If you use dicewords it's honestly pretty easy to remember. My master password for bitwarden is over 50 characters and it was a breeze to remember.
Imprint9816
This is missing a critical piece of context. What is your threat model? Its impossible to know if what your doing even makes sense without that. What are you trying to protect and who are you trying to protect it from?
Lmao putting facts in quotes does not makes them less true. Figures, that when confronted with reality you would immediately start relying on logical fallacies.
Just because you are more at risk of being compromised does not mean you will be compromised. This is obvious.
You don't have to respond if your just going to be a child about it.
Those are partial security patches (its not in the same ballpark as a non EOL phone).
Even non EOL phones are usually updated dangerously slow when it comes to LineageOS.
Some more sources, not sure why I'm even adding them as you seem hell bent to believe LineageOS is secure regardless of the facts.
https://eylenburg.github.io/android_comparison.htm
https://www.kuketz-blog.de/lineageos-weder-sicher-noch-datenschutzfreundlich-custom-roms-teil4/
No, thats totally silly and disregards the app sandboxing, security features and a multitude of other benefits GOS provides regardless of if you use proprietary apps.
Nothing. The effort required to make a meaningful impact against this type of threat is way beyond my threat level.
Its better to just go through the settings yourself then rely on arkenfox. This just adds a middleman into the process of keeping your settings updated.
Not sure where your getting your information but the Pixel 5 has not gotten Android updates or security updates in over 7 months.
There are tons of examples of exploits being used to target EOL phones as its common for people to not care about these updates, or be misinformed, so they are easy targets.
If OP or anyone else wants to use an EOL phone that's fine but, don't pretend its a smart security practice. Although even if I were to use an EOL phone, LineageOS doesn't have the greatest background and isn't really degoogled
I am not sure if there is an example of that specific situation as it would be pretty odd for a phone to be receiving security patches but not firmware updates.
Anyway its not super relevant as the Pixel 5 does not receive firmware or security patches anymore.
OP also seems to be inferring he suggested to his friend to use a very specific security / privacy OS that does not recommend using that model phone anymore for the exact reasons I mentioned. Plus the model is only receiving partial support as a stop gap for users to have time to get a newer model and won't be supported much longer anyway.
Its always better to try and get firsthand knowledge through the FAQ then rely on, possibly inaccurate, Lemmy users. I would also seek answers on their official forum over Lemmy as well.
Did you try reading through the FAQ?
There is a very relevant xkcd for this exact question.
Tldr dicewords are the better option. You can still add numbers, symbols, and capitalize if you really want even more entropy.