Continuing the discussion from ~$150 Budget Android Hardware [Suggestions Needed]:
I personally think it would be nice to add Lineage as a “in case every other option is not available to you”. So something like a half-endorsement, similar to PG not technically recommending iOS, but leaving safari as a recommendation in case people is on iOS
Difference is that in Apple’s case it’s Browser on OS, and in this case it’s OS on hardware
Splitting this into a new topic so it can be referenced in the future 
Prior discussion for reference:
Continuing the theme of availability, I think we should consider a tiered recommendation system.
Something like
Use Graphene, if not possible=> Use DOS, if not possible => use Lineage
Graphene is obviously the most secure, but it’s prohibitively expensive to a lot of people
Divest depends on Lineage for support
Lineage may be the least hardened, as it’s effectively AOSP + basic apps. But it’s the most available out of all of them, and arguably far better privacy-wise than OEM ROMs such as OneUI/MIUI/whatever
It’s not like OEM ROMs are in any way hardened, they also a ton of built in apps that have no reason to be part of the system (anyone who has done adb debloating would understand). At the lower end of the market, it’s not like OEM ROMs are updated either, even big vendors such as samsung failed to provide timely update
I would also add that PG already have a “just in case all else fails” tier
Specifically with F-Droid
We only recommend F-Droid as a way to obtain apps which cannot be obtained via the means above
I don’t see how we can’t do the same with lineageOS
Now put lineageos already! Better than nothing. Two good ROMs, grapheneos and lineage.
Could you elaborate in what universe LineageOS would be a good recommendation?
Well that sucks 
Lineage probably should be recommended for harm reduction. It cannot be worse than running an EOL stock device and comes with privacy benefits.
It’s not worth recommending even for harm reduction.
I don’t really want to give anyone a false sense of security. When you have an EOL device it’s time to get a new one.
It’s not a false sense of security if you state clearly what the tool is intended for and what it can and cannot provide..
Very few devices, and those are particularly expensive outside the US and other first world countries, which already have very low salaries too (and high taxes, ofc). A new iPhone/Google Pixel can be half a year (if not more) worth of someone’s wages, and the used market isn’t that much cheaper in these countries.
Why not?
This.
Is there any real evidence to show this is even a benefit over stock os?
My hope is there is some alternative OS for people who cant use a pixel and install graphene but the standard, at minimum (after meeting the PG requirements), needs to be “at least as good as Divest” if its going to replace Divest.
You have no Google (services) on your phone? It’s a good feeling if nothing else.
Are there any more details on this? What devices are affected, and how malware was installed? I’m not an expert, but as I understand, biggest issue with unlocked bootloader is that it’s easy for someone with physical access to device to compromise it. But what are security risks, if no one ever touches your phone and you only install tested and trustwothy apps?
So your answer is no? Unless something has dramatically changed since April 2023 I am going to assume that much of what Kuketz said about Lineage in his review still holds.
The waiver of the Google Apps or Google Play services does not automatically mean that a custom ROM is google free. Further steps are necessary for this, but the LineageOS is not possible.
Overall, LineageOS does not leave a data protection-friendly or really secure impression. This is mainly due to the following points:
- LineageOS is closely connected to Google services despite abandoning Google services
- Delayed delivery of (security) updates
- Older devices do not receive full security updates of proprietary components such as boot loader or firmware
- No support from Verified Boot
- The quality of LineageOS on a particular device is significantly influenced by the capabilities and use of the maintainer
Translated quote
I still don’t understand how much of an impact unlocked bootloader has. If my network and PCs are infected, I really don’t care much about my phone. There’s nothing new there that attacker could get. I’m also not connecting my phone via USB to anything else except my PC.
I would really like to know what is the real threat of locked vs unlocked bootloader, in cases when no one has physical access to device. Is it easier to get malware via regular app installation (from F-droid or PlayStore)? If not, then it’s very very low on my threat model list, and compromise I’m willing to make.
I am not going to do all the research for you. If you want to know, take the time to find out. I would recommend starting with section 5 of the Kuketz article.
These sites might provide some useful info for you.
But I did search for information I would like to know, and have found out that LineageOS sends less data to Google than stock Android even after I disable all possible google apps (except play-services and related ones). I don’t know how much less, could be 10% or 90% of what I have with stock ROM. But for me privacy is not “all or nothing”, so the less data I give to Google (Samsung, MS, Xiaomi, Huawei, Apple..) the better.
And when I checked latest updates on those two phones, I have found out than one with LineageOS has more recent security updates (11/12-2024) and kernel (01-2023), than the one with stock OS (07-2022/10-2024 and kernel from 2019)
So I would say even security is better with LOS, unless someone takes my phone, modifies bootloader and gives it back to me.
Unlike PC, phone is prone to lose, and most probably would never know who’s taking it. So, having my bootloader locked is the most important security feature IMO.
Using an EOL device, as shown in your screenshot, is never a good idea. The compromise has to happen somewhere, either your security patch or your loose bootloader.
Even if your phone is stolen, as long as it’s turned off and secured with a strong password, they cannot break the encryption. Locked bootloader protects against evil maid and malware persistence
Most people have never turned their phone off. Worse yet, if the phone got stolen while the screen is unlocked. Fortunately, there are theft protection and Secure Folder (Samsung)/Private Space (Android 15+) to protect your sensitive apps and files (not sure about files protection in Private Space).
People normally don’t use an extremely strong password (completely randomized characters, numbers, and symbols) on their phone, most probably only use PIN.
The system is still a large attack surface regardless if it can be tampered with, e.g. if remote wipe functionality is tampered with, it’s only the matter of time for the theft to extract your data.
Nonetheless, if the phone is tampered with without your knowing, it could be even worse than getting your phone stolen because you wouldn’t know that your phone is no longer safe to use.
All the above is why Android wipe all data when unlocking and relocking the phone, and it also shows large warning text on unlocked phone screen that it’s no longer safe to store sensitive data on the phone. If this is not the case, it’s the time for Google engineers to remove the warning.
Sure I don’t disagree, but regardless, it’s possible to work around all the issues you mentioned with some effort.
