|
|
|
|
|
|
by toastal
1575 days ago
|
|
|
> Wait, on their FAQ page I see that they don't want to include the patch for security reasons. Is this ROM unsafe? > No. LineageOS' developers decided not to include this patch for various reasons.
The signature spoofing could be an unsafe feature only if the user blindly gives any permission to any app, as this permission can't be obtained automatically by the apps.
Moreover, to further strengthen the security of our ROM, we modified the signature spoofing permission so that only system privileged apps can obtain it, and no security threat is posed to our users. LineageOS for microG FAQs (https://lineage.microg.org/) |
|
|
https://github.com/microg/GmsCore/issues/1567
Security is an afterthought for most Android distributions and most software built around them. I went from years of self building AOSP and LineageOS, and after a long hard look at why I was doing it, I stopped and installed GrapheneOS.
While it's an extremely opinionated project and borderline hostile, I trust the developers to do things correctly and will continue to use and recommend for security-conscious individuals.