This might be a silly question, I've not used Samsung in a long time, last one was the S2 haha.....but is it ever going to be possible to root and/or install TWRP on this device without breaking OTA updates? I love rooting my devices and using custom ROMs, I still have need for root access, but to be honest this phone I would be happy keeping as close to stock as possible, I could live without TWRP, but will we ever get root without losing the ability to OTA update? If not then I'll just go custom when the urge becomes too strong haha.
Oh and I have the exynos version.
beta546 said:
This might be a silly question, I've not used Samsung in a long time, last one was the S2 haha.....but is it ever going to be possible to root and/or install TWRP on this device without breaking OTA updates? I love rooting my devices and using custom ROMs, I still have need for root access, but to be honest this phone I would be happy keeping as close to stock as possible, I could live without TWRP, but will we ever get root without losing the ability to OTA update? If not then I'll just go custom when the urge becomes too strong haha.
Oh and I have the exynos version.
Click to expand...
Click to collapse
+1
I too see a growing need for root elevation without destroying core security patch options. Either from stock, or with an aptitude like package management used by ROM creators, so you can even patch android files sooner than Samsung normally would. Because as it stands, the way we root now makes android a security disaster.
In essence this is a design failure by google and android. How could they expect users to be happy with non-configurable systems? That's why we don't have Apple devices, so we can config and alter whenever we would want to. Sigh.. Closed source for android is such a PITA. And so slow with patches..
?
jult said:
+1
I too see a growing need for root elevation without destroying core security patch options. Either from stock, or with an aptitude like package management used by ROM creators, so you can even patch android files sooner than Samsung normally would. Because as it stands, the way we root now makes android a security disaster.
In essence this is a design failure by google and android. How could they expect users to be happy with non-configurable systems? That's why we don't have Apple devices, so we can config and alter whenever we would want to. Sigh.. Closed source for android is such a PITA. And so slow with patches..
Click to expand...
Click to collapse
I agree, people like Samsung who just want to lock down their devices for whatever reason is just getting a bit extreme now. I don't think it's Google to blame though as android is easily rooted in general, it's manufacturers like Samsung that make you jump through hoops to do it. And yes it's exactly why we don't have iPhones haha. I believe every android device should come with a setting in developer options that just activates root with a disclaimer.....take my warranty, I don't care in the slightest, but don't cripple my device that I payed £720 for that is now my property, just because I want to use some of the most useful features and app designed to work with root. After reading through these forums I see Samsung seem more like apple than ever. I mean God the guide to install a custom ROM is crazy haha, perfectly doable, but compared to my le max 2 which was just, plug your phone in, push this through ADB, then flash this zip and you're done, so simple.
beta546 said:
I agree, people like Samsung who just want to lock down their devices for whatever reason is just getting a bit extreme now. I don't think it's Google to blame though as android is easily rooted in general, it's manufacturers like Samsung that make you jump through hoops to do it. And yes it's exactly why we don't have iPhones haha. I believe every android device should come with a setting in developer options that just activates root with a disclaimer.....take my warranty, I don't care in the slightest, but don't cripple my device that I payed £720 for that is now my property, just because I want to use some of the most useful features and app designed to work with root. After reading through these forums I see Samsung seem more like apple than ever. I mean God the guide to install a custom ROM is crazy haha, perfectly doable, but compared to my le max 2 which was just, plug your phone in, push this through ADB, then flash this zip and you're done, so simple.
Click to expand...
Click to collapse
The most important part of your post is often missed by a lot of people.
"lock down their devices for whatever reason..."
No one thinks about the reason it seems. As much as it sucks for folks on XDA, the folks that come to XDA don't think about all of the people that DO NOT come to XDA, or why a device manufacturer that makes their devices primarily for the Corporate world, wouldn't want to let their devices be unlocked by the small amount of XDA folks that buy them.
And before anyone says "the exynos is unlockable!" Remember the Exynos version is international, not USA. There's are so much more benefits to Samsung keeping the USA devices locked than there are downsides. I work for a small corporate company of about 300 employees and I am not allowed to have a device with the bootloader unlocked, period. Why? I don't even know, and I am in the tech field. Each company has their rules and such. Imagine how much contracts Samsung could have with corporations out there for their devices. We used to have one, and look at how small we are. We don't have one anymore because it's cheaper to just have employees front the device cost instead of the company paying for devices! Lame I know. I fought against it but lost.
As far as the original question goes, no, you will not be able to keep OTA and root at the same time. Not for the way OTA are setup, and rooting works.
Jammol said:
As far as the original question goes, no, you will not be able to keep OTA and root at the same time. Not for the way OTA are setup, and rooting works.
Click to expand...
Click to collapse
Now. You mean. It can (and should) change. The way the android permission model is designed, is totally corporate-based, not user-friendly at all. And if Samsung would stay on top of security-patches and push updates (like you have with Win10 now, which are still totally under the user's control without having to 'root' anything), that would be fine, but time and again these smartphone manufacturers have proven to stop giving a hoot after they've released a new model, if they even cared at all about security patching in time, because they apparently really don't. Not enough anyway. If they would, we'd already be running Android 9 on our Notes by now.
Jammol said:
The most important part of your post is often missed by a lot of people.
"lock down their devices for whatever reason..."
No one thinks about the reason it seems. As much as it sucks for folks on XDA, the folks that come to XDA don't think about all of the people that DO NOT come to XDA, or why a device manufacturer that makes their devices primarily for the Corporate world, wouldn't want to let their devices be unlocked by the small amount of XDA folks that buy them.
And before anyone says "the exynos is unlockable!" Remember the Exynos version is international, not USA. There's are so much more benefits to Samsung keeping the USA devices locked than there are downsides. I work for a small corporate company of about 300 employees and I am not allowed to have a device with the bootloader unlocked, period. Why? I don't even know, and I am in the tech field. Each company has their rules and such. Imagine how much contracts Samsung could have with corporations out there for their devices. We used to have one, and look at how small we are. We don't have one anymore because it's cheaper to just have employees front the device cost instead of the company paying for devices! Lame I know. I fought against it but lost.
As far as the original question goes, no, you will not be able to keep OTA and root at the same time. Not for the way OTA are setup, and rooting works.
Click to expand...
Click to collapse
That makes a lot of sense really, obviously there are going to be businesses and companies and such that wpild rely on their workers devices being as secure as possible, for multiple reasons. But again that's not really up to Samsung to decide really, now I agree that although there are a huge number of people that want to modify their devices in various ways, but on the grand scale it's a relatively low percentage of the market. Which is why I think it should always be an option, that way they cater to everyone. If a company has a requirement that all their employees devices stay locked down, they simply don't allow it, and if an employee does it regardless then the consequences would be their own. I guess Samsung could bake in the setting, but with an option at first boot as to leave the ability to unlock intact, or to choose to permanently remove any option of ever being able to do it. That way when a company bought the phones they could lock them all down before handing them out. But in the scenario where people must purchase their own device, they then would have to decide whether to follow company policy, or unlock the phone and risk potentially losing their job at worst because of it....that's just what I think really, but I'm in no way some business or manufacturing giant haha, there will be multiple arguments for and against this entire scenario.
And also thanks for the answer ? It was as I suspected, but always worth an ask.
Voiding the Warranty for unrelated modifications is illegal and there is a better way
It seems we are all getting used to the arrogance and impertinence ...
... with which manufacturers and telephone service operators want to dictate what we do with our property. Let us not forget that «this will void your warranty», though common practice, is not in accordance with current legislation.
Modifications to devices should be protected under the Magnuson-Moss Warranty Act, unless the modification caused the damage you're asking the manufacturer to repair. Manufacturers threatening to void warranties for rooting, even when they have no legal right to do so, is nothing but bullying, banking on the fact that most people are not feeling confident about legal battles with corporations for which time and money are of no consequence. It is about time that reviews took the aspect of rooting/customization friendliness into consideration, so that manufacturers like OnePlus and HTC receive the credit they deserve for being more lenient toward rooting and still receiving updates. If technology journalists pointed this aspect out in their reviews, companies might come to their senses. Being able to use some apps that can do what they do only with Root access is more important than yet another MegaPixel on the camera -- if the other manufacturers do not drop the ball yet again, by dumbing down their phone instead of building the best device they possibly can, this year's phone purchase will be from a brand that is user friendly and provides OTA updates even on customised devices.
As for the «security» fairytale, that's often the last aspect that manufacturers care about, skipping security patches even after exploits have been detected. By the way: if some guy with a mobile phone could really bring down or disturb an operator's network, the operator doesn't deserve better. Most people do not root because they are devious masterminds from a Bond movie who try to mess up their kernels or bring down the global communication networks, but because they want to customize the looks of devices to their liking, fix some flaws or get some software to work. Very few people would keep rooting if manufacturers only guarded their kernels against overclocking beyond what the phone can endure and operators blocked what could disrupt the network -- if they did that and only that, hardly anyone would complain or root.
Security is obviously not what it's really all about. On my SAMSUNG GALAXY NOTE 9, Amazon Shopping, Fakecrook, LinkedIn and a whole bunch of other garbage came pre-installed as system apps that can be disabled but not uninstalled. Like everything imposed on us by Google, these companies have no interest in enhancing their customers' security and privacy, but exactly the opposite, grab as much sensitive information about us as they possibly can and sell it to whoever is interested and willing to pay for it.
On a Windows PC, I can do most things I want to do if I really have to, via editing the Windows Registry if need be and turning off User Access Control (UAC) when the unnecessary extra-click got on my nerves. Millions of people are and have been doing the same without upsetting the space-time-continuum, and corporations can restrict whatever they want to restrict if there is an administrator to do it. In most cases, however, there is not, because after all, it's a Personal Computer (PC), managed by the user at home. If we pay for something -- and quite handsomely so -- we own it, consequently it should be us who, after a warning that can be turned off with a checkmark, have the final say. So far, the corporate world seems to thrive quite nicely with the kind of approach to security that MS Windows is taking, despite surely being the first and loudest ones to complain if there were any real and relevant problems that seriously threaten their dayly operations.
Mobile phone manufacturers and operators use «security» as an excuse to restrict what the owners of those expensive little toys can do, just like governments proclaim «terrorism» as the excuse for spying on and controlling their own populations by grabbing ever more power with authorizing laws that undermine constitutional civil liberties. In our societies, it is to keep track on any possible threats to the Status Quo that might be caused by a shift of public opinion if the media -- these days large corporations themselves -- did not distract us with polemics, sports and celebrity BS, but reported on and kept in focus issues such as ecology, human overpopulation, inequality, tax evasion, poverty, injustice, corruption, lobbyism and so on. In the mobile phone world, they do it to milk us for banalities like boot animations, wallpapers, type fonts, themes, icons and whatever we would like to do to make our phones look nicer. Under Windows, buy a shareware CD with 10,000 fonts, copy the 20 or 30 you like into the respective system folder -- done. On Android, they want to milk us for every bit they can and that's the real motivation for all the bull****, harassment, hoops and loops they make us jump through.
If companies were really interested in user privacy rights and security, the first thing that would be forbidden were advertisements, because a lot of sh.t can come in through those backdoors. Second, why does Apple not allow antivirii and firewalls if security is such a concern? Why are owners of devices with a custom recovery or root being punished by exclusion from OTA updates, given that these updates are supposed to improve stability and security? That's just bollocks and distraction to ram as much advertising down our throat, rip us off for every boot animation, wallpaper, theme, icon or type font that we have tons of lying around on our hard drive, and to obtain as much data from us as possible, in order to know and track what we buy, think, believe, suffer from, like, dislike or do in any place at any at any time.
Apart from a couple of absolute geeks and nerds, nobody would root their phones if adaptation and customization of our phones was easily possible, i.e. if everything except things that could irrevocably damage hardware or networks could be easily modified as we please. The introduction of a/b partition slots for Seamless Updates paved the way for preventing irreparable accidents and could easily be expanded and improved, together with a better design of the user interface and user experience to make the process more comprehensible for average users. Yet, most companies did not even implement a/b partitions, although this approach makes accidents and mistakes when playing around with the device «non-lethal» and saves the Customer Service costs that companies so often cite as the second excuse and pretext for the arrogance with which they keep and exert control over other people's property. With each new generation of phones and every new version of operating systems, the restrictions are getting worse, the options for access and harmless modification less, and that unacceptable trend needs to stop.
If companies want to disencourage people from rooting their phones, they need to stop bombarding us with intrusive ads, stop spying and imposing bloatware and replace it with useful tool bundles (Titanium Backup, decent file managers, cleaners, system tools and the like). It is okay to guard and firewall the indispensable and risky parts (hardware overclocking, network integrity), but only block those irreparable areas while opening up the rest for users to customise to their hearts content, making it as comfortable, easy and intuitive as possible to copy, paste, move and configure everything else between phone and PC. If something goes wrong while doing so, make sure that a system restore point and booting into the alternative partition means that there's no harm, no foul and therefore no problem and no service cost.
Instead of wasting our time hunting for patched partiton files, info on how to get out of bootloops, etc., users could then enjoy and be happier with our phone instead of fixing its shortcomings or, dare I say it, do something fun and entertaining outside while the snow is fresh or the sun is shining.
.
Qui Peccavit said:
It seems we are all getting used to the arrogance and impertinence ...
... with which manufacturers and telephone service operators want to dictate what we do with our property. Let us not forget that «this will void your warranty», though common practice, is not in accordance with current legislation.
Modifications to devices should be protected under the Magnuson-Moss Warranty Act, unless the modification caused the damage you're asking the manufacturer to repair. Manufacturers threatening to void warranties for rooting, even when they have no legal right to do so, is nothing but bullying, banking on the fact that most people are not feeling confident about legal battles with corporations for which time and money are of no consequence. It is about time that reviews took the aspect of rooting/customization friendliness into consideration, so that manufacturers like OnePlus and HTC receive the credit they deserve for being more lenient toward rooting and still receiving updates. If technology journalists pointed this aspect out in their reviews, companies might come to their senses. Being able to use some apps that can do what they do only with Root access is more important than yet another MegaPixel on the camera -- if the other manufacturers do not drop the ball yet again, by dumbing down their phone instead of building the best device they possibly can, this year's phone purchase will be from a brand that is user friendly and provides OTA updates even on customised devices.
As for the «security» fairytale, that's often the last aspect that manufacturers care about, skipping security patches even after exploits have been detected. By the way: if some guy with a mobile phone could really bring down or disturb an operator's network, the operator doesn't deserve better. Most people do not root because they are devious masterminds from a Bond movie who try to mess up their kernels or bring down the global communication networks, but because they want to customize the looks of devices to their liking, fix some flaws or get some software to work. Very few people would keep rooting if manufacturers only guarded their kernels against overclocking beyond what the phone can endure and operators blocked what could disrupt the network -- if they did that and only that, hardly anyone would complain or root.
Security is obviously not what it's really all about. On my SAMSUNG GALAXY NOTE 9, Amazon Shopping, Fakecrook, LinkedIn and a whole bunch of other garbage came pre-installed as system apps that can be disabled but not uninstalled. Like everything imposed on us by Google, these companies have no interest in enhancing their customers' security and privacy, but exactly the opposite, grab as much sensitive information about us as they possibly can and sell it to whoever is interested and willing to pay for it.
On a Windows PC, I can do most things I want to do if I really have to, via editing the Windows Registry if need be and turning off User Access Control (UAC) when the unnecessary extra-click got on my nerves. Millions of people are and have been doing the same without upsetting the space-time-continuum, and corporations can restrict whatever they want to restrict if there is an administrator to do it. In most cases, however, there is not, because after all, it's a Personal Computer (PC), managed by the user at home. If we pay for something -- and quite handsomely so -- we own it, consequently it should be us who, after a warning that can be turned off with a checkmark, have the final say. So far, the corporate world seems to thrive quite nicely with the kind of approach to security that MS Windows is taking, despite surely being the first and loudest ones to complain if there were any real and relevant problems that seriously threaten their dayly operations.
Mobile phone manufacturers and operators use «security» as an excuse to restrict what the owners of those expensive little toys can do, just like governments proclaim «terrorism» as the excuse for spying on and controlling their own populations by grabbing ever more power with authorizing laws that undermine constitutional civil liberties. In our societies, it is to keep track on any possible threats to the Status Quo that might be caused by a shift of public opinion if the media -- these days large corporations themselves -- did not distract us with polemics, sports and celebrity BS, but reported on and kept in focus issues such as ecology, human overpopulation, inequality, tax evasion, poverty, injustice, corruption, lobbyism and so on. In the mobile phone world, they do it to milk us for banalities like boot animations, wallpapers, type fonts, themes, icons and whatever we would like to do to make our phones look nicer. Under Windows, buy a shareware CD with 10,000 fonts, copy the 20 or 30 you like into the respective system folder -- done. On Android, they want to milk us for every bit they can and that's the real motivation for all the bull****, harassment, hoops and loops they make us jump through.
If companies were really interested in user privacy rights and security, the first thing that would be forbidden were advertisements, because a lot of sh.t can come in through those backdoors. Second, why does Apple not allow antivirii and firewalls if security is such a concern? Why are owners of devices with a custom recovery or root being punished by exclusion from OTA updates, given that these updates are supposed to improve stability and security? That's just bollocks and distraction to ram as much advertising down our throat, rip us off for every boot animation, wallpaper, theme, icon or type font that we have tons of lying around on our hard drive, and to obtain as much data from us as possible, in order to know and track what we buy, think, believe, suffer from, like, dislike or do in any place at any at any time.
Apart from a couple of absolute geeks and nerds, nobody would root their phones if adaptation and customization of our phones was easily possible, i.e. if everything except things that could irrevocably damage hardware or networks could be easily modified as we please. The introduction of a/b partition slots for Seamless Updates paved the way for preventing irreparable accidents and could easily be expanded and improved, together with a better design of the user interface and user experience to make the process more comprehensible for average users. Yet, most companies did not even implement a/b partitions, although this approach makes accidents and mistakes when playing around with the device «non-lethal» and saves the Customer Service costs that companies so often cite as the second excuse and pretext for the arrogance with which they keep and exert control over other people's property. With each new generation of phones and every new version of operating systems, the restrictions are getting worse, the options for access and harmless modification less, and that unacceptable trend needs to stop.
If companies want to disencourage people from rooting their phones, they need to stop bombarding us with intrusive ads, stop spying and imposing bloatware and replace it with useful tool bundles (Titanium Backup, decent file managers, cleaners, system tools and the like). It is okay to guard and firewall the indispensable and risky parts (hardware overclocking, network integrity), but only block those irreparable areas while opening up the rest for users to customise to their hearts content, making it as comfortable, easy and intuitive as possible to copy, paste, move and configure everything else between phone and PC. If something goes wrong while doing so, make sure that a system restore point and booting into the alternative partition means that there's no harm, no foul and therefore no problem and no service cost.
Instead of wasting our time hunting for patched partiton files, info on how to get out of bootloops, etc., users could then enjoy and be happier with our phone instead of fixing its shortcomings or, dare I say it, do something fun and entertaining outside while the snow is fresh or the sun is shining.
.
Click to expand...
Click to collapse
Best post I've read in the recent years. Well done!
PS: Love the Angola flag.
Related
Anyone know anything about this?
http://www.goandroid.co.in/samsung-galaxy-s5-update-brings-performance-tweaks/37180/
quordandis said:
Anyone know anything about this?
http://www.goandroid.co.in/samsung-galaxy-s5-update-brings-performance-tweaks/37180/
Click to expand...
Click to collapse
I'm curious about this too. I've been checking the updater and theres no software update available.
The screenshots in that article are for the Canadian variant -- G900W8.
It'll probably take a while for any update to get "certified" by the big @, plus I think I'm going to avoid doing software and security policy updates in case an exploit for this current version is found.
smknutson said:
It'll probably take a while for any update to get "certified" by the big @, plus I think I'm going to avoid doing software and security policy updates in case an exploit for this current version is found.
Click to expand...
Click to collapse
I have to wonder how many full-time employees AT&T and Samsung have that do nothing but monitor the web (mostly XDA) for whatever goes on here at XDA so they can react to any potential important discoveries, mods, or developments.
scott14719 said:
I have to wonder how many full-time employees AT&T and Samsung have that do nothing but monitor the web (mostly XDA) for whatever goes on here at XDA so they can react to any potential important discoveries, mods, or developments.
Click to expand...
Click to collapse
For the longest time I have thought this..............
I thought I was the only one...
I too also thought this....it had occurred to me that it would be particularly clever and prudent to have your finger on the pulse of your "power users", but then it occurred to me that because it's such a smart idea, they're guaranteed NOT to do it (keeping in line with they're history). So that's my logic....
As nefarious as that sounds, it's almost guaranteed that the engineering portions of Sammy/AT&T that are responsible for security monitor forums and social media such as this. Probably even have moles portraying themselves as ignorant users.
smknutson said:
As nefarious as that sounds, it's almost guaranteed that the engineering portions of Sammy/AT&T that are responsible for security monitor forums and social media such as this. Probably even have moles portraying themselves as ignorant users.
Click to expand...
Click to collapse
I'm sure that engineers look at XDA and other developer/user forums out of interest or even as part of the job; but unless something directly affects Samsung or AT&T in a manner that is costing them a significant amount of money I doubt any action is made in response. Remember these are corporations, money/time is not spent chasing a relatively few users who choose modify their phones, even if it is to evade fees and/or modify a locked feature. It just doesn't make a large financial difference.
Apple certainly pursued a cease and desist strategy but I think that was mostly out of a control freak corporate culture. Other than tethering for free,what do rooting and custom ROMs actually cost AT&T or Samsung? We still buy their phones loyally and pay for the service. If it mattered enough they would take greater steps to lock stuff down, or routinely push updates to secure their devices when exploits are found.
Just my take on it - I'm a pretty paranoid dude but not in this regard. We just don't matter much to them.
http://forum.xda-developers.com/showthread.php?t=2721505
I know the qualcomm guys look. Lol
Sent from my SAMSUNG-SGH-I317 using Tapatalk
TOA Duck said:
http://forum.xda-developers.com/showthread.php?t=2721505
I know the qualcomm guys look. Lol
Sent from my SAMSUNG-SGH-I317 using Tapatalk
Click to expand...
Click to collapse
the sad thing is all those files and scripts wouldn't have provided us any solution to root or unlocking the boot loader, those were qualcomm scripts and files but only for signing the mbr/mbl nothing unfortunatley to do with unlocking it or rooting the device in any manor, the certs may have been helpfull in tricking odin in to believing a custom rom was official is the only thing that i could actually see coming out of that.
and I was a little leary of the member in the first place, he offered no tangible proof that the scripts did anything all he did was list a directory of files, and when he was asked to provide proof that he actually rooted or unlocked a bootloader he refused to respond.
delawaredrew said:
I'm sure that engineers look at XDA and other developer/user forums out of interest or even as part of the job; but unless something directly affects Samsung or AT&T in a manner that is costing them a significant amount of money I doubt any action is made in response. Remember these are corporations, money/time is not spent chasing a relatively few users who choose modify their phones, even if it is to evade fees and/or modify a locked feature. It just doesn't make a large financial difference.
Apple certainly pursued a cease and desist strategy but I think that was mostly out of a control freak corporate culture. Other than tethering for free,what do rooting and custom ROMs actually cost AT&T or Samsung? We still buy their phones loyally and pay for the service. If it mattered enough they would take greater steps to lock stuff down, or routinely push updates to secure their devices when exploits are found.
Just my take on it - I'm a pretty paranoid dude but not in this regard. We just don't matter much to them.
Click to expand...
Click to collapse
One thought. Samsung and Apple are both making big enterprise plays. My company in it's BYOD program is pushing Samsung hard over other Android phones because they are more locked down with corporate policies mandating encryption and forbidding rooting/jailbreaking coming soon to my employer, I can see how a locked down phone is more attractive to them and could lead to more sales, not yet.
We're not their only market, and in the grand scheme of things, there may be more money for them going this path.
stoobie-doo said:
One thought. Samsung and Apple are both making big enterprise plays. My company in it's BYOD program is pushing Samsung hard over other Android phones because they are more locked down with corporate policies mandating encryption and forbidding rooting/jailbreaking coming soon to my employer, I can see how a locked down phone is more attractive to them and could lead to more sales, not yet.
We're not their only market, and in the grand scheme of things, there may be more money for them going this path.
Click to expand...
Click to collapse
What they should be doing is making business/gov contracted phone deals locked down, and leaving the consumer phones as is, that's what they should be doing. Honestly TW is pretty good now and wouldn't bother me if I couldn't flash a rom (obviously I want to), however not having root and not being able to actually delete (not just disable) bloatware is f'n annoying lol.
TOA Duck said:
http://forum.xda-developers.com/showthread.php?t=2721505
I know the qualcomm guys look. Lol
Sent from my SAMSUNG-SGH-I317 using Tapatalk
Click to expand...
Click to collapse
Huh thats interesting. I had argued it was worthless since QC hadn't sent a takedown. May have to take another look.
https://www.washingtonpost.com/news...o-buy-almost-anything/?utm_term=.088c0c1a80ff
It seems like this directly applies to the ability to root and tinker with our electronics?
Edit: if some mod would fix my grammar in the post title...that would be great.
skinote said:
https://www.washingtonpost.com/news...o-buy-almost-anything/?utm_term=.088c0c1a80ff
It seems like this directly applies to the ability to root and tinker with our electronics?
Click to expand...
Click to collapse
It's been a little while, but figured I'd reply about it, because I had the same reaction to hearing about that decision. Some qualifiers; the case was regarding patent law. As such this decision is not an apples to apples comparison to rooting/modding/taking control of our phones and other similar electronics; and we cannot point to this case and tell Google/Apple, Samsung/LG/HTC/et al, and AT&T/Verizon/Sprint/et al to give us full access to our phone if we want it. That said, I do still think that if someone was to take a case to the Supreme Court specifically on this topic; the decision would be pretty much the same.
The SCotUS has been fairly consistent over the decades with regards to the person who purchases a physical device as being allowed to do whatever they want with it after they get it. But they might also decide to allow the phone companies some requirements so that they can secure their services. This likely is the main reason why none of the companies will try to resolve rooting/modding/bootloader unlocking in the courts; they know that they will lose based on previous decisions.
With how Android has been steadily moving to be more and more like iOS in trying to make it harder and harder to root the phone and taking away more and more control that the end user has; I think that it might be a good time for a new mobile phone OS that innately gave the user the option to root, install custom recoveries, and otherwise truly make ones phone their own.
I have Oneplus 3T Oxygen OS 4.1.6
My friend told me yesterday that android can be easily hacked, But i dont believe him
I have encryped my device+lockscreen pin+fingureprint+No malwares+ security pin for recovery and os startup too
Usb debugging is disabled, as well as oem unlocking disabled too, My question is if someone steals my device will he be able to get my data?, Will he able to change IMEI?, Without changing any hardware
My friend is betting on that android can be hacked even if i its secured. Is there any chances that it can be hacked????
Does this friend even have any specific technical knowledge of smartphones, Android, etc.; or just repeating rumors and hearsay?
Speaking not as a security expert, but just as a longtime Android user: Hacking like you said (unmodified phone, stealing it and trying to access your personal data) is pretty much nonsense. In strict technical terms, any device can be hacked eventually. But it would be difficult to do so, given the phone is encrypted. And by the time they did that, most folks would have been savvy enough to cancel their credit cards, change their important passwords, etc.
You can also remote wipe the phone, although it needs to be powered on, and connected to the Internet to do so. And smart thieves will have shut off the phone and/or turned on airplane mode.
Predominating philosophy would be that criminals are going for the lowest hanging fruit. It's far more likely the thief will just wipe the phone, and try to sell it. On the data theft side, there are easier methods to steal personal info than trying to hack an encrypted phone.
https://xkcd.com/538/
Didgeridoohan said:
https://xkcd.com/538/
Click to expand...
Click to collapse
Yeah, pretty much!
redpoint73 said:
Does this friend even have any specific technical knowledge of smartphones, Android, etc.; or just repeating rumors and hearsay?
Speaking not as a security expert, but just as a longtime Android user: Hacking like you said (unmodified phone, stealing it and trying to access your personal data) is pretty much nonsense. In strict technical terms, any device can be hacked eventually. But it would be difficult to do so, given the phone is encrypted. And by the time they did that, most folks would have been savvy enough to cancel their credit cards, change their important passwords, etc.
You can also remote wipe the phone, although it needs to be powered on, and connected to the Internet to do so. And smart thieves will have shut off the phone and/or turned on airplane mode.
Predominating philosophy would be that criminals are going for the lowest hanging fruit. It's far more likely the thief will just wipe the phone, and try to sell it. On the data theft side, there are easier methods to steal personal info than trying to hack an encrypted phone.
Click to expand...
Click to collapse
I understand what you said, There was a debate between me and my friend which is better ios or android, He told me even with extreme security on android i can be easily hacked without even any harware change? This thing is annoying me, How could someone get access is I have encrypted+security pin+Recovery Pin. Is it still possible to get into device?
Your friend sounds like a crazy apple fanboy (no offense). I personally wouldn't even bother to engage in that argument, it's pointless. Don't worry, your device is perfectly safe.
Ritss778 said:
There was a debate between me and my friend which is better ios or android
Click to expand...
Click to collapse
I suspected as much. I don't think your friend has any clue about Android or smartphone security.
Ritss778 said:
He told me even with extreme security on android i can be easily hacked without even any harware change? This thing is annoying me, How could someone get access is I have encrypted+security pin+Recovery Pin. Is it still possible to get into device?
Click to expand...
Click to collapse
Your friend is just plain wrong if he is saying your phone can be "easily" hacked just because it's Android. This just sounds to me like an ill-informed Apple fanboy, who wrongly thinks a device is "inferior" just because it's not Apple; without actually knowing any technical details or information.
These smartphones all do the same things, fundamentally. iOS is not significantly any more or less secure than Android. Just look at the massive iCloud hack where hundreds of celebrity photos were stolen. And your friend want to say his phone is "more secure" just because Apple?
Malware is probably the biggest security threat for Android (more so than iOS). But as long as you only install only reputable apps, and halfway careful when allowing app permissions, you should be safe. And it doesn't sound like malware is what your friend is talking about, but rather physical theft and subsequent hacking.
In theory, hacking any device is "possible" (given enough time and effort) but that doesn't mean its probable. Nothing about Android makes it "easy" to hack outright. It would probably take a hacker days, weeks, if ever, to break the encryption. And it would require a technological wizard. It's not even worth the effort, for relatively little payoff (at most, gaining your access to your bank account?). Someone with that much skill is going after bigger fish, like the kind of security breaches that compromise thousands of credit card numbers.
In reality, criminals will go for lowest hanging fruit. Folks with phones that are not encrypted or secured. Or some phishing scheme or social engineering to obtain a password or other personal info. Why spend hundreds of hours trying to hack a single phone's encryption, when you can trick someone into giving you their credit card number in a few minutes?
In any case, iPhones are the most stolen phone, last I heard. Therefore, your friend is at more risk of just having his phone stolen, in the first place.
---------- Post added at 11:56 AM ---------- Previous post was at 11:53 AM ----------
-Ric- said:
Your friend sounds like a crazy apple fanboy (no offense). I personally wouldn't even bother to engage in that argument, it's pointless. Don't worry, your device is perfectly safe.
Click to expand...
Click to collapse
Pretty much the point I was trying to make, but without all my rambling! :laugh:
Ritss778 said:
I understand what you said, There was a debate between me and my friend which is better ios or android, He told me even with extreme security on android i can be easily hacked without even any harware change? This thing is annoying me, How could someone get access is I have encrypted+security pin+Recovery Pin. Is it still possible to get into device?
Click to expand...
Click to collapse
Think from a different prospective...
If your phone is stolen doesn't matter iOS or driod or xyz. There are ways to get access to data.
If you are using it then security and safety depends on one thing. Your brain.
In terms of data, most data we have resides in cloud including photos, facebook, whatsapp, we chat etc etc. It's all in cloud owned by someone to advertise on us.
Information available on Reddit seem to show that several of Motorola's phones have not had any security patch levels applied since after January. It also seems like as long as the known security issues are just documented as theoretically possible that Lenovo/Motorola seem happy to keep reiterating the same lie that they make security a "top priority" while not actually addressing these problems. It is also frustrating that Motorola seems unwilling to release a version of the Motorola One that is intended to be used in the USA.
It would be nice to have a proof of concept repository similar to Rapid7's metasploit but for the Motorola G-series. Please keep in mind, I am *NOT* talking about violating responsible disclosure. This would not include any unpatched vulnerabilities. Instead, this would be known issues were AOSP has provided fixes to Motorola for over a month and Motorola has selected to still notify it's customers that their device is "up to date" without having addressed the known issues.
I believe only by showing customers what is possible with this exploits can enough pressure be put on Lenovo/Motorola to make "top priority" mean actual action instead of empty posturing.
However, based on my careful reading of the XDA ToS, it seems anything that facilitate the creation of malicious content is not allowed. This seems vaguely worded enough to exclude all proof of concept exploit discussion. But several of the issues left unaddressed by Motorola seem to be fairly easy to exploit. So, is XDA really improving the situation or avoiding transparency in favor of shielding Motorola's poor behavior?
It would be really nice if someone could provide some clarification behind the wording of this ToS and XDA's position on vendors that make security a "top priority" leaving months of patches outside of the scope available to customers if the device is to remain under warranty.
This is what I already said.
Motorola is just a retarded company.
I don't know in which universe this is acceptable.
Someone needs to sh*t in a bag and address it at Motorola, so they see what they sell.
The G6 was my last Motof**k phone.
F**k Motorola. F**k Lenovo and f**k all the retards which work in this companies.
I hope the company dies and never sells a f**kphone again.
I completely understand your level of frustration ThisIsRussia but please don't get the thread locked.
If I were to mail something to Motorola to make a statement, it would probably be a finger-print reader attached to swiss cheese. They keep using user facing features to give the illusion of security while leaving the rest of the product full of security holes.
Yeah, sorry I was a little upset because they are always responding with phrases like "soon it will be updated" etc.
Since February. Its May now.
I just don't use Motorola phones anymore and if someone asked me for opinion I didn't recommend Motorola/Lenovo.
They are a bunch of liars. period.
I picked up the g6 on Fi just to have a cheap phone. I thought it was just the Fi version not getting security updates.. luckily I don't keep financials, etc on. Only good as a glorified phone and music streaming device, but for $99?
Not many budget phones get monthly patches on time. None that are under$150 anyways.
$99 or $150 isn't what I was charged for the Moto G6. It was released for a price of $200.
The Federal Trade Commission has fined D-Link, TP-Link and ASUS for marketing *BUDGET* wireless routers that sold for much less than $200 or $150 or $99 for misrepresenting their products as providing security while "failing to take reasonable steps to secure."
According to David Kleidermacher, Google's head of security for Android, ""Android security made a significant leap forward in 2017 and many of our protections now lead the industry" and also "as Android security has matured, it has become more difficult and expensive for attackers to find high severity exploits."
Google owned Motorola, they should have been able to established policies and procedures for Motorola to make good on David Kleidermacher's statements. Or they should have made establishing those part of terms of the sale to Lenovo.
Lenovo and Motorola also market themselves as providing security even for budget devices with statements as:
* "Prevent unauthorized access with secure biometrics"
* "keeping your devices and systems secure and your digital privacy intact is a top priority"
At no point do they put any exclusionary statement such as "but only if it is not a budget device."
Also, while Motorola One is also a budget device, it does get more frequent updates. However, the Moto One is clearly not intended for purchase in the USA market and is missing support for several LTE bands.
And the Moto G6 is supposed to be a Treble/GSI device were any effort Motorola put into providing updates to flagship GSI devices should also apply to being able to also update the G6 for almost no additional effort.
So, I reject the claim no one should expect Feb 2019 security updates by May 2019 because it is simply a budget device.
Then let's also look at the claim that if financials or similar are not stored directly on the phone then it is not really a big issue.
To respond to that I am going to focus on just one Feb 2019 patch. There have been plenty of other security issues in Jan 2019 to now but for purposes of this discussion, I will just focus on one. The CVE-2019-1988 seems to still apply to still apply to any Motorola phone that is "up-to-date" but has a Jan 2019 security level. This vulnerability as a high impact score of 10 out of 10 and an easy exploitability score of 8.6 out of 10. The attack complexity is low and "could lead to remote code execution in system_server with no additional execution privileges needed."
What would need to result from this for it to be considered a violation of Lenovo and Motorola's marketing of making security a top priority?
What if an email or MMS ("text message") or instant message could do any of the following:
* Open and stream the microphone while the phone is locked
* Take and transmit pictures from either the front or rear camera while the phone is locked
* Send and receive text messages while the phone is locked
* Transmit phone location while the phone is locked
* Access and transmit email and files/documents on Google Drive and Google Docs while the phone is locked
Would any of this be disturbing? Is Lenovo/Motorola really delivering on "[preventing] unauthorized access with secure biometrics" if this is possible while the phone is locked?
I get this is all theoretical and I sound like I have been wearing a tin foil hat (maybe I am ). Anyone want to find out? Anyone want to give me the phone number to a Moto G6? Anyone want to give me the email address that they use with their Moto G6? How confident are people that not having financials stored directly on the phone means CVE-2019-1988 is not a major issue?
So far, people's reactions have been similar to this forum that there is still things people can do to maintain their privacy while using a device in this state. No one wants to believe that a major company would leave them so exposed. Lenovo/Motorola seems to be banking on no one understand the full scope of the problem. But what if a Proof of Concept of a Remote Access Trojan launched not via installing an application but simply from viewing a PNG really happened, would anyone be interested that? Would being able to actually demonstrate a PoC RAT have any positive value in holding Motorola accountable to their marketing claims or simply feed "hackers" with an exploit? If it is already known to be easily exploitable, shouldn't it be safe to assume any criminal that wanted it already has created their own implementation?
What exactly is XDA's stand on a real PoC RAT full disclosure? Is XDA taking on the stance that a RAT disclosure is always only harmful? Or is it that Motorola's actions are harmful?
@chilinux
Relax, you don't need to attack me. I can see you're feeling very hostile.
I didn't say you or anyone should accept it. I said it's common on low end devices. Even low to midrange devices.
I don't care what you paid for it. I have the g6 play and paid $99 for it. And it has been updated to pie with March security patch.
Moto is not great at supplying updates the way they were when they were under Google. Not many companies in China that are shopping phones to other countries are good at it.
It sucks, I was agreeing with you.
So rant at someone else. Geez
madbat99 said:
@chilinux
Relax, you don't need to attack me. I can see you're feeling very hostile.
Click to expand...
Click to collapse
I am very sorry you feel personally attacked. I do admit that I have taken a hostile stance but I wasn't trying to attack you.
My point is that I have already heard from users that the issue is not really that bad. It really seems like a demonstration is the only way to change the Lenovo/Motorola business model of leveraging customer misconception. At the same time, the XDA ToS seems to be at odds with using this forum as the method of giving such a demonstration. To me, this means XDA is passively contributing to Motorola's clearly invalid marketing of using product security to protect against unauthorized access.
Allowing remote unauthorized access is very much part of how the Moto G6 functions.
chilinux said:
I am very sorry you feel personally attacked. I do admit that I have taken a hostile stance but I wasn't trying to attack you.
My point is that I have already heard from users that the issue is not really that bad. It really seems like a demonstration is the only way to change the Lenovo/Motorola business model of leveraging customer misconception. At the same time, the XDA ToS seems to be at odds with using this forum as the method of giving such a demonstration. To me, this means XDA is passively contributing to Motorola's clearly invalid marketing of using product security to protect against unauthorized access.
Allowing remote unauthorized access is very much part of how the Moto G6 functions.
Click to expand...
Click to collapse
XDA needs to cover their butts. They walk a fine line on many things.
To provide members the most information, useful guides, and general Android knowledge; they do have to remain, for lack of a better term, "neutral".
They allow us access to guides, knowledge, and even files, that allow us to take back some semblance of "ownership" of our devices. And that is despite many OEM, and country, restrictions, regulations, and "ownership", be it proprietary or what have you, that threaten their voice.
We, in turn, try to adhere to their rules to maintain an even keel, so to speak. So as not to make it harder, or impossible, to do the good work they are doing.
That said, this may not be the platform to achieve the ends you seek. Even if others share your view, in part, or otherwise.
Make sense?
madbat99 said:
XDA needs to cover their butts. They walk a fine line on many things.
To provide members the most information, useful guides, and general Android knowledge; they do have to remain, for lack of a better term, "neutral".
They allow us access to guides, knowledge, and even files, that allow us to take back some semblance of "ownership" of our devices. And that is despite many OEM, and country, restrictions, regulations, and "ownership", be it proprietary or what have you, that threaten their voice.
We, in turn, try to adhere to their rules to maintain an even keel, so to speak. So as not to make it harder, or impossible, to do the good work they are doing.
That said, this may not be the platform to achieve the ends you seek. Even if others share your view, in part, or otherwise.
Make sense?
Click to expand...
Click to collapse
I understand what it is you are trying to saying that XDA sees it to their advantage to not rock the boat too much. That doesn't mean it makes sense to me.
Here is how I view how the world works when people don't speak out:
https://www.cnn.com/2019/01/12/middleeast/khashoggi-phone-malware-intl/index.html
If Motorola wants to specify that security and safety simply is not part of this product, then I can understand them making that part of their *stated* business model. But Lenovo/Motorola has decided they can market a product as preventing authorized access without doing the work required to actually provide that feature. There should be moral and ethical issues raised when knowingly letting a company mislead their customers to that extent.
There should be room someplace on the XDA forum to create a penetration/vulnerability to put customers of Motorola in a better position for informed consent. The idea that the average person can take the April and May 2019 security bulletins and understand what that really means just doesn't work out. They know what the word "critical" means but usually don't know what RCE is and largely take it as being someone else's problem. The level of conflict of interest on the part of Motorola is not made clear.
Instead, the average person still focuses on if when they are going to see the latest Avengers movie. "CVE-2019-2027" means nothing but if you show them April/May gives criminals all of the infinity gems such that at a click of their fingers half of customers of Motorola have their privacy turn to dust, then that is something they can at least understand. Then they can more meaningfully decide if it is reasonable/safe to use that device without leaving airplane mode permanently on.
chilinux said:
I understand what it is you are trying to saying that XDA sees it to their advantage to not rock the boat too much. That doesn't mean it makes sense to me.
Here is how I view how the world works when people don't speak out:
https://www.cnn.com/2019/01/12/middleeast/khashoggi-phone-malware-intl/index.html
If Motorola wants to specify that security and safety simply is not part of this product, then I can understand them making that part of their *stated* business model. But Lenovo/Motorola has decided they can market a product as preventing authorized access without doing the work required to actually provide that feature. There should be moral and ethical issues raised when knowingly letting a company mislead their customers to that extent.
There should be room someplace on the XDA forum to create a penetration/vulnerability to put customers of Motorola in a better position for informed consent. The idea that the average person can take the April and May 2019 security bulletins and understand what that really means just doesn't work out. They know what the word "critical" means but usually don't know what RCE is and largely take it as being someone else's problem. The level of conflict of interest on the part of Motorola is not made clear.
Instead, the average person still focuses on if when they are going to see the latest Avengers movie. "CVE-2019-2027" means nothing but if you show them April/May gives criminals all of the infinity gems such that at a click of their fingers half of customers of Motorola have their privacy turn to dust, then that is something they can at least understand. Then they can more meaningfully decide if it is reasonable/safe to use that device without leaving airplane mode permanently on.
Click to expand...
Click to collapse
Nope. Nobody is "honest" in marketing. They would sell nothing. Is it right....? No. Is it going to continue? Of course.
There are places to speak out. This isn't IT. Period.
You want a Google device that updates with every patch, you're gonna have to get a Pixel. Flat out. No company truly cares about you're security. They start companies to make money. The end. Right or wrong. Sorry bro. It is what it is.
Unless a company specifically spelled it out in the laws of the country their marketing in they don't have to do it. They can skirt rules and regulations anyway they possibly can. And they have lawyers to make sure they get around that crap. Marketing gimmicks do not equal legal regulation obedience.
if you have a medium to carry out the plan you intend to, find it and do it. just make sure no consumers are harmed in the process. because then the line has been crossed where you're not helping anyone but hurting people.
companies are going to sell their products at the greatest profitt imaginable and that's just the way things are going to be until some company proves that profits lie somewhere else. There isn't much you or I can do about it.
Again, this is not the medium for you to carry out such a vision. the most we hope to do here is to give users the keys to find a way to pick the lock for themselves. Not a way to circumvent the rules, punish the guilty, or vindicate innocence. There are places for that.
I'm going to bed now because I get up for work early. Good luck dude. hope you feel better in the morning.
how many people in the budget phone range are still using phones that haven't even been updated past kit Kat. Just a bit of a reality check. Up-to-the-minute security patches don't mean much to those who are struggling just to have a device to communicate with.
Infinity gems be damned, level-headed decisions with your device make all the difference in the world
madbat99 said:
just make sure no consumers are harmed in the process. because then the line has been crossed where you're not helping anyone but hurting people.
Click to expand...
Click to collapse
I can not no consumers would ever be harmed by anything I ever released. TeamViewer has been weaponized to performing scams. UPX was weaponized to help hide malware from detection. Cerberus antitheft app for Android has the potential to be weaponized. Magisk can be weaponized for malware to avoid detection on Android. To claim any of those projects is "not helping anyone" is really a stretch.
The security audit PoC suite would be similar to previously publicly released project. It would have a method of install via exploit similar to JailbreakMe and it would provide demonstration on what privileged level access provides similar to Back Orifice 2000. Both of those previous project had the potential to weaponize but also helped customers make a better informed decisions about the products they use.
madbat99 said:
how many people in the budget phone range are still using phones that haven't even been updated past kit Kat. Just a bit of a reality check. Up-to-the-minute security patches don't mean much to those who are struggling just to have a device to communicate with.
Click to expand...
Click to collapse
Just a bit of a reality check, I know a medical doctor that discusses information that should be legally protected under HIPAA in the same room as a Moto G6. When a vendor misrepresents the degree to which unauthorized access to a device's microphone is prevented, then more than just people struggling to communicate are impacted. That level of misplaced trust also means the privacy impact extends beyond just owners of the phone.
It is also a level of mistaken trust that was contributed to by people like Ronald Comstock with the XDA Developers sponsorship team which recommended this phone. It might be possible to make an excuse that at the time the recommendation was made it wasn't known how far behind security updates for the product would go. However, the XDA sponsorship team never posted a retraction and the XDA ToS makes it hard to effectively counter the vendor's misrepresentations of the XDA recommended product.
chilinux said:
I can not no consumers would ever be harmed by anything I ever released. TeamViewer has been weaponized to performing scams. UPX was weaponized to help hide malware from detection. Cerberus antitheft app for Android has the potential to be weaponized. Magisk can be weaponized for malware to avoid detection on Android. To claim any of those projects is "not helping anyone" is really a stretch.
Just a bit of a reality check, I know a medical doctor that discusses information that should be legally protected under HIPAA in the same room as a Moto G6. When a vendor misrepresents the degree to which unauthorized access to a device's microphone is prevented, then more than just people struggling to communicate are impacted. That level of misplaced trust also means the privacy impact extends beyond just owners of the phone.
.
Click to expand...
Click to collapse
It can be said that security and privacy are separate issues.
But your insights are well stated.
I remember when a "researcher" seemingly died right before demonstrating how security flaws in insulin pumps could kill a man. (We know who did it Jack) so security is a real concern. And big money will always try to silence what is too expensive to fix. So I get your point. Just goes a little beyond XDA is all I meant. No hard feelings intended, so I hope you didn't take it that way.
madbat99 said:
And big money will always try to silence what is too expensive to fix. So I get your point. Just goes a little beyond XDA is all I meant. No hard feelings intended, so I hope you didn't take it that way.
Click to expand...
Click to collapse
I have hard feeling about this issue but not about what you have said.
I also have a much less issue with "big money" not spending money were it does not need to. But they need to be transparent about that.
What I have hard feelings about is this:
https://androidenterprisepartners.withgoogle.com/device/#!/5659118702428160
And statements from Google related to that page such as:
"Organizations can then select devices from the curated list with confidence that they meet a common set of criteria, required for inclusion in the Android Enterprise
Recommended program ... Mandatory delivery of Android security updates within 90 days of release from Google (30 days recommended), for a minimum of three years"
As appears in this document:
https://static.googleusercontent.co...droid_Enterprise_Security_Whitepaper_2018.pdf
Ninety days from the February 5, 2019 security update bulletin was May 6, 2019. Choosing from that list does not result in mandatory delivery of security updates within 90 days. Google and David Kleidermacher are drowning consumers with willfully misleading information to put trust into devices that aren't held to the criteria they claim they are.
am i the only one who doesn't give a crap about security patches? i just want my phone to work, which my G6 does, just fine.
Dadud said:
am i the only one who doesn't give a crap about security patches? i just want my phone to work, which my G6 does, just fine.
Click to expand...
Click to collapse
You are far from the only one who doesn't care about security patches. I would agree with you that you should not have to care. Addressing problems that are over 90 days old are stated to be the responsibility of Google and Motorola to have taken care of.
In terms of it working just fine, my point is while it appears to normally be fine there is known ways that unapproved behavior can be applied to the product without the owners being aware of them. To me that is not working as advertised and is also not really working fine.
When evaluating a project or an investment, one must not look at the benefits in isolation. Benefits must always be viewed and evaluated against the costs associated with it. And then decision must be taken based on INCREMENTAL benefits, i.e. whether the gains from the project/ investment are worth the time, efforts and resources that go into it.
Android has evolved over the years, and many of the root-only features from earlier are now possible without root. And today with all the security and other changes, rooting is not only increasingly complicated, the benefits from it are also increasingly diminishing.
There are too many things to be flashed today to get something done. Many of the developers are unknown and users also tend to overlook/ ignore the risks if their limited requirements are getting fulfilled.
And top of everything, there is also the risk of bricking the device.
Given the amount of time that one needs to spend in researching about stuff online, finding the right files, taking the risks of flashing those without regard to potential consequences, dealing with bugs, etc.:
1. Are these worth the time and efforts?
2. Can this time and effort be rather invested in money generating activities that would provide a better solution and also be sustainable for the long term?
An example would be instead of buying a OnePlus Nord/ Redmi phone and finding ways to convert it into a Pixel, why not spend the same time and effort towards earning some money and buy an actual Pixel!
Just a food for thought.
It's supposed to be a hobby and not a job.
It's something people should do in spare time for fun.
My current phones are not rooted since many apps I use need SafetyNet.
My rooted phones are 4+ years old(Redmi/Nokia)
I have used both phones for 2+ years non-rooted. Once I moved on to newer phones, changed the batteries and rooted them
I use them for creative purposes like webcam or file host or some other stuff.
A lot of people actually get older phones for easier rooting.
Rooting makes things sustainable in long term.
I won't be able to do with my current phone which is a bummer.
Google has made it insanely hard to mod so it's not really fun anymore.
2-3 years down the line people will move on to something else.
As far as pixels are concerned, where I live, the software is excellent, the hardware Quality Control is terrible & the support is non-existent. It's a gamble to buy a pixel.
karandpr said:
It's something people should do in spare time for fun.
Click to expand...
Click to collapse
I wish this was true.
Smartphones have unfortunately taken over people's lives, and instead of being a mere tool to get something done, they have become a place where people live their lives!
Smartphones and the services available on them are pushing people into a virtual world, which is fake and far from reality. This will eventually destroy them.