So i am installing GrapheneOS rn and i need help:

  1. i want app tracking protection to every app something like duckduckgo’s app tracking protection if there is something better?!

  2. someone explain me (with simple words) what is auditor cause i can’t understand even if i read about it on GrapheneOS’ website (i am like 50% noob with these things)

  3. is my wifi masked automatically with GrapheneOS or should i 100% use a vpn? is there a setting in the OS somewherere? i need a lot of privacy and security to my phone!!!

also tell me additional tips for privacy/security for GrapheneOS if u have any!

thanks a lot!

  • mac@lemm.ee
    42·
    15 hours ago

    Tracking protection on every app is best done via custom DNS. Since you successfully installed graphene OS, you can probably follow instructions well enough to set up a few DNS servers.

    Personally, I have a few adguard -> unbound (unbound set as a recursive resolver) and then adguard set up with block lists at varying levels of strictness.

    1. A very lax instance for my router as to not break the internet for anyone on my WiFi.
    2. A few setup strict for my devices (phone, TV etc). Personally I keep the TV on a different instance as its super chatty and I don’t want it muddying up my stats for other devices
    3. I have a separate one that services my IoT devices

    If you don’t feel like setting up adguard/unbound you could use nextdns or adguard hosted, but local control gives you the most configurability and privacy, depending on your threat model.

    Edit: unsure why I’m being down voted. All duckduckgo is is an app that acts as a VPN and blocks traffic to trackers. Why use their blocker when you can use your own, and have it for all of your devices, not just your phone?