I'd love to know how this compares to that. Or maybe there's a way to make that more seemless. E.g. if apps would be shown as Android apps as far as the launcher is concerned.
I went down this rabbit hole trying to see how to make the non-gaming side of a Steam handheld feel like a tablet, and was surprised/disappointed at how spartan the touch-based Linux ecosystem is. There are half a dozen projects trying to make it happen, but they're all really small and mostly independent. There's one guy working on GNOME for mobile, one working on the Maui system for Nitrux…. Canonical gave up on Ubuntu for mobile, so some guy revived that. I haven't been able to try Plasma Mobile 6 because it's not packaged for NixOS, but v5 wasn't usable. Phosh was poorly packaged as well, so I didn't invest much effort there.
Making a good touch UI is a ton of work, but the space so far seems to be mostly filled with people doing hobby projects (or closed ones like Sailfish).
EDIT: https://youtu.be/7vF5647gNbo?t=14340 maybe
Our phones might be our next Desktops/Laptops/main personal computing device: 1. local first (you do go to the bathroom/gas station with your phone) 2. portable 3. reduce ewaste, money spent
The lack of convenience in the form of larger screen might be mitigated using smart glasses, projector(unihertz tank 3 has built in), or just connect to an external monitor
Snapdragon 8 gen 3 performs like cpu from 2020 and midtier gpu from 2016 AVF might ship with android 15 as Mainline module (One need kernel 5.10+)
https://news.ycombinator.com/item?id=30322035 https://news.ycombinator.com/item?id=30328692
There isn't a good project page, it's based at this sourceforgw page and has a surprisingly comprehensive readme.
https://sourceforge.net/projects/android-ports-for-gnu-emacs...
Only if your device is fully supported
I have about 5 "post market" devices and only two of them have any support in postmarketOS: Redmi 4x, in which hardware acceleration does not work and I have not been able to run any DE on it and Pixel 4a, in which judging by the pmOS wiki page works just about everything except the most important part of a modern phone - touchscreen
Many computer users run a modified version of the GNU system every day, without realizing it. Through a peculiar turn of events, the version of GNU which is widely used today is often called “Linux”, and many of its users are not aware that it is basically the GNU system, developed by the GNU Project.
There really is a Linux, and these people are using it, but it is just a part of the system they use. Linux is the kernel: the program in the system that allocates the machine’s resources to the other programs that you run. The kernel is an essential part of an operating system, but useless by itself; it can only function in the context of a complete operating system. Linux is normally used in combination with the GNU operating system: the whole system is basically GNU with Linux added, or GNU/Linux. All the so-called “Linux” distributions are really distributions of GNU/Linux.
For my purposes Lindroid seems less powerful as it requires root and AOSP patches.
[0] https://en.wikipedia.org/wiki/SourceForge#Adware_controversy
[1] https://en.wikipedia.org/wiki/Sony_BMG_copy_protection_rootk...
Phosh comes with some OSes by default: https://phosh.mobi/faq/
> "Is it any good?" is its own question.
Depends on your needs. Daily driver for me.
https://www.theverge.com/2024/3/1/24087418/google-messages-b...
[1] https://github.com/chiteroman/PlayIntegrityFix [2] https://github.com/daboynb/PlayIntegrityNEXT
if only switching banks for such things was easy and realistically doable...
hate that banking apps are such a hassle to live with, but i do kinda get why they're very protective.
I am not sure if a typical Android with a bunch of (preinstalled!) crappy apps is more secure than a GNU/Linux phone relying solely on FLOSS repos.
Changing banks can be easier or harder, depending on your country. People do it: https://news.ycombinator.com/item?id=40678203
Is it really unfortunate that there's no (known) mainline/close to mainline touchscreen driver for the Pixel 4a? Absolutely. But it won't magically appear without somebody putting in the necessary effort.
(small nit: does "whom" even go there?)
They're protecting the TEE because they do not want third parties to be able to automate Google Pay through modified software. This isn't necessarily just about normal end users but more like smartphone farms.
> changing banks can be easier or harder
well the process of changing banks is not the problem, i did leave UBS and Credit Suisse a couple of years ago. but now i'm with a bank i specifically chose because they're actually not financing wars or other unethical things, instead of just saying so for greenwashing purposes. this aspect is more important to me than them open-sourcing their infrastructure.
Not exactly: https://news.ycombinator.com/item?id=40715542
https://news.ycombinator.com/item?id=40714796
Indeed, finding a bank reasonable from every side is much harder.
But I’m still hopeful that phone, email, web, voip, videochat, photo and video editing, location, maps, document sync, etc, will one day work seamlessly on FOSS devices.
I do think that the apps will have to be recreated as FOSS, existing apps will always be antagonistic because they get a lot of revenue from being able to control how/when/where the software is run.
Termux needs to patch most of it's packages and is limited in what it can run since everything links to bionic libc.
I do know, though, that the OP7Pro is one of the last Android devices that are whitelisted by Google to pass SafetyNet without hardware-backed attestation. Shame that TWRP wiped my working setup. I've been trying to get them to add any basic protection against that for over three years: https://github.com/TeamWin/Team-Win-Recovery-Project/issues/...
It is an amazing phone. Notchless, relockable bootloader (not just unlockable, but custom AVB key support!!), in-screen fingerprint sensor, 90Hz AMOLED, and great build quality.
FWIW Google started enforcing those attestations like one month or two ago, and there are many critical bugs. I haven't kept scores, but some other people did : https://x.com/wanghan1995315/status/1803063996204912873
And please note that they only list big brands leaks. Since you can use any OEM's attestation key, /any/ OEM leak can break those so-called "security protections". Even after all security flaws, there is still social engineering. I guesstimate that you could ask an ODM's engineer for an attestation key for like 1k$ and share it to like 20 persons. (200 would probably still remain under the radar, but you need to be capable of keeping a secret with 200 persons)
Though the conclusion shouldn't be that attestation keys are insecure and we need a secure variant (because a secure variant is indeed coming). The conclusion must be that users own the device they bought. Not Google, not Apple.
Why do Transesophageal Echocardiograms[0] need protecting, and from whom do such diagnostics require protection?
I expect I'm missing something, but a web search for 'TEE' only returns that diagnostic test.[1]
[0] https://www.webmd.com/heart-disease/atrial-fibrillation/tran...
[1] Moral: Don't assume everyone knows what a particular acronym means. Just because it's in your head doesn't mean everyone else knows what you mean.[2] E.g., if I say 'JRE' I mean 'Java Runtime Environment' and not 'Joe Rogan Experience'.
[2] According to Piaget[3], people are able to identify that others don't know what's in their heads sometime between ages two and seven.
[3] https://psychcentral.com/health/piaget-stages-of-development...
Inevitably though, the price of these will rise, the most capable eyes on the planet will have a few very thorough looks at all the TPM chip firmware they can get their hands on, and eventually platforms will be so secure and the price will be so high the only ones left to have them are three-letter agencies (if even these).
Anti tamper measures have their place - I'd really love to have a device that cannot have a persistent backdoor implanted - but the very second the state of the anti-tamper measure becomes visible to user-level applications, they become an arms race between Big Money (=DRM rightsholders and big game studios) and my freedom.
The two can be reconciled by not having any privileged keys baked in by the manufacturer. It's only the manufacturers keeping records of the baked in attestation/signing key(s) that allows for remote attestation to be scaled up into treacherous computing. Otherwise if device owners could generate/load new attestation/signing keys and have them be indistinguishable from any original ones, then that same process can be emulated. This would likely require legislation to reign in manufacturers' desires to retain backdoors, but the point is that it is possible from a technical perspective.
No apology necessary. I was just a little confused. Thanks for straightening me out!
To me, your comment comes across as having a rude and insulting tone.
I think the person you were replying to read it in a similar tone to me based on their response. ("No need to be patronizing.")
Is that the tone you intended?
A better way of handling it may have been with a simple, "What does TEE mean in this context please? Googling it didn't help me."
I'm asking the question rather than assuming it was intentional, as you put more effort into your comment than is necessary to just be rude.
It feels like you may have been trying to be helpful and just misjudged the tone. Maybe as a fellow neurodivergent person.
> According to Piaget[3], people are able to identify that others don't know what's in their heads sometime between ages two and seven.
is a little far to be a simple misjudged tone, even if it was intended as a joke. I did find it a bit funny but it still felt a bit insulting too.
That said, thank you for your thoughts on this. I'm glad you shared them. Good on you.
That said, I don't need you (or anyone else, for that matter) to tell me how I should or shouldn't interact with others -- as that's incredibly condescending (and incredibly rude as well) and makes a number of unwarranted (as I mentioned) assumptions.
Again, thanks for your thoughts. I'll give them the attention they deserve.
Edit: Fixed prose.
No. Not a joke. Just pointing out something you already knew: That I (or anyone else) don't know what's going on inside your mind unless you tell me.
That you ignored such a simple truth and didn't think to define your terms was a waste of my time. As such, I felt insulted at your (apparent) complete lack of respect for the time and attention of others.
Take that as insulting if you wish, and if you find it insulting enough, please ignore me completely going forward. I promise you I won't mind.
Have a good day!
Except I did nothing of the sort. I took the information given and attempted to interpolate (unsuccessfully, I might add) what OP was talking about.
While I did make the point that OP should have realized that others don't know what they're talking about if they don't tell us, I most certainly didn't say they shouldn't use acronyms.
Rather, I chastised them for not defining ambiguous terms, which wasted my time and energy trying to figure out what they were going on about.
You could have used your brain and just Googled "TEE Android". But by all means, despite not having either the domain-specific knowledge nor the common sense to manage to Google it competently, feel entitled to be an arse about it. I trust you can read my tone here?
Text parsing/rendering is a security Achilles' heel, and SMS app vulnerabilities are commonly exploited entry points for persistent malware from the likes of NSO. All things being equal, should update SMS apps for the security updates.
My neglecting to define it was not because I was ignoring that not everyone knows everything I do.
There are quite a few acronyms that are widespread enough on HN (or in programming in general) to be used without defining them anew every single time (such as, say, "API"). I hadn't considered that of those, "TEE" is not one. That doesn't mean I don't understand the concept of individual knowledge, only that I don't always put a complete effort into my drive-by comments, and evidently had not into that one.
Even at that point, it would have taken less time for you to ask for a definition without additional remarks that imply I should have known better. Who are you to imply I didn't know better? I'd say that was the real waste of your time, considering it makes up over 50% of the comment.
Additionally, I don't have a "complete lack of respect" for others' time and attention. I would've edited the comment to fix it if it had still been within the edit window. I apologized for having left the definition out because that was an honest mistake, and it was never meant to waste anyone's time or attention. Even before the apology, I don't think it was very reasonable for you to have assumed that the waste of time was intentional, and replied in the way you did.
> Take that as insulting if you wish, and if you find it insulting enough, please ignore me completely going forward. I promise you I won't mind.
I generally don't ignore people until I have nothing left to say to them. But yes, people (myself included) typically find it insulting when you assume bad faith of them. If this was truly your intention, then it is not just my fault for "wishing" to take it as insulting. Your tone has an impact on how others perceive you.
To be blunt, if you are rude on purpose and proceed not to care about how it makes others feel, that behavior isn't welcome here. I can understand if you felt frustrated that I didn't define my acronyms, but that's no reason to lash out about it, even when it's in the form of mere patronizing remarks.
You have a good day too.
So I imagine this will be at least as good.