Comment by gf000
4 days ago
But that's more like talking about a particular distro, like I wouldn't trust North Korea's Linux distro either, compared to Debian.
Meanwhile something close to GrapheneOS running on desktop sounds fantastic.
4 days ago
But that's more like talking about a particular distro, like I wouldn't trust North Korea's Linux distro either, compared to Debian.
Meanwhile something close to GrapheneOS running on desktop sounds fantastic.
Perhaps you may like Qubes OS.
Suggesting Qubes OS as the GNU/Linux equivalent of Android is admitting defeat. Android sandboxes multiple apps running on the same system/kernel. Qubes OS sandboxes multiple apps running on multiple different systems (VMs). Qubes, laudable as it may be, is not a parallel to Android.
Qubes is a much more secure alternative to Android without its main downside, which is that Google owns it and steers its development toward enshittification and control [0]. The latter even affects security directly [1].
Android's sandboxes are weaker and AFAIK rely on closed, non-auditable hardware (which is owned by Google in, e.g., GrapheneOS). Qubes protects you more reliably and doesn't require to abandon root privileges or a possibility to take screenshots.
Also, you don't have to run every app in a dedicated VM on Qubes: Instead you group them into security domains, which allowed me to organize my digital life like never before [3].
In addition, Qubes can protect you from supply-chain attacks by isolating VMs from the network and using different OSes side by side. I dream of using Qubes on mobile.
[0] https://doc.qubes-os.org/en/latest/user/how-to-guides/how-to...