight447

You strike me as a #qubes user. If someone ported #qubes to the Librem 5 would you consider it?

@sir @kev

Follow

@maryjane @sir @kev well qubes is not a distro that you can port easily, this is because it utilizes hardware features for its isolation, currently it uses intel vt-d and vt-x. Btw yes im a qubes user ;)

qubes-os.org/team/

@maryjane @sir @kev dunno, you tell me, but porting it would be a massive undertaking , if you were to do that, i would port it to power 9 instead of arm, so you can run it on ACTUAL open source hardware like the talos II :D

@sir

Yes, RISC-V FTW

@blacklight447

"ACTUAL open source hardware"

well if you are going full stallman on this, then I gues syou have no love for the Pinephone as well?

Or was that comment just to spike me ;)

@kev

@sir @maryjane @kev well i currently like power 9 more because it atleast has computers which would even be able to run qubes resource wise :p

Sign in to participate in the conversation
Mastodon 🔐 privacytools.io

Fast, secure and up-to-date instance. PrivacyTools provides knowledge and tools to protect your privacy against global mass surveillance.

Website: privacytools.io
Matrix Chat: chat.privacytools.io
Support us on OpenCollective, many contributions are tax deductible!