Thank you very much to all of you!
1 Like
Tbh I really wonder how they determine the order of the devices that receive the monthly updates. I mean the first posts about the January update on this forum I found are from ~10 days ago. My FP3 still tells me everyhting is fine with my patch level December 2019. And it has been the same with all recent months as well. Great, with all the critical vulnerabilities in Android. 
2 Likes
"how they determine the order of the devices that receive the monthly updates. "
Good question, my FP3, which i received this week, has fortunatly the most recent update already installed 0110 on 5.1.2020, or is there a new one released on 28.1.2020?
Even this seems odd. 
I remember commenting to a close friend of mine on my old LG phone’s rough yearly upgrades and being suprised on their unusually regular updates…
Going to the FP has been eye-opening 
2 Likes
Short additional question to the experts: Is it actually possible to manually download and install these monthly security updates?
1 Like
The Updater on the Fairphone 2 didn’t like firewall Apps much, if I remember correctly. Perhaps it’s similar on the Fairphone 3.
It seems you are running NetGuard. Have you tried without the firewall being active?
There is no official way to download and install updates manually as of now.
If you want to do it inofficially, it could be possible, but this doesn’t seem to be exact science yet either. If you are feeling adventurous, you may want to unlock the bootloader of your phone (this includes a factory reset) and have a look into these topics …
2 Likes
Thanks for you hints, Elk. Yes, I am aware that NetGuard might be a problem, especially since I am blocking most of the G00gle stuff. I tried deactivating it before doing the update check. Unfortunately the result was the same.
Regarding TWRP&Co: I definitely want to go into that direction to get finally rid of G00gle, but at the moment I am waiting until (hopefully) an officially supported G00gle-free FP-OS comes out.
Hello,
Google publish the Android Security Bulletin February 2020.
https://source.android.com/security/bulletin/2020-02-01
I just bougth a Fairphone 3 and i would know how you manage security update ?
Regards,
Syl
2 Likes
Hi @sylv1 and welcome to the Fairphone community forum. I’ve moved your question here to this existing topic.
2 Likes
Fairphone will publish an update some time end of February, and you wil receive this as an OTA update (download) automatically. And this will happen every month for the foreseeable future because of Google’s monthly patch release cycle.
1 Like
Thank you ! I didn’t see it…
1 Like
Good to know !! Is there an announce page to follow for security update ?
1 Like
just take a look here:
4 Likes
Only over at Google, Fairphone does not (yet) have a version history for the FP3 AFAIK.
2 Likes
That would be very useful or interesting and hopefully we could have it in the “near” future.
Thank you.
1 Like
It’s referred to as staged rollout. I read a good explanation about it recently, unfortunately I can’t recall where (it might have very well been here on the forum though). Maybe this helps though: https://www.androidauthority.com/how-android-updates-roll-out-force-clear-gcf-318744/
Since G00gle still tells me, that I am up to date with patch level December 2019: Does anyone know, if this might be due to having revoked plenty of permissions from G00gle components and having deactivated plenty of their apps via adb? Which app is responsible for updating the OS?
Btw: If I’d have an OS installed on my computer, where the OS maintainer (or manufacturer of the hardware, even better) decides if and when it’s an appropriate time for installing security related updates, I’d delete it INSTANTLY. Seriously. 
It seems that you already did this effectively by
having revoked plenty of permissions from G00gle components and having deactivated plenty of their apps via adb
But frankly - you should not complain about no longer receiving updates then.
Hm, I don’t see it that way since I am not revoking permissions or deactivating apps blindly. But on the other hand you’re also right, it would fit into their politics of removing more and more control from the user: You want updates? Ok, but then we need a copy of your ID-card and your bank account data. 
Just kidding.
Two things come to mind (though there are probably more):
- The download manager (com.android.providers.downloads) needs to be active and have permission to access the internet
- Google domains need to be accessible, as the updates are provided via google infrastructure.
In addition, there is some weirdness where users of e.g. Orange SIMs use a different update channel. Removing the SIM card, or switching data to a non-Orange SIM forces the phone to check for updates in the ‘normal’ place.
There’s two things: When the update is shown to the user, and how/when the update is installed. Variations in the first are very common (at least in Android, Apple, Microsoft), the second is less common (though Windows at some point did force updates on users). Staged roll-outs (i.e. variations in the first) are becoming more common as an extra safety check that the update doesn’t have unintended consequences. My understanding is that hotfixes (by which I mean fixes for problems for which there is an active exploit) are still released as quickly as possible, though I have no evidence for this. Some see the first stage receivers of staged roll out as being advantaged, others see it as them being guinea pigs. In my view, an opt-in model for early access and/or a way to manually ‘jump the queue’ would be good.
1 Like