Comment by yjftsjthsd-h
1 year ago
> look at the battery life of a linux desktop or a pinephone
Desktops generally don't have a battery. My laptops have perfectly good battery running assorted Linux distros. The pinephone sucks but mostly for hardware reasons; I suspect you would find Android on that hardware to also suck.
> I don’t want a random app to read my browser caches/ssh keys, etc, but if you like any random repo you download having access to your personal files, you do you.
If you must download random untrusted code and execute it, then you should run it inside bubblewrap/firejail/docker.
> I suspect you would find Android on that hardware to also suck
Not at all, android is smooth as butter on even significantly worse hardware.
> if you must download random untrusted code and execute it, then you should run it inside bubblewrap/firejail/docker
There is no if, this is the case for everyone, and thus the default should be sandboxed. Plus, a sandbox should have appropriate channels to communicate with other sandboxes, otherwise you are not ahead even a bit. Just think about a memory unsafe program like a PDF reader opening an untrusted file. It is already ripe for executing arbitrary code, no need for compiling stuff.