1568
you are viewing a single comment's thread
view the rest of the comments
[-] feck_it@sh.itjust.works 9 points 1 year ago

That is why i rooted my phone as a tech noobie, and it gives me security warning everytime i restart it. As if their shitty apps are not security breach, lol.

[-] ActuallyRuben@actuallyruben.nl 8 points 1 year ago

A rooted phone is definitely a bigger security risk if you don't know what you're doing, as anything with root access is unbounded by the usual android permission system, and can completely demolish your OS. Additionally it can serve as a big warning if someone else has tampered with your device.

[-] mightysashiman@lemmy.dbzer0.com 3 points 1 year ago* (last edited 1 year ago)

Indeed, though I have yet to meet somebody that “doesn’t know what he’s doing” in matters of rooting. Basically, the phones that are still the easiest to bootload unlock are usually only appealing to tech geeks, while the most mainstream phones have a much more complex and hacky (if at all possible) process to unlock. So that in itself filters a lot of tech non-savvy users from getting into the subject…

I’m not sure I agree though with "as anything with root access is unbounded by the usual android permission system, and can completely demolish your OS”. Android’s permission system is imho garbage. It may on paper tick the “provides user with permission management” but since apps that are ill-intended will usually 1) drown the layperson in a multitude of permission requests to do anything,, it will usually translate to the user blanket accepting everything defying fine permission management as a whole 2) finer ID / privacy related data acces permissions don’t even get prompted for access, and only rely on the completely broken dev declarative scheme on the play store. IMHO, the finer permission management solutions that the Android community came up with ages ago (well before Android/Apple even thought fo implementing any permission management) did a much better job.

Rooting comes with a root manager (magisk, superUser…) that modal-prompts the user for either permanent or one-time allow / deny access when an app requests root that can be secured by fingerprint/password. I’d argue Root managers are more user-stupidity-proof thant Android’s own permission manager.

As for malicious apps requesting rooting, well, in the end, if the user is 1) stupid enough to download such apps (I’m guessing shady warez / cheat enabled games for the masses) 2) even stupider to accept a root access request from such an app… let natural selection do its job.

[-] rikudou@lemmings.world 4 points 1 year ago

A lot of people definitely don't realize what rooting actually means. If a user blindly accepts all permissions, there's no way it can be framed as an OS problem, that's definitely a user problem. If an app requests permission I think it shouldn't have, I deny it. If the app doesn't work afterwards, I don't need the app.

[-] feck_it@sh.itjust.works 1 points 1 year ago* (last edited 1 year ago)

Totally true, yet this thread app access requestments are more scary to me. I would like to limit those kind of apps. I root to install some ROMs and have fun, by "noobie" i meant that i can't follow the steps without a guide. I didn't mean that i run havok with root accesses left and right.

[-] feck_it@sh.itjust.works 1 points 1 year ago

Thanks for the warnings, yet i still think a literal gambling app is much more risky. I don't use my mobile phone on sensitive password saving apps or banking apps as i think those are risky on rooted phone too. I am just having fun as a careful newbie.

[-] lauha@lemmy.one 5 points 1 year ago

A lot of banking apps in europa don't work on rooted phones, so that is not an option.

[-] Nonononoki@lemmy.world 7 points 1 year ago

No problem with Magisk, been using banking apps on rooted phones for years

[-] Linssiili@sopuli.xyz 4 points 1 year ago

Fortunately you can use magisk to hide the rooted status from most apps. At least in Finland, I have had no problems with Nordea or Danske Bank. I remember that some app was troublesome, but I think I figured that one out also eventually.

[-] mightysashiman@lemmy.dbzer0.com 2 points 1 year ago* (last edited 1 year ago)

Magisk (latest release) + Universel SafetyNet Fix v2.4.0-MOD_1.2 (kdrag0n github) + add the apps to the zygist deny list + rename magisk manager. → does the job for me.

[-] feck_it@sh.itjust.works 1 points 1 year ago

Rightfully so. I don't think rooting a phone is a save option for banking purposes. I use my PC for that

[-] yoz@aussie.zone -4 points 1 year ago

When you dont know what you're doing it feels that way. I completely understand🙂

this post was submitted on 13 Jul 2023
1568 points (97.3% liked)

Mildly Infuriating

34796 readers
397 users here now

Home to all things "Mildly Infuriating" Not infuriating, not enraging. Mildly Infuriating. All posts should reflect that.

I want my day mildly ruined, not completely ruined. Please remember to refrain from reposting old content. If you post a post from reddit it is good practice to include a link and credit the OP. I'm not about stealing content!

It's just good to get something in this website for casual viewing whilst refreshing original content is added overtime.


Rules:

1. Be Respectful


Refrain from using harmful language pertaining to a protected characteristic: e.g. race, gender, sexuality, disability or religion.

Refrain from being argumentative when responding or commenting to posts/replies. Personal attacks are not welcome here.

...


2. No Illegal Content


Content that violates the law. Any post/comment found to be in breach of common law will be removed and given to the authorities if required.

That means: -No promoting violence/threats against any individuals

-No CSA content or Revenge Porn

-No sharing private/personal information (Doxxing)

...


3. No Spam


Posting the same post, no matter the intent is against the rules.

-If you have posted content, please refrain from re-posting said content within this community.

-Do not spam posts with intent to harass, annoy, bully, advertise, scam or harm this community.

-No posting Scams/Advertisements/Phishing Links/IP Grabbers

-No Bots, Bots will be banned from the community.

...


4. No Porn/ExplicitContent


-Do not post explicit content. Lemmy.World is not the instance for NSFW content.

-Do not post Gore or Shock Content.

...


5. No Enciting Harassment,Brigading, Doxxing or Witch Hunts


-Do not Brigade other Communities

-No calls to action against other communities/users within Lemmy or outside of Lemmy.

-No Witch Hunts against users/communities.

-No content that harasses members within or outside of the community.

...


6. NSFW should be behind NSFW tags.


-Content that is NSFW should be behind NSFW tags.

-Content that might be distressing should be kept behind NSFW tags.

...


7. Content should match the theme of this community.


-Content should be Mildly infuriating.

-At this time we permit content that is infuriating until an infuriating community is made available.

...


8. Reposting of Reddit content is permitted, try to credit the OC.


-Please consider crediting the OC when reposting content. A name of the user or a link to the original post is sufficient.

...

...


Also check out:

Partnered Communities:

1.Lemmy Review

2.Lemmy Be Wholesome

3.Lemmy Shitpost

4.No Stupid Questions

5.You Should Know

6.Credible Defense


Reach out to LillianVS for inclusion on the sidebar.

All communities included on the sidebar are to be made in compliance with the instance rules.

founded 1 year ago
MODERATORS