43
submitted 10 months ago by loopy@lemm.ee to c/foss@beehaw.org

Hi everyone, I’m looking to possibly simply my smartphone setup. I would really love to keep it as a utility: phone, text, camera, GPS, web browser, notes, email, music player. Im think of switching to local NextCloud backup system as well. I currently have an iPhone but used to flash ROMs on Android phones, so I would be willing to do that again for more privacy options and less unnecessary changes to the OS.

I have looked a little into it, and I’m wondering about getting a couple year old Pixel and putting GrapheneOS on it. I also searched a little and came across the Purism Librem 5 that has physical kill switches and sounds neat; a little pricy but I’d be willing to pay if it lasts a while and has good privacy options.

What are your thoughts? Are there other hardware suggestions or setups that you like? The idea of FOSS is appealing because it seems like the money aspect seems to skew the priority of smartphones.

you are viewing a single comment's thread
view the rest of the comments
[-] library_napper@monyet.cc 2 points 10 months ago

Nextcloud doesn't have e2ee. Use something better.

[-] IcyPenguin@beehaw.org 3 points 10 months ago

It doesn't matter if you host it yourself. You should still have full disk encryption (LUKS on Linux) enabled on your server though.

[-] library_napper@monyet.cc 1 points 10 months ago

It does matter if someone can break into your House

[-] ArcaneSlime@lemmy.dbzer0.com 1 points 10 months ago

If someone breaks into my house they have a lot more to worry about than me hosting pirated content to myself. Hope they can dodge supersonic rocks!

[-] Vega@feddit.it 1 points 10 months ago

If physical security concern you, you should encrypt your disk, but e2e isn't really useful if you host your instance and use a VPN to connect (it's not necessary even if you trust the 3rd party that host your data, actually)

[-] library_napper@monyet.cc 1 points 10 months ago

By e2e I mean client side. Someone who gets physical access to the server should not be able to view your files.

[-] Vega@feddit.it 1 points 10 months ago

Mmm... I still think you mean server side: if someone seize your server shouldn't be able to read your file. If someone have physical access to your server while it is still turn on and not rebooted, it will have access to your files even with e2e turned on. E2e encrypt data while it is transfered from client to server (in case of nextcloud)

[-] library_napper@monyet.cc 2 points 10 months ago

If someone have physical access to your server while it is still turn on and not rebooted, it will have access to your files even with e2e turned on

Thats not true. For it to be e2e the encryption must be done client side, by definition. The keys are stored on the client. The server cannot decrypt the data.

Nextcloud does not offer e2ee.

[-] Vega@feddit.it 1 points 10 months ago

You're right, I'm dumb. Nextcloud has a e2e plugin, but you have to lose a lot of functionality, and I still think it isn't worth it if you host your own instance

[-] IcyPenguin@beehaw.org 1 points 10 months ago

That's why I recommend full disk encryption. If someone steals your hard drives, the data is inaccessible without your password.

[-] library_napper@monyet.cc 1 points 10 months ago

That doesn't apply to servers. Unless you turn off the server every time you leave the room.

load more comments (8 replies)
this post was submitted on 05 Jan 2024
43 points (100.0% liked)

Free and Open Source Software

17915 readers
59 users here now

If it's free and open source and it's also software, it can be discussed here. Subcommunity of Technology.


This community's icon was made by Aaron Schneider, under the CC-BY-NC-SA 4.0 license.

founded 2 years ago
MODERATORS