1262
Google tries to defend its Web Environment Integrity (techreport.com)
submitted 1 year ago* (last edited 1 year ago) by 1984@lemmy.today to c/technology@lemmy.world
234 comments fedilink hide all child comments

I'm happy to see this being noticed more and more. Google wants to destroy the open web, so it's a lot at stake.

Google basically says "Trust us". What a joke.

you are viewing a single comment's thread
view the rest of the comments
[-] Max_P@lemmy.max-p.me 99 points 1 year ago

They claim it's to prevent bots, but we all know it'll soon become standard in every WAF out there (Cloudflare, Akamai, etc) to just blanket block browsers failing attestation.

All you need to know what will happen is to root an Android phone. You'd expect Netflix and bank apps and other highly sensitive apps to stop working. Okay, I can accept that, it kind of make sense. But the more you use the phone the more you realize a ton of apps also refuse to work. Zoom complains and marks your session as insecure, the Speedtest app refuses to test your speed, even the fucking weather app won't give you weather anymore. Jira/Confluence/Outlook/Teams also complain about it. It's ridiculous.

Even if it'd trust Google to not misuse the feature and genuinely use it to reduce ad fraud, the problem is the rest of the developers and companies. Those, they absolutely cannot be trusted to not abuse the feature to block everyone. Security "consultants" will start mandating its use to pass security audits, government websites will absolute use it, and before you know it, half the web refuses to work unless you use Chrome, Edge or Safari.

[-] heimchen@discuss.tchncs.de 4 points 1 year ago

I have a rooted LineageOS running Android and besides Kostum widgest everything is working fine. Yea I had to fiddle around with the banking app, but other than some popups and ingame stores not working everything is fine.

[-] Ebsku@sopuli.xyz 1 points 1 year ago

I heard spoofing safety net is possible with magisk so banking apps should work with it

[-] Im28xwa@lemdro.id 1 points 1 year ago

Unfortunately some apps don't check only for SafetyNet

[-] Ebsku@sopuli.xyz 0 points 1 year ago

What other ways are there? At least my banking app worked with spoofed safetynet

[-] Im28xwa@lemdro.id 1 points 1 year ago

Checking whether the bootloader is locked or not, checking for abnormal system properties like whether the ROM is using release keys or test keys, and other methods that idk of, you can test momo which is an app that checks the environment and tells you if there is anything abnormal about it, some use it to check if they were successful at hiding root and anything abnormal

[-] joel_feila@lemmy.world 1 points 1 year ago

I use e os and no problems here

load more comments (9 replies)
this post was submitted on 29 Jul 2023
1262 points (98.2% liked)

Technology

58735 readers
4339 users here now

This is a most excellent place for technology news and articles.

Our Rules

  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots

founded 1 year ago
MODERATORS
L3s@lemmy.world
enu@lemm.ee
fry@fry.gs
L3s@fry.gs
enu@lemmy.world
L4s@fry.gs
L4s@lemmy.world