this post was submitted on 20 Aug 2023
132 points (100.0% liked)

Technology

37742 readers
482 users here now

A nice place to discuss rumors, happenings, innovations, and challenges in the technology sphere. We also welcome discussions on the intersections of technology and society. If it’s technological news or discussion of technology, it probably belongs here.

Remember the overriding ethos on Beehaw: Be(e) Nice. Each user you encounter here is a person, and should be treated with kindness (even if they’re wrong, or use a Linux distro you don’t like). Personal attacks will not be tolerated.

Subcommunities on Beehaw:


This community's icon was made by Aaron Schneider, under the CC-BY-NC-SA 4.0 license.

founded 2 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
[–] Deemo@bookwormstory.social 33 points 1 year ago (4 children)

Few problems:

  1. Safteynet (play integrity) and root detection

There are magisk tweaks to help combat this but its a annoying game of cat and mouse. Some apps like chase have particularly annoying root detection to deal with. Also regaring safteynet once google fully enforces hardware attestation passing safteynet with tweaks will be borderline impossible (most tweaks try to spoof older phones that don't support safteynet hardware attestation).

  1. Widevine

Many streaming services (Netflix, Hulu, Disney, etc) will downgrade your video quality to 480p-540p due to L3 from unlocking the bootloader (a step thats usually required before you can root).

  1. Physical security (potential risk)

Unlocking the bootloader is the first step to allowing for rooting and custom roms. One pro/con is when you unlock the bootloader you are partially at risk to a evil maid attack (some one with physical acess to your phone can compromise it). While difficult to do automatically (and probably very very rare) some one could hypothetically place a malicious bootloader that could steel data. The risk of this is mostly low but does exist.

[–] lemmyvore@feddit.nl 14 points 1 year ago

once google fully enforces hardware attestation passing safteynet with tweaks will be borderline impossible

Never gonna happen. Full hardware attestation would give Google all the cards and too much power over manufacturers. Samsung is the largest Android manufacturer and they're making people jump though hoops to unlock bootloader precisely because they don't want to end up with full attestation.

Samsung and Google have been locked into a power struggle for many years now and they're both careful about keeping the armistice. Samsung maintains a set of apps that mimic Google's, ready to go in case Google ever pulls a Huawei and kicks them off Play.

[–] bandario@lemmy.dbzer0.com 11 points 1 year ago (1 children)

These are not really genuine concerns imo, and to the extent that they are - they should be recognised as shortcomings of an increasingly inflexible ecosystem.

  1. It's very easy to avoid root detection these days, and if you are rooting your phone, chances are you have also disabled the playstore app altogether so play protect is no longer a concern. I just use F-Droid and Aurora these days to reduce what can be associated with me or any of my accounts.

  2. Who the hell is watching shows on their phone so much that a reduction to SD is going to bother them on a 6 inch screen?

  3. If I can get my hands on your phone physically, there's very little you can do to keep me out regardless of if the bootloader is unlocked or not.

[–] Da_Boom@iusearchlinux.fyi 5 points 1 year ago* (last edited 1 year ago)

Pixel phones are arguably the worst for rooting. (I own one) In order to get the phone to pass properly you pretty much have to go custom on the ROM.

I'm running a stock firmware, and I get all sorts of problems as a result of rooting the device, and not installing a CFW.

I have 2 apps, that won't work (google pay and a credit score check/lock appand Microsoft intune - which my work partially uses)

Edit and did I mention? The LSPosed zygisk module causes so much instability I can't use it.

[–] smileyhead@discuss.tchncs.de 9 points 1 year ago
  1. This could be fixed if phones could let us relock the bootloader, but with our own keys.

Then only possible way to unlock it again or change anything would be to at least factory reset and we'll see something is wrong.

[–] kratoz29@lemm.ee 5 points 1 year ago
  1. I have yet to see a problematic app that deny list can't handle

  2. Stremio /s to be fair I have never bothered about this in my phone, as I have a Nvidia Shield TV, and honestly any current setup box (official) would do the job, there are perks of using a movie of course... But I can use Netflix here only that I have never bothered to check out the quality, I wouldn't be surprised if a module for this existed to be honest.

  3. I bet most people are interested in scamming those dudes that compulsively tap in game ads to fetch their crypto BS apps or whatever, it is a similar scenario of why hackers target Windows and not Linux users... Granted every device is at risk once it connects to the Internet.