GrapheneOS (@GrapheneOS): “We no longer have any active servers in France and are continuing the process of leaving OVH. We’ll be rotating our TLS keys and Let’s Encrypt account keys pinned via accounturi. DNSSEC keys may also be rotated. Our backups are encrypted and can remain on OVH for now. Our App Store verifies the app store metadata with a cryptographic signature and downgrade protection along with verification of the packages. Android’s package manager also has another layer of signature verification and downgrade protection. Our System Updater verifies updates with a cryptographic signature and downgrade protection along with another layer of both in update_engine and a third layer of both via verified boot. Signing channel release channel names is planned too. Our update mirrors are currently hosted on sponsored servers from ReliableSite (Los Angeles, Miami) and Tempest (London). London is a temporary location due to an emergency move from a provider which left the dedicated server business and will move. More sponsored update mirrors are coming. Our ns1 anycast network is on Vultr and our ns2 anycast network is on BuyVM since both support BGP for announcing our own IP space. We’re moving our main website/network servers used for default OS connections to a mix of Vultr+BuyVM locations. We have 5 servers in Canada with OVH with more than static content and basic network services: email, Matrix, discussion forum, Mastodon and attestation. Our plan is to move these to Netcup root servers or a similar provider short term and then colocated servers in Toronto long term. France isn’t a safe country for open source privacy projects. They expect backdoors in encryption and for device access too. Secure devices and services are not going to be allowed. We don’t feel safe using OVH for even a static website with servers in Canada/US via their Canada/US subsidiaries. We were likely going to be able to release experimental Pixel 10 support very soon and it’s getting disrupted. The attacks on our team with ongoing libel and harassment have escalated, raids on our chat rooms have escalated and more. It’s rough right now and support is appreciated.”

We no longer have any active servers in France and are continuing the process of leaving OVH. We will rotate our TLS keys and encrypt the pinned account keys via AccountTree. DNSSEC keys can also be rotated. Our backups are encrypted and can remain on OVH right now. Our App Store performs package verification as well as verification of App Store metadata with cryptographic signatures and downgrade protection. Android’s package manager also has another layer of signature verification and downgrade protection. Our system updater verifies updates with another layer of both in the update_engine with cryptographic signatures and downgrade protection, and with a third layer of both through verified boot. Channel releases Signing of channel names is also planned. Our update mirrors are currently hosted on sponsored servers from ReliableSite (Los Angeles, Miami) and Tempest (London). London is a temporary location due to an emergency move by a provider who has left the dedicated server business and will be relocating. More sponsored updated mirrors are coming. Our ns1 anycast network is on Vultr and our ns2 anycast network is on BuyVM because both support BGP to announce our own IP space. We are moving our main website/network server used for default OS connections to a mix of Vultr+BuyVM locations. We have 5 servers with OVH in Canada with stable content and more than basic network services: email, metrics, discussion forums, mastodon and verification. Our plan is to move these to a Netcup root server or a similar provider short term and then to a long term server in Toronto. France is not a safe country for open source privacy projects. They also expect backdoors in encryption and device access. Secure devices and services will not be allowed. We do not feel safe using OVH even for a static website with servers in Canada/US through Canadian/US subsidiaries. We were probably supposed to be able to release experimental Pixel 10 support very soon and it’s being disrupted. The ongoing defamation and harassment attacks on our team have increased, raids on our chat rooms have increased and much more. It’s tough right now and support is appreciated.

November 24, 2025 · 7:16pm UTC