I'm thinking OnePlus 3T (or one of their other models) but its definitely chink shit. My friend who was telling me about the parts they put in their phones are garbage compared to others. They also get almost no security updates, so all you're getting is inflated specs at the cost of everything else.
Google Phones seem to be the opposite. Excellent security. Updates. Polish on the features. Can easily install hyper-secure CopperheadOS. However, overpriced asf for the stats.
Samsungs... oh god. Quality parts, sure, but everything else is shit so you're basically buying the brand there. It might as well be Apple except without the highly secure locked down environment, which is half the point.
>I work in CyberSecurity so my likelihood of getting hacked is pretty high, relative security is necessary. Skid protection at the least.
I heard LG might be a good middle ground. Quality parts, not overpriced asf, customizable software. Not sure there though.
Adrian Johnson
Of you want cnstant security updates, go for Google pixel or Any phone that supports lineageOS. With lineage you get the latst security patch when they come out
Elijah Robinson
>Cares about security >"hurr no iPhone pls" >considering One Plus
Bait thread
Cooper Hall
Pixel 2 owner here. Pixels aren't that pricey if you get them from a carrier ironically. Got mine from Verizon for $300 off, you just have to ask. However, you are getting jewed by Verizon so rooting or unlocking the bootloader is a big no-no warranty wise. There's no bloat put in there by Verizon at all, and the one app they install on there (My Verizon) can be uninstalled like any other app.
Easton Reed
300 off a 1200 phone. THaaaaannks but no thanks.
lineageOS is the kind of shit that will get your anus penetrated by skids, I believe. Very insecure.
Kayden Jackson
oneplus could be secure if I put new software on it, right? Got my own update server going for copperheadOS... etc.
Tyler Martinez
>CopperheadOS >only works with jewgle phones
what did the jews mean with this?
Ian Allen
Where the fuck is pixel 2 $1200 fag? Mine was $400 with the deal
Logan Lee
OnePlus is confirmed Chinese botnet now
Definitely you want one without a MicroSD slot. But OnePlus ain't it.
Hunter Wilson
??? It's not 1200. It's like 700. $400 for a phone isn't that steep user.
Wyatt Barnes
>>I work in CyberSecurity so my likelihood of getting hacked is pretty high, relative security is necessary. Skid protection at the least. i too enjoy browsing reddit
Easton Ramirez
If you really care about security and privacy: Librem 5
If you're just LARPing: buy whatever backdoored shit you want
Levi Ortiz
Pixel with CopperheadOS (self-built so you don't have to pay 1000$ for a phone)
Anthony Myers
>Excellent security. Updates. Polish on the features. Can easily install hyper-secure CopperheadOS. However, overpriced asf for the stats.
>I work in cybersecurity >I am too stupid to build it from source myself Nice bait.
Christopher Myers
>lineageOS is insecure based in my opinion Any actual source on that?
Zachary Flores
No, you don't get all the patches with linage, you get whatever the devs are able to backport (unless it's a google phone). The security patch level is set arbitrarily and can not be relied upon.
Camden Peterson
>building your own rom and kernel is ez af these days >people on Sup Forums of all places still can't do it truly
Dominic Garcia
>Any actual source on that?
>I'm not aware of another third party OS doing fully signed production builds with verified boot and all other standard security features left intact. CopperheadOS improves privacy and security over the baseline of the Android Open Source Project. Every other third party OS that I'm aware of reduces security compared to that baseline. There aren't "competitors" to CopperheadOS in the ROM community.
strncat, Android security specialist at Copperhead and developer of the ROM of the same name.
Connor Green
What are the odds of this being unusable at launch?
Caleb Gomez
Didn't you make this thread yesterday dude? You're better off on Reddit, at least they will give you real answers. Sup Forums is a consumer board, you'll be lucky if anyone actually knows what they're talking about and even if they did, they wouldn't share any info with you, just meme on you
Eli Ramirez
Doesn't LineageOS also disable SELinux?
David Howard
>Didn't you make this thread yesterday dude? Yep he did. Let me quote his post from yesterday
>I'm an officer at my college's cybersecurity club and I have a blog about cybersecurity
Dominic Morgan
>Price matters even with a job
Installing an antivirus on your family's computers don't count as work OP. Also who would to hack your poor ass.
Nathan Robinson
Higher than the odds of actually getting the phone delivered in the first place :^)
Wyatt Clark
>quality parts It's bootloop city, don't even bother with LG's trash
Ethan Phillips
You had the same shit thread yesterday, with the same pic, claiming you were at college and you were part of a security computer club.
Now apparently you work in "CyberSecurity".
Did you not get the answers you wanted yesterday?
Why bore needlessly?
You know fuck all about the subject you spout on about and you sound like Nef Quintero.
Please stop posting this shit as you're just embarrassing yourself.
Hunter Mitchell
That reddit shit is retarded, LineageOS does not ship binary blobs, it is the user that needs to keep those up to date.
SELinux is enabled by default.
Isaiah Cox
of course I can compile it myself, but copperheadOS has better native support.
sounds like a solid idea, actually. 549 refurbished on amazon
I'm not sure who ya'll are talking about, but its possible that we both used the same image? Its like first few results on google images.
you can see how the native support for pixel devices, and especially the pixel2, is on a whole other level than the others.
the potential auditing feature sounds cool asf.
Matthew Ross
>LineageOS does not ship binary blobs So how does the camera, modem, wifi, gps etc work? Oh right, you're making shit up.
You can compile CopperheadOS for the Pixel 1 and 2 yourself you big fucking retard. Did you not read my post? copperhead.co/android/docs/building It's free as in gratis and you can modify it as long as you don't resell it as CopperheadOS.
Nathaniel Hughes
Librem 5
This
It will be fine. Their other products were good on launch.
Jonathan Fisher
>it's open source so it's secure! a bunch of pajeets and xiaomings looked at the code trust me!
Christian Morgan
>recommending products that do not exist and have not been tested, audited and verified
ok cool
David Morgan
>oneplus could be secure if I put new software on it, right? Got my own update server going for copperheadOS... etc. There is no CopperheadOS for the oneplus
Juan Price
As opposed to recommending products that have confirmed backdoors and security issues?
Jace Flores
Fucking retarded faggot, download this shit and find me those binary blobs: download.lineageos.org/oneplus3 Oh, right, they aren't fucking there, you have to download them from another source (some pajet on XDA) or extract them directly from Oneplus own ROM. Now fucking kill yourself.
Thomas Russell
>Oh, right, they aren't fucking there, you have to download them from another source (some pajet on XDA) or extract them directly from Oneplus own ROM. wiki.lineageos.org/devices/oneplus3/install You don't have to do that, they are included. Also your original point was a misunderstanding of his reddit post. Security patches in the OS can be done by pajeet devs but upgrades of the drivers (which is a large attack surface) have to be provided by the vendor. That means that no matter how hard pajeet tries to make his rom secure, it all means shit if the phone does not receive regular official security patches.
>As opposed to recommending products that have confirmed backdoors and security issues?>> What's a security issue or backdoor with CopperheadOS? It's completely open source.
Nolan Parker
you can compile and put it on anything anything new that has not been properly tested cannot be trusted. These kinds of security holes are more dangerous than unconfirmed tinfoil hat accusations of backdoors. I understand claiming backdoors if we were talking about stock android but we're not. And again, those kinds of backdoors are not nearly as dangerous as actual security flaws, because hackers, criminals, etc, rarely know about or use those kinds of backdoors. Other security flaws, however...
Easton Butler
to add, you can compile it and put it on anything, but you'll be missing a bunch of features.
I just wish I had the skill to do a proper threat analysis as to what that loss of features means.
Kevin Cook
>you can compile and put it on anything That is not how Android works, especially not with ROMs that rely on vendor-specific features like verified boot.
Nathan Baker
Download the zip and find me those blobs.
Christopher James
What you just posted was a flashable image. Basically what you get when you follow this guide: wiki.lineageos.org/devices/oneplus3/build See the step "Extract proprietary blobs"? That's whats inside the zip. Extract the system.new.dat.br and look in the vendor folder, there you got your blobs.
Jeremiah Jones
Hardware backdoors
James Reyes
This is by far one of the worst things ever made on Sup Forums.
Zachary Myers
Exactly, they tell you to get the required blobs from another source because LineageOS does not provide them. The reason why they are not included in the zip I posted is that there is a single zip for both Oneplus 3 and 3T but they have different blobs.
Gavin Morris
>The reason why they are not included in the zip I posted is that there is a single zip for both Oneplus 3 and 3T but they have different blobs.
But you are wrong. In the provided nightly, the blobs are included. They are ready to flash, no extraction needed. And they are provided via the official website.
Easton Sanders
don't m8 m8, appreci8
what's the point of buying the pixel2 with copperheadOS pre-installed? Just convenience? I'm worried that they have done some hardware modifications to keep secure boot enabled on their pre-installed devices, or something along those lines idk. What do I lose by installing it myself on the pixel2?
Nathan Murphy
How can they be provided if Oneplus 3 and 3T have different blobs but share the same OS image? There is no "firmware-update" directory in that zip, the mantainer for oneplus 3 and 3T also clearly states that before flashing the official nightly builds "You need at least OxygenOS 5.0 firmware, otherwise you'll get error 7 when installing the zip. Latest Open Beta firmware is recommended." forum.xda-developers.com/oneplus-3/oneplus-3--3t-cross-device-development/rom-lineageos-15-1-oneplus-3-3t-t3739169
Christopher Gutierrez
nexus 5x with copperhead OS
Gabriel Baker
name one that's proven please?
Brayden Rogers
Are you baiting? Linage has a Github account specifically for the vendor files: github.com/TheMuppets/proprietary_vendor_oneplus When you flash a nightly in verbose mode you can see that it flashes files like hci_qcomm_init, which is a binary blob.
Owen Ramirez
Im using a LG G3 international phone with a rom that uses no Google API.
Run a VPN
Encrypt data on phone.
Use only safe open source apps
Only take calls and send texts to people using end to end encryption.
Bout as good as you can get. Sadly there is plenty of ways a phone can still be attacked that we simply have no access to update, walled off sections of devices on the modems, usb controllers, and a host of other base level services. There's always a backdoor for the gov, but aside from building your own phone from the ground up and using 100% end to end encryption for your calls, texts and all data, thats about as good as it gets.
