- cross-posted to:
- privacy@lemmy.world
- grapheneos
- cross-posted to:
- privacy@lemmy.world
- grapheneos
GrapheneOS provides users with the ability to set a duress PIN/Password that will irreversibly wipe the device (along with any installed eSIMs) once entered anywhere where the device credentials are requested (on the lockscreen, along with any such prompt in the OS).
The wipe does not require a reboot and cannot be interrupted. It can be set up at Settings > Security > Duress Password in the owner profile. Both a duress PIN and password will need to be set to account for different profiles that may have different unlock methods.
Note that if the duress PIN/Password is the same as the actual unlock method, the actual unlock method always takes precedence, and therefore no wipe will occur.
Cool feature, I wonder if a duress fingerprint will be introduced in the future?
I feel like that would be a lot easier to accidentally trigger.
You’re not wrong, but like the duress pin, it would be a nice feature to have. Not everyone would have to set a duress fingerprint, just the people who find value in it.
You would not believe how much I have lost from being obsessed with high-threat modeling for my low-threat life. $10k and family videos for a start.
Sometimes it’s a good idea to protect the community from itself lol.
Don’t leave us hanging. How did it happen?
Writing down a crypto wallet key in a self hosted password manager on a highly encrypted self hosted drive which degraded. Pretty much the same with the photos, if I didn’t encrypt my backups I would have been able to recover more files.
Oh yikes.
I got out of crypto stuff long ago. But I was so paranoid with losing wallet keys that I’d put them everywhere in chunks, like a medieval quartered body spread all over Scotland.