• SolidGrue@lemmy.world
    link
    fedilink
    English
    arrow-up
    3
    ·
    6 months ago

    Get a new phone the vendor does support.

    Firmware patching is applying low-level firmware to the modem or baseband, similar to a BIOS update on a desktop or server. These binary libraries are (a) proprietary, and (b) opaque to the user (meaning they’re not documented like normal software)

    Once a vendor drops support for a platform, that’s it, that’s the end of the line. The device will still work, but any, glitches, firmware vulnerabilities, or updates for network-side changes will no longer be addressed.

    • EngineerGaming@feddit.nl
      link
      fedilink
      English
      arrow-up
      4
      ·
      6 months ago

      This is just not realistic though, as the support is so short. You cannot buy phones ever few years. Only thing you can realistically do is apply at least Lineage and exercise caution.

      • jet@hackertalks.com
        link
        fedilink
        English
        arrow-up
        2
        ·
        6 months ago

        Denying reality isn’t realistic either.

        Knowing your threat model and being aware of your tradeoffs and decisions is useful. Maybe security isn’t more important than longevity, but the phone owner should be making a deli rate choice.

        With the new pixels having 7 years of support things are improving. It would be nice for them to open source the hardware specs at the end of the support window…

        https://support.google.com/pixelphone/answer/4457705

        • AbidanYre@lemmy.world
          link
          fedilink
          English
          arrow-up
          2
          ·
          6 months ago

          Who’s going to be digging into the depths of a 5+ year old phone on the off chance they can find a baseband vulnerability though?

          Even if they do find something, the number of people for them to exploit is probably going to be vanishingly small.