• dotslashme@infosec.pub
    link
    fedilink
    English
    arrow-up
    53
    ·
    1 year ago

    When you buy something you should have the right to repair it and modify it.

    Currently, everything is basically a renters agreement, where you pay for something you have zero rights to modify or opt out of.

  • Deemo@bookwormstory.social
    link
    fedilink
    English
    arrow-up
    33
    ·
    1 year ago

    Few problems:

    1. Safteynet (play integrity) and root detection

    There are magisk tweaks to help combat this but its a annoying game of cat and mouse. Some apps like chase have particularly annoying root detection to deal with. Also regaring safteynet once google fully enforces hardware attestation passing safteynet with tweaks will be borderline impossible (most tweaks try to spoof older phones that don’t support safteynet hardware attestation).

    1. Widevine

    Many streaming services (Netflix, Hulu, Disney, etc) will downgrade your video quality to 480p-540p due to L3 from unlocking the bootloader (a step thats usually required before you can root).

    1. Physical security (potential risk)

    Unlocking the bootloader is the first step to allowing for rooting and custom roms. One pro/con is when you unlock the bootloader you are partially at risk to a evil maid attack (some one with physical acess to your phone can compromise it). While difficult to do automatically (and probably very very rare) some one could hypothetically place a malicious bootloader that could steel data. The risk of this is mostly low but does exist.

    • lemmyvore@feddit.nl
      link
      fedilink
      English
      arrow-up
      14
      ·
      1 year ago

      once google fully enforces hardware attestation passing safteynet with tweaks will be borderline impossible

      Never gonna happen. Full hardware attestation would give Google all the cards and too much power over manufacturers. Samsung is the largest Android manufacturer and they’re making people jump though hoops to unlock bootloader precisely because they don’t want to end up with full attestation.

      Samsung and Google have been locked into a power struggle for many years now and they’re both careful about keeping the armistice. Samsung maintains a set of apps that mimic Google’s, ready to go in case Google ever pulls a Huawei and kicks them off Play.

    • Takatakatakatakatak@lemmy.dbzer0.com
      link
      fedilink
      English
      arrow-up
      11
      ·
      1 year ago

      These are not really genuine concerns imo, and to the extent that they are - they should be recognised as shortcomings of an increasingly inflexible ecosystem.

      1. It’s very easy to avoid root detection these days, and if you are rooting your phone, chances are you have also disabled the playstore app altogether so play protect is no longer a concern. I just use F-Droid and Aurora these days to reduce what can be associated with me or any of my accounts.

      2. Who the hell is watching shows on their phone so much that a reduction to SD is going to bother them on a 6 inch screen?

      3. If I can get my hands on your phone physically, there’s very little you can do to keep me out regardless of if the bootloader is unlocked or not.

      • Da_Boom@iusearchlinux.fyi
        link
        fedilink
        English
        arrow-up
        5
        ·
        edit-2
        1 year ago

        Pixel phones are arguably the worst for rooting. (I own one) In order to get the phone to pass properly you pretty much have to go custom on the ROM.

        I’m running a stock firmware, and I get all sorts of problems as a result of rooting the device, and not installing a CFW.

        I have 2 apps, that won’t work (google pay and a credit score check/lock appand Microsoft intune - which my work partially uses)

        Edit and did I mention? The LSPosed zygisk module causes so much instability I can’t use it.

    • smileyhead@discuss.tchncs.de
      link
      fedilink
      arrow-up
      9
      ·
      1 year ago
      1. This could be fixed if phones could let us relock the bootloader, but with our own keys.

      Then only possible way to unlock it again or change anything would be to at least factory reset and we’ll see something is wrong.

    • kratoz29@lemm.ee
      link
      fedilink
      English
      arrow-up
      5
      ·
      1 year ago
      1. I have yet to see a problematic app that deny list can’t handle

      2. Stremio /s to be fair I have never bothered about this in my phone, as I have a Nvidia Shield TV, and honestly any current setup box (official) would do the job, there are perks of using a movie of course… But I can use Netflix here only that I have never bothered to check out the quality, I wouldn’t be surprised if a module for this existed to be honest.

      3. I bet most people are interested in scamming those dudes that compulsively tap in game ads to fetch their crypto BS apps or whatever, it is a similar scenario of why hackers target Windows and not Linux users… Granted every device is at risk once it connects to the Internet.

  • bug@lemmy.one
    link
    fedilink
    English
    arrow-up
    14
    ·
    1 year ago

    Strange that the focus point of this article is rooting, you can modify your device to install custom firmware etc without needing root exploits anymore!

    • kratoz29@lemm.ee
      link
      fedilink
      English
      arrow-up
      4
      ·
      1 year ago

      IMHO Android is not very free without root… I roll my eyes every time I see the need of adb commands when it is just way easier to slap in Magisk and have full control.

      I come from iOS and I used to jailbreak the heck out of my devices, rooting is very similar to JB (but better).

      • bug@lemmy.one
        link
        fedilink
        English
        arrow-up
        3
        ·
        1 year ago

        Depends what you want to do, really. I’ve got a proper PC for serious tinkering, my phone has all my private data on so I’d rather have the security that comes with blocking root access.

  • Big P@feddit.uk
    link
    fedilink
    arrow-up
    11
    ·
    1 year ago

    I’ve owned an android phone for over 10 years and have rooted most of them. To be honest, in that time I’ve rarely come across something that I’ve wanted to do but been unable to do without rooting. Generally anything I want to do also isn’t possible through rooting either. Same with custom ROMs, recently it seems you end up losing features rather than gaining them.

    • TheFriendlyArtificer@beehaw.org
      link
      fedilink
      arrow-up
      8
      ·
      1 year ago

      I would trade every half-assed Google feature update for a hosts based adblock capability.

      That’s the sole reason that I root every device that I own.

      And NO. A PiHole is not, repeat NOT a silver bullet. Nor is a local VPN with custom DNS.

    • lemmyvore@feddit.nl
      link
      fedilink
      English
      arrow-up
      5
      ·
      1 year ago

      On a rooted phone you can fully control app permissions and feed them fake data for the denied permissions.

      You can’t do that without root. On a locked iphone you control only a tiny fraction of permissions and it will let the app know so it can refuse working.

    • jsqribe@feedly.j-cloud.uk
      link
      fedilink
      arrow-up
      3
      ·
      1 year ago

      Agreed and sometimes the amount of work trying to find some random radio file to flash because 5G stops working… it’s not worth the headache anynore

      • MaggiWuerze@feddit.de
        link
        fedilink
        arrow-up
        2
        ·
        edit-2
        1 year ago

        Same. I still do custom roms when my device runs out of support, but no longer because it’s cool to have a custom Rom. There’s hardly one that I find exciting nowadays.

    • NightAuthor@beehaw.org
      link
      fedilink
      arrow-up
      9
      arrow-down
      1
      ·
      1 year ago

      You can do things to improve security with root access. Better yet, with boot loader access you can make your phone much much more secure with graphene os