GrapheneOS is not usable, what a joke. Sorry but apps real people use to operate in society need to work
Timeline
Post
Remote status
Context
1We've got people cracking Denuvo and the world's most advanced videogame antipiracy and anticheats shit but nobody can defeat a financial app? It's so dumb.
Replies
11People pay for anticheats; its a lucrative black market. I'd pay for something to bypass this if someone made it
@feld It's been a solved problem for years. Issue is that it requires rooting and graphmeme is vehemently against that, so you are stuck living with sometimes unusable apps.
@phnt which non-google android distribution works? Would gladly switch
@feld None work OOTB, even Google's GSI I think. LineageOS should work with rooting, but you loose signing (verified boot) and cannot lock the bootloader which graphene does. What I used to run was Magisk with Play Integrity Fix module (now maintained by osm0sis I think). That used to be enough for my bank app.
But from looking around for Android 13 and newer you apparently also need a TEE emulator. So it got more complicated in recent years since I've done this. It was always a game of trial and error though.
But from looking around for Android 13 and newer you apparently also need a TEE emulator. So it got more complicated in recent years since I've done this. It was always a game of trial and error though.
@phnt ahh so if I flash lineageos I'll at least have a shot at being able to make it work? Will investigate ...
@feld a shot is probably a good description of that. Google also used to employ a kernel blacklist, so lineage kernels would get blocked anyway. No idea if that is still a thing and lineage doesn't attempt to "fix" any of this on purpose.
@feld It is dumb that your banks use stronger encryption schemes than video games?
You're not dumb at all.
Just a complete bell-end.
@khleedril
> encryption schemes
What does encryption have to do with it? Such a grave misunderstanding of what this is ...
TEE / attestation / challenge-response is not "encryption"
> encryption schemes
What does encryption have to do with it? Such a grave misunderstanding of what this is ...
TEE / attestation / challenge-response is not "encryption"
@feld There's a whole industry of Chinese and Indians on XDA making various Play Integity "fixes" using leaked keyboxes and custom kernel modules that hide system modifications from apps. None of that applies to graphmeme with its "root bad" plilosophy.
@feld Honestly your best bet is to have two phones, one for stuff of a good compliant citizen with mark of the Beast (banking, McDonald's app, etc) and one for your actual digital life.
IMG_20241115_213731.png
IMG_20241115_213731.png
@feld grapheneos doesn’t want to *defeat* anything. they beg app developers to whitelist grapheneos signing keys instead, they just want to be part of the oligopoly