mikey

@mikey@sh.itjust.works

This is a remote user, information on this page may be incomplete. View at Source ↗

⁨Comment⁩ on ⁨How Google Tracks and Scans Everything on Your Android Device⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:
Holy shit, this article is garbage… the base premise that Play Services can access anything is true, but so many bad claims.

Google Play Services is a system app on phones that ship with Google services, and is the case on the author’s phone too, since he could only disable the app, not delete it. System apps can still be updated separately from the system, if their signature matches the updated version’s signature.

Also, I don’t think they dedicate enough time to describe just how much data Google gets through your device, like how it logs your location for Google Maps’ business popular times indicators and traffic metrics, or how they use all of your data to give you hyper-targeted advertising.

As for microG, it also runs with elevated permissions on most custom ROMs, and for some features (eg. integrity checks) it downloads & runs Google-made programs (eg. DroidGuard) with strong privileges. DivestOS (now discontinued) used to run microG in a sandbox.

There are ways to run Play Services as a normal app if the custom ROM has a compatibility layer for it, like GrapheneOS, where you can selectively enable permissions for Play Services. Of course, if you refuse some permissions, some features will break (eg. refuse SMS/call access and RCS will break), but it’s a mostly usable situation.
⁨Comment⁩ on ⁨Feds in Catalonia, Spain think everyone using a Google Pixel must be a drug dealer⁩ ⁨⁨4⁩ ⁨months⁩ ago⁩:

Strange that google is the only option for the only “secure” operating system.

The have their reasons: grapheneos.org/faq#future-devices

Hey, do you know what is Ring Level minus One ?

I know you’re only trolling here and I’m feeding into it, but you nerd sniped me just right to explain why your question is stupid on multiple fronts.

First of all, “Ring -1” is the hypervisor, at least on virtualization-capable devices (which modern Pixels are), and the hypervisor will be Linux’s KVM in this case, which is open source and compiled by the Graphene team as part of the kernel from source.

Secondly, Arm (which is the architecture basically all phone chips use, including Pixels) has a slightly different model of security, where apps are Exception Level 0, the OS is EL1, the hypervisor is EL2, and the “secure monitor” (or management firmware) is EL3 (and is probably what you were trying to refer to).

So yeah, I don’t think you know what “Ring -1” is. At least not enough to warrant a snarky comment.
⁨Comment⁩ on ⁨In the latest Windows 11 preview build, Microsoft removed the “bypassnro” command, which let users skip signing into a Microsoft Account when installing Windows.⁩ ⁨⁨7⁩ ⁨months⁩ ago⁩:

in the latest preview build

i assume you didn’t install today’s beta release a month ago 😉
⁨Comment⁩ on ⁨Good morning I choose creativity and recycling.⁩ ⁨⁨9⁩ ⁨months⁩ ago⁩:
still water