Hello, has anyone ever tried installing Qubes OS on any smartphone devices?
1 Like
Xen4Android is still in development. No device builds have been released yet. I am not aware of any other project that is attempting anything similar.
6 Likes
Thank You.
1 Like
off-topic
GrapheneOS will protect your local drug dealer.
Unnecessarily caustic choice of words. No need to use “drug dealer” as
an example userbase for GrapheneOS; your example doesn’t make the
privacy community’s point stronger, but weakens.
Then again, I should stop replying to you as your forum post
interactions as a whole are unnecessarily combative and caustic – don’t
got time for petty internet fights.
6 Likes
Hello, does anyone ever try to install QubesOS on smartphones?
The closest thing you have to this using GrapheneOS on a Pixel 8 (and
newer) device, and taking advantage of the
- desktop mode
- multi account features
of GrapheneOS (and greater android 16) features.
You can even turn your GrapheneOS device into a “laptop-like” using
something like NexDock[1], and you can then also use Termux app from
F-Droid[2], or Android 16’s built-in Debian Terminal App (currently
beta) to access full fledged linux terminal environments.
Footnotes:
[1] NexDock | Nex Computer
[2] Termux | F-Droid - Free and Open Source Android App Repository
3 Likes
off-topic
Your reply raises a very interesting question for me: AFAIK posts cannot be deleted on this forum, and no edits are apparent in any of the preceding posts in this thread, and yet the quoted excerpt does not appear anywhere! 
Is there shadow modding going on?
1 Like
off-topic
Just to let you know, I flagged the now missing post as off-topic, to avoid exactly what is going on here 
But I don’t know why it is not marked as “hidden”. AFAIK @tanky0u uses the forum in mailing-list mode, allowing them to see hidden content.
The question was precise and @OvalZero gave a precise answer, there is not much to add.
4 Likes
See also:
3 Likes
GrapheneOS is closest what you can find. However it is not as secure as people may think. So even GrapheneOS needs to be taken carefully for sensitive data.
1 Like
Last updated on Aug 30, 2018
1 Like
“It is not as secure as people may think” is not meaningful and only creates uncertainty. What specific weaknesses does GrapheneOS have that you’re referencing, and what specific perspective about GrapheneOS are you talking about?
2 Likes
As long as you have a GSM or 1.5/2/3/4/5 G chip on your phone, your carrier … how can I put this concisely?.. “your carrier has root in dom0 on your device”.
2 Likes
You’re going to need to provide a credible reference for this. GrapheneOS does not give carriers privileged access to the OS.
Without any source, this is baseless misinformation and only serves to promote fear and uncertainty about mobile phones.
3 Likes
The operating system (GrapheneOS, other Android, or other) runs on cores that do not control the system on chip. The system on chip is not one computer but a collection of computers. There is other software running on other cores that have higher privileges on the system on chip. This other software can read (and probably also write) to the RAM that is accessed by Linux.
In the talk shared in the previous post on this thread, the speaker explains how wifi software on a Samsung system on chip is running on a core outside of Linux’ purview. This completely breaks Linux’ security model.
The nuance I would point out in response to @barto is that the carriers have a limited purview for what baseband firmware can do. In the cases where baseband firmware is abused to victimize the user, the carriers are a mere agent that do not have discretion to use/abuse the baseband firmware. The carriers are merely a proxy for some other force.
On some system on chip out there, the adversary’s firmware runs on a different core that is separate from the baseband firmware. In theory these things could be uncovered. However significant resources (in the tens of millions of dollars) are required for the equipment and human talent to reverse engineer parts of the system on chip and the firmware running on them. I wouldn’t be surprised if the firmware is only downloaded by the device to be decrypted and run if the device is “active” in some way.
The talent required to perform the equivalent of solving a murder mystery by trying to find a needle in a shifting nanoscale haystack has more interesting problems to solve during a limited lifespan.
This is why GrapheneOS was suitable for me when I was doing God’s work (selling acid, molly, etc) but only on a relatively small scale. If I were doing it big, or if I were a politician or a podcaster with massive reach, GrapheneOS would not be able to protect me at all. Because the adversary already has its mosquito straw hooked into the brain stem that Linux runs on.
To those who think these are a “big claim”, how about you install another door at the front of your flat that does not have a lock. Remove one of the locks from the door to your car. Set your smartphone up to not require a PIN or fingerprint to unlock. See how that goes for you.
Pro tip: you won’t.
I literally do not give a shit what you think. Cry more.
4 Likes
This topic is temporarily closed for at least 4 hours due to a large number of community flags.
It’s not shadow modding. Offensive things will be deleted and offenders get suspended / banned. I guess there is one way to get your post deleted 
@de_dust2 has been suspended for two months and if he doesn’t change his behavior dramatically he’ll probably be banned shortly after the next offense.
2 Likes