pull down to refresh

Graphene. But they're in trouble (and technically so is Calyx). Calyx is not a replacement for Graphene: it's like saying i replace my safe with a stitched pocket.
Graphene is security first, and they have really high standards. But they're a security oriented distro, so you have to have user discipline to make the privacy part work. Calyx is more of a privacy but not so much security build, so you don't get actual security in favor of de-googling.
Ultimately it's what you value most. If you feel like you need real-life security, then GrapheneOS is the way to go. If you just want goog to not know you, but dont care about borders, governments and police, then calyx may do your job for you as long as you realize you are vulnerable when taking a flight or when the govt turns against you.
202 sats \ 1 reply \ @final 5 Aug
GrapheneOS is focused on privacy, the security benefit isn't mutually exclusive. There's a lot of privacy features for per-app privacy like Storage and Contact scopes, sensors and network permission toggle for apps and other features like per-connection WiFi MAC randomization for the OS. Unlike CalyxOS we also are not connecting to Google services by default, which they do for their connectivity check, DNS check, network time, hardware and DRM attestation services. Their MicroG service also runs with privileged access and isn't sandboxed.
Posted a link to a comparison table at: #1065801 that explains things, but there's a lot more to it.
reply
I ended up giving Graphene a whirl. Web installer worked like a charm. Thanks for the info!
reply