Hi everyone, I’m looking to possibly simply my smartphone setup. I would really love to keep it as a utility: phone, text, camera, GPS, web browser, notes, email, music player. Im think of switching to local NextCloud backup system as well. I currently have an iPhone but used to flash ROMs on Android phones, so I would be willing to do that again for more privacy options and less unnecessary changes to the OS.
I have looked a little into it, and I’m wondering about getting a couple year old Pixel and putting GrapheneOS on it. I also searched a little and came across the Purism Librem 5 that has physical kill switches and sounds neat; a little pricy but I’d be willing to pay if it lasts a while and has good privacy options.
What are your thoughts? Are there other hardware suggestions or setups that you like? The idea of FOSS is appealing because it seems like the money aspect seems to skew the priority of smartphones.
A used Pixel with GrapheneOS is a great option. The install is very barebones, and it’s basically the most privacy you’ll get with a modern smartphone without restricting its ability to be a smartphone.
Great to see people care about their privacy, especially on their mobile devices, as these are often the worst in regards to privacy. GrapheneOS is definitely the best choice, other options are not worth considering. I absolutely recommend against the Librem 5 (or any Linux phone), as these are not really usable, lack essentially every important app and have far worse security than Android or GrapheneOS. There’s a great article about Linux phones: https://madaidans-insecurities.github.io/linux-phones.html
If you want to use GrapheneOS, get a Pixel 6 or newer, because the older models don’t get security updates anymore. The Pixel 6 will be supported until 2026, the 6a until 2027, you can check out the full list out on this site: https://grapheneos.org/faq#device-lifetime
GrapheneOS doesn’t ship any unnecessary bloatware by default, it only comes with stock AOSP applications and no Google services at all. You can install Sandboxed Google Play services from the GrapheneOS Apps repository. For all the other things you need, I recommend searching on F-Droid. It’s a repository of FOSS Android apps that don’t spy on you.
I would really love to keep it as a utility: phone, text, camera, GPS, web browser, notes, email, music player. Im think of switching to local NextCloud backup system as well.
For your use cases I recommend the following apps:
-
GrapheneOS includes their own ‘Secure Camera’ app, but it can’t make use of the post processing in the Google Pixel. You can install the normal Google Camera app from the Play Store through Aurora Store (an anonymous way to download apps from Google Play) and revoke it’s network permission in the settings. The network toggle is a feature unique to GrapheneOS.
-
For maps and navigation I recommend the following solutions: OsmAnd, Organic Maps and Magic Earth. Magic Earth isn’t open source, but they have a good privacy policy and at least in my experience it’s better than the other solutions.
-
GrapheneOS ships with the Vanadium browser, which is a hardened version of Chromium. Vanadium is also used in the WebView API, which other apps use to display web content. If you don’t like to a Chromium-based browser, I recommend Mull which is hardened Firefox.
-
For Notes, I really like Notesnook. It’s open-source, available on F-Droid and if you use their cloud sync feature, it’s end to end encrypted. You can also use it locally and revoke it’s network access, so it never connects to the internet, if that’s what you prefer. Standard Notes is another option. It also encrypts you notes database locally. There’s also Simple Notes, which has less features and it’s fully offline.
-
K-9 Mail is probably the best FOSS email client. There’s also FairEmail, but the user interface isn’t great.
-
Retro Music is an amazing, good looking open source music app. Simple Music is an alternative.
-
If you’re into self hosting, I recommend Immich for syncing photos.
If you find these apps useful, consider donating to their developers. They deserve a tip for making all of this great software available to everyone.
Hope you find this useful.
instead of the simple mobile tools, consider changing them out for fossify versions. Simple mobile tools recently got sold to a company that buys up apps to put ads and trackers in them, Fossify is a fork
I know, but if they add any weird shit to their apps, it won’t be accepted on F-Droid anyway. Also, most of the Fossify apps aren’t available on F-Droid right now. I can only find the gallery app at the moment. Once the Fossify forks of the Simple Mobile Apps I mentioned are available on F-Droid, I will edit my comment.
I know, but if they add any weird shit to their apps, it won’t be accepted on F-Droid anyway. Also, most of the Fossify apps aren’t available on F-Droid right now. I can only find the gallery app at the moment. Once the Fossify forks of the Simple Mobile Apps I mentioned are available on F-Droid, I will edit my comment.
Quik is cool though, I used QKSMS before and I like it more than Simple SMS.
I thank you for your effort in this post, and I appreciate anyone who try to give real and complete answer to this kind of question, but I’d like to point out that madaidan “guides” aren’t reliable, and shouldn’t be linked as useful source of information, since he usually just spread FUD. Nothing he even wrote is actually useful to real users and common people, and even if I understand he know what he’s talking about this doesn’t mean his interpretation is correct. Security isn’t absolute, and safety from any ideal danger that at this time no one even know how to exploit shouldn’t be the ultimate goal for everyone. Sorry for my bad English, I hope I made myself clear
For me, the key aspects for selecting the right hardware are the camera and the comunity support. All the other capabillities you listed are available on any phone that has a relatively recent ROM available.
Let’s start with the camera quality: If you want to use your phone without GSF or microG, you could use the camera app that comes with the ROM you flashed. Sometimes, the picture quallity is decent, but often times its lacking. Instead, I would recommend using a modded GCam App together with fake GSF. This way, you can use googles powerful camera app without sacrificing your privacy. So when I’m looking for hardware, I always check, if there is a modded GCam version available.
Aside from that, I would check if there are recent stable versions of the ROM I want, available for the hardware. The last thing I would check is, how active and how big the modding community for that device is. If you can’t find a lot of support on XDA, it’s probably not the best hardware choice to begin with.
When it comes to software, there are a lot of privacy-friendly replacements to choose from, but here is my setup:
- Syncing Contacts and Todos: selfhosted baikal + DavX5 + Simple Contacts + Tasks
- Syncing Photos: selfhosted NextCloud AIO + nextcloud app
- Syncing Notes: selfhosted webdav + Joplin
- Find My Phone functionality: FindMyDevice
- Maps: OrganicMaps
- Speach to text: FUTO Voice
- Synced Music: Selfhosted JellyFin + FinAmp
- browser bookmark sync: selfhosted webdav + floccus
EDIT: GCam and FUTO are not Open Source, but they are free and don’t collect or require any user data
Simple mobile tools has been sold to a company that buys apps to put ads and trackers in them. They likely wont be open source in the future either anymore. Consider changing the links out for the fossify versions, that’s a fork
Thank you for the list of suggestions; that’s really helpful. I haven’t been on Android in a while, is the Gcam app noticeably better than a stock camera app? What sorts of things would it do better? Low lighting or blur reduction?
I agree about the ROM. I’d really like to have something that is simple and looks to have continued support when necessary for security and other major updates. I also agree about the camera. It seems to be a deciding factor for smartphones. The last I checked the Pixels had excellent sensors but had some camera software issues that I believe were eventually resolved. I’m hoping that isn’t an issue if I’m just using a basic OS.
is the GCam app noticeably better than a stock camera app? What sorts of things would it do better?
As I mentioned in my first comment: “Sometimes, the picture quality is decent, but often times it’s lacking” when it comes to the ROM camera app. How well a camera does, depends on the app (which is supplied by the ROM) and the driver (usually supplied by the manufacturer). The quality can, therefore, vary from device to device. A few years ago I would’ve definitely said that GCam is a step above ROM camera apps, but in more and more cases, those have become almost comparable in quality. One aspect where GCam still actually makes a difference is long exposure modes (low light and night photography) as well as offering special modes like panorama or photo-sphere.
The last I checked, the Pixels had excellent sensors but had some camera software issues that I believe were eventually resolved. I’m hoping that isn’t an issue if I’m just using a basic OS.
From my experience, older oneplus devices (e.g. oneplus 7/oneplus 7 pro) and pixel devices (pixel 5 and upwards) have excellent community support, so you should be golden.
is the Gcam app noticeably better than a stock camera app?
Yes, there’s a very noticable difference.
What sorts of things would it do better?
It uses the custom ML chip in the Google Tensor processor for post processing. This makes the photos and videos look amazing.
Low lighting or blur reduction?
Both, and a lot more.
In my other comment, I outlined a solution for easily installing the Google Camera app.
On GrapheneOS there’s a much simpler solution. Install the Google Camera app from the Play Store (perhaps use the Aurora Store to stay anonymous), install Sandboxed Google Play services from the GrapheneOS apps repository and revoke the network permission for all of those. Also, I tried the Gcam-Services-Provider app you mentioned on GrapheneOS and it didn’t work. microG doesn’t work on GrapheneOS either. Sandboxed Play services is the easiest and best solution.
Pixel with GrapheneOS - no contest. Been my daily driver for ages and I have no complaints in the slightest