We've received a 2nd IPv4 /24 subnet from ARIN for our 2nd anycast DNS network. Both our /24 subnets were obtained quickly under the NRPM 4.10 policy for IPv6 deployment for our dual stack DNS use case. 2nd was obtained without waiting 6 months due to being a discrete network. We host our own authoritative DNS servers to provide DNS resolution for our services. Authoritative DNS are the servers queried by DNS resolvers run by your ISP, VPN or an explicitly user chosen one such as Cloudflare or Quad9 DNS. We now have our own AS and IP space for this. Our ns1 has 11 locations on Vultr: New York City, Miami, Los Angeles, Seattle, London, Frankfurt, Singapore, Mumbai, Tokyo, Sao Paulo and Sydney. Our ns2 has 4 locations on BuyVM: New York City, Miami, Las Vegas and Bern. We'll be adding a 2nd server provider for more locations. DNS resolvers quickly fall back to the other network if traffic is dropped. Having two discrete networks with separate hosting companies and transit providers provides very high reliability. Individual servers which go down also stop having traffic routed to them due to BGP. We have tiny #GrapheneOS website/network servers and also powerful update mirrors around the world. Our DNS servers use a combination of a GeoIP database and their own location to route users to the closest server that's up. Frequent health checks and low expiry time handle server downtime.

Footage of highly experimental GUI Linux virtual machine (and video games) in highly experimental desktop mode in #GrapheneOS. View quoted note →

- Icons should now be themed regardless of if the app supports them. - You can now change the shape of app icons on the home screen. This also includes PWAs(!!) - You can add a Widget in the home screen that is a user profile switcher. #GrapheneOS View quoted note →

#GrapheneOS MAJOR UPDATE based on Android 16 QPR2 version 2025121000 released. This is our first non-experimental release based on Android 16 QPR2 after our initial experimental 2025120800 release. The change to the style of notification backgrounds is an upstream regression rather than an intentional change to a more minimal style. Changes: • rebased onto BP4A.251205.006 Android Open Source Project release (Android 16 QPR2) • disable promotion of identity check feature not currently present in GrapheneOS due to depending on privileged Google Mobile Services integration • GmsCompatConfig: update to version 166 All of the Android 16 security patches from the current January 2026, February 2026, March 2026, April 2026 and June 2026 Android Security Bulletins (May 2026 preview ASB doesn't exist yet) are included in the 2025121001 security preview release. List of additional fixed CVEs: • High: CVE-2025-32348, CVE-2025-48641, CVE-2026-0014, CVE-2026-0015, CVE-2026-0016, CVE-2026-0017, CVE-2026-0018 2025121001 provides at least the full 2026-01-01 Android and Pixel security patch level but will remain marked as providing 2025-11-05. https://GrapheneOS.org/releaaes#2025121000

The home screen, YakiHonne and Cake on experimental Desktop Mode in #GrapheneOS. View quoted note →

This is how the Desktop Mode looks in #GrapheneOS. Here you can see how some apps look. Below is a screenshot of me typing this post in Amethyst and two instances of Vanadium on different profiles (Private Spaces) demonstrating unique VPN connections to the same applications on the same workspace. Here is how the apps resize. This will continue to be improved in the Android 16 QPR2 based release of GrapheneOS on the way and possibly be available outside of a developer option in Android 17.

Me: "When in use, Windows Remote Desktop caches images of the display of the connected machine. This is done to improve performance. This cached data can be viewed with software to possibly recover information on previously connected machines and activities done on them." Twitter engagement bait slop: View quoted note →

Reflecting on this, likely given the poster, bait tweet, but a good discussion to be had: You should be free and able to use what you want. What's not valuable to somebody may be valuable to somebody else. I'm a complete nobody with a normal life and I use GrapheneOS, Monero, I2P, LUKS etc. like this picture says. However, there is a different conversation to be had that you could use this same image with. Many people treat software choices like a subculture purity test. Software choice is treated like Console Wars or sports teams. There are certain groups of people who use things simply to be performative rather than just being honest that it is a preference. It serves no relevance in their threat model to use what they have to (counterargument: threat model doesn't need to be your sole reasoning to use something anyway). Some like to believe you need to be part of a certain group and you need to follow the rest of the trends of that group to fit in. Used Linux? Now you got to use Firefox. It's fine to say GrapheneOS is superior to something (we say that a lot). What is not fine is believing you are a superior person for using it, same with any other software. Classical FSF bros, Reddit users, and performative activists stink up discussions like skunks with this attitude. Every major project has this problem. If I had to TLDR this, then: Don't be sheep. Use everything in your preference, not to just reflect looking like others. You shouldn't see all these and be like "I want to use all of this!!", because really, you likely do not.

It isn't a usual happening when an alleged career criminal cries about how he was charged with premeditated murder on social media in your comments while, incorrectly and without a smidge of evidence, blaming us for it. Back to your scheduled #GrapheneOS WINNING. Keep your eyes open for GrapheneOS based on Android 16 QPR2. View quoted note →