this post was submitted on 20 Nov 2024
-1 points (47.6% liked)

Free Software

1055 readers
5 users here now

What is free software?

Free software is software that respects the 4 software freedoms. The 4 freedoms are

Please note: Free software does not relate to monetary price. Free software can be sold or gratis (no cost)

Rules:

  1. Please keep on topic
  2. Follow the Lemmy.zip rules
  3. No memes
  4. No "circle jerking" or inflammatory posts
  5. No discussion of illegal content

Please report anything you believe to violate the rules and be sure to include rhetoric on why you think it should be removed.

If you would like to contest mod actions please DM me with your rational as to why you feel that the relivant mod action should be reversed. Remember to use rhetoric and to site any relevant sources. You will only get one chance to argue your point and continued harassment will result in a ban.

Overall this community is pretty laid back and none if the things list above normally are an issue.

founded 1 year ago
MODERATORS
 

If you look at CVEs in Android a lot of them are tied to proprietary Qualcomm binaries. Its crazy how your GPU driver can be exploited to get root access.

If Qualcomm wasn't so dependent on their vendor kernel that ships with tons of binary blobs it would be lot more secure.

top 12 comments
sorted by: hot top controversial new old
[–] [email protected] 2 points 6 days ago (2 children)

“free” proprietary software bundled with your device? Its not technically free - its paid for as part of buying the device.

Does an actually free alternative to any qualcomm blob exist?

[–] possiblylinux127 2 points 6 days ago (1 children)

Proprietary software is not free (libre) software. Qualcomm is they only one who can actually patch there proprietary software and because the system is a black box. It is impossible to know how flawed the system could be.

[–] [email protected] 2 points 6 days ago (1 children)

Your post and comments contradict each other - what are you trying to say?

[–] possiblylinux127 2 points 6 days ago (1 children)

My post says that Qualcomm proprietary binaries are bad for security.

I did edit it for clarity

[–] [email protected] 1 points 6 days ago (1 children)

Your title says libre software is bad for security

[–] possiblylinux127 2 points 6 days ago (1 children)

You are right

I meant this as reasons to use free software but it got lost in translation

[–] [email protected] 1 points 6 days ago* (last edited 6 days ago)

Yeah what you posted is literally the opposite of what I guess you were trying to say

Its still worded as if libre software is the problem.

“Closed source proprietary software is bad for security” or something - its the fact the code is unauditable is the issue

[–] [email protected] 1 points 6 days ago

*Free with purchase

You are correct. The software is an integral part of the device and cannot be unbundled.

Maybe I'm missing something, but there don't appear to be FOSS alternatives to Qualcomm binaries. At least, not with a quick search. I might be able to get better information with a more narrow search.

Here is a decent conversation from 2021. I doubt that things have changed much.

https://news.ycombinator.com/item?id=26596721

[–] [email protected] 1 points 6 days ago (1 children)

I think you're getting downvoted by people that only read the title of your post.

[–] [email protected] 5 points 6 days ago (1 children)

Na, OP sounds wrong in general.

An unsecure binary is 100% the fault of the company creating it not the underlying kernel.

Do you blame the Linux kernel for heartbleed? No, you blame openssl. Do you blame Java for Log4Shell? No you blame Apache

[–] possiblylinux127 2 points 6 days ago (1 children)

Maybe I did a bad job of phrasing this?

I'm saying that the bulk of Android security issues come from Qualcomm binaries

[–] [email protected] 2 points 6 days ago

If Android wasn’t so dependent on Qualcomm binary blobs it would be lot more secure.

might be more accurate?