this post was submitted on 24 May 2024
96 points (72.9% liked)

Technology

59133 readers
2265 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 15 points 5 months ago (2 children)

What's your suggestion for hardware patches after the manufacturer ends support?

[–] [email protected] 16 points 5 months ago (2 children)

There is no option. There is too much variation in the various phone chips for the hardware hacking community to reverse engineer more than a bare handful. And as soon as the hardware has been reverse engineered, it will never be used again by a manufacturer making the exercise largely pointless.

Add to that, the fact that Qualcomm actively discourages long term support of their chips….

[–] [email protected] 11 points 5 months ago (1 children)

That's why Fairphone choose a QCM6490 for the fairphone 5. It's far from being the best, but it has longer term support than mainstream oriented SOC.

Since the SOC will probably be enough for most of users, it's not a bad option I guess.

[–] [email protected] 5 points 5 months ago (1 children)

Well then I really hope the Fairphone 5 is gonna get really long term support and start a new trend in that regard.

Just buying a new phone every 5 years isn’t sustainable!

[–] [email protected] 2 points 5 months ago (1 children)

They advert for a support between 8 and 10 years (at least 5 major version of Android, and security patches after that). I don't know their politic about the availability of the repair parts, but if it's for the same amount of time, I'll be happy.

I changed the battery and the usb port of my OP7 last year... the oneplus site didn't sell them anymore, I had to go on aliexpress to have both ... That's quite frustrating for a device that is 5 years old...

[–] [email protected] 1 points 5 months ago

8 to 10 years is good, but it should be just a start.

I’m still using my PlayStation 3 and a computer from 15 years ago (as a backup) and I think it should be the same with smartphones

[–] [email protected] 6 points 5 months ago

Exactly my point. Thank you.

[–] [email protected] 1 points 5 months ago (1 children)

Get a new phone the vendor does support.

Firmware patching is applying low-level firmware to the modem or baseband, similar to a BIOS update on a desktop or server. These binary libraries are (a) proprietary, and (b) opaque to the user (meaning they're not documented like normal software)

Once a vendor drops support for a platform, that's it, that's the end of the line. The device will still work, but any, glitches, firmware vulnerabilities, or updates for network-side changes will no longer be addressed.

[–] [email protected] 3 points 5 months ago (1 children)

This is just not realistic though, as the support is so short. You cannot buy phones ever few years. Only thing you can realistically do is apply at least Lineage and exercise caution.

[–] [email protected] 2 points 5 months ago (1 children)

Denying reality isn't realistic either.

Knowing your threat model and being aware of your tradeoffs and decisions is useful. Maybe security isn't more important than longevity, but the phone owner should be making a deli rate choice.

With the new pixels having 7 years of support things are improving. It would be nice for them to open source the hardware specs at the end of the support window...

https://support.google.com/pixelphone/answer/4457705

[–] [email protected] 1 points 5 months ago (1 children)

Who's going to be digging into the depths of a 5+ year old phone on the off chance they can find a baseband vulnerability though?

Even if they do find something, the number of people for them to exploit is probably going to be vanishingly small.

[–] [email protected] 1 points 5 months ago

https://www.theverge.com/2021/5/18/22440813/android-devices-active-number-smartphones-google-2021

There are 3 billion Android devices. So basically everyone is incentivized to break in. Especially if the firmware is not updating, that means once you find an exploit it's good forever

Plus, and most people don't realize this, the same chips are used in multiple different phones. So you just have to break the baseband once, and you get into multiple different phone models