- cross-posted to:
- technology@lemmy.world
- linux@programming.dev
- cross-posted to:
- technology@lemmy.world
- linux@programming.dev
The Free Software Foundation (FSF) today announced its project to bring mobile phone freedom to users. “Librephone” is an initiative to reverse-engineer obstacles preventing mobile phone freedom until its goal is achieved.
Librephone is a new initiative by the FSF with the goal of bringing full freedom to the mobile computing environment. The vast majority of software users around the world use a mobile phone as their primary computing device. After forty years of advocacy for computing freedom, the FSF will now work to bring the right to study, change, share, and modify the programs users depend on in their daily lives to mobile phones.
So they could do it for pixels and this open source firmware could be used by Graphene OS, for example?
The issue is that for the FSF, what they call “software freedom” is their number one goal. So what’s likely to happen is that they create some kind of “deblobbed” firmware that breaks many features and security of the device, which Graphene OS will refuse to use.
I hope this project will be useful but am worried that they’ll just make a shittier version of someone else’s work like they did with e.g. Libreboot.
There’s a bit of hyperbolism and distortion in that comment.
So first of all, the FSF did not create Libreboot, that was just a coreboot distribution by one (or two) people and I would not call it shitty, it had prebuilt binaries with working GRUB configs for the models supported, even allowing for full disk encryption with a well written guide on how to do so.
Secondly, it’s hard to create a chain of trust without trusing the hardware. As long as the manufacturer remains in control of any part of it, you will get the same situation thay we have now. I would rather use a deblobbed device than wait for obscure security features that provide no real-world benefit to my use case.
However, I think this may not catch on. Hundreds of millions of people use completely outdated phones with spyware of some form on them right now, they simply don’t care.
Indeed (as I said) they did not create it, they made a shittier version of it, called GNU boot. Or I guess maybe not “the FSF” but devs under their umbrella. I think Linux Libre would be a better example. Or all the crappy “FSF approved” distros listed on their website.
That’s true but that’s not really their stance. They trust the hardware and the software running on said device, as long as they don’t have access to the software. Microcode updates are an example of this. They don’t like microcode “blobs” in the kernel but trust the outdated vulnerable microcode running on their CPU.
I would not. I would prefer not to get hacked by spectre type attack. I also don’t like broken virtualization on my CPU and don’t want my CPU to destroy itself by high voltage.
But yes, I agree that to trust the software, we need to trust the hardware first. This also means that there is basically no “Respects Your Freedom” hardware. Every such hardware runs proprietary software which the user cannot see. And even if it ran no such software, it’s still just proprietary hardware, which we cannot study, create derivatives, etc. If I ran the FSF, I would acknowledge that there is nothing but grey area, instead of drawing an arbitrary line through the grey area.
Going back to phones, I am just worried that the Librephone project will focus too much on moving the proprietary parts from software to the hardware instead of actually helping users to get more freedom.
Yes, though the future of GrapheneOS on Pixels after 10 is currently in question