I read a post here a while back claiming that graphine is less private but somehow more secure. Of course the only person I have to ask is the graphine Matrix who claims are the opposite of this. Generally my main concern about Calyx is it’s Fake google play thing. Apparently this is less private than graphineOS’s sandboxed google play since it is still connecting to Google, and is just as privileged as Google play usually is.
I think what I’ve heard (more or less) is that they are equally private but GrapheneOS is more secure. I don’t remember what the justification was though. I’m interested to see what replies your question gets.
I’ve always seen CalyxOS as the version that is the more user friendly (easier installation, better support. At least as of few years ago. Things migh have changed now.)
Personally what I question is the choice of GrapheneOS to use sanboxed Google play services rarher than the open source alternative micro-G. I can’t see how that’s better.
GrapheneOS has an incredibly easy installation as it’s entirely done through your browser (though it doesn’t work on Firefox unfortunately).
As for Sandboxed Google Play versus MicroG, I believe app compatibility is much better. It’s not perfect as I’ve come across multiple apps that simply don’t work on Graphene but I hear the situation is a lot worse with MicroG. There have also been quite a few instances in the past of MicroG leaking data it shouldn’t be.
unfortunately!They don’t allowing websites access to USB devices for a reason.
CalyxOS installation is also extremely easy now. These projects have come a long way in terms of accessibility and it’s awesome to see.
But the Sanboxed Google play services, I would imagine is still closed sourced. Right? If true, just accounting for trying to minimize closed sorced software on device, Micro-g must be strictly better, in that one issue at least.
Sandboxing it means it doesn’t have any elevated privileges like MicroG has so it gets less data. MicroG still gives Google the information they’re after, just proxies through alternative services I believe.