44
submitted 1 year ago* (last edited 1 year ago) by folak@lemmy.world to c/android@lemmy.world

Hi, I'm wondering myself is root useful or not ? In which case it can be useful ? And Root with magisk is unsecure ?

you are viewing a single comment's thread
view the rest of the comments
[-] PlatinumSf@pawb.social 22 points 1 year ago* (last edited 1 year ago)

No, it's like saying swapping out the fuel delivery system and ecu fuel mapping with a custom tunable system and Map is one of the most dangerous things you can do to your car; which it is if not done by a professional or someone with significant experience/understanding.

[-] pimento64@sopuli.xyz 12 points 1 year ago

No, it's like saying having admin permissions is one of the most dangerous things you can do on your home computer. Only an idiot would think that.

[-] milady@lemmy.world 2 points 1 year ago

I mean, it is, if you don't have admin you can't install root-level malware directly (still can if the malware uses some bug to gain privilege). But I still fully agree with your point, I just wanted to say that technically, having root is dangerous in the sense that you can do anything. Most end users have no reason to modify system files etc. Since they only use a web browser and word.

[-] random65837@lemmy.world 1 points 1 year ago

Really? How much damage to end users deal with when they HAVE admin access vs restricted user accts? When I was in IT, most of my time was wasted cleaning up messes that couldn't have happened in the first place on a acct where the users couldn't do what they did.

Youre speaking as somebody's thats probably competent with your devices, big surprise, most people aren't!

Most people click random links that would be obvious to a techy person as a trap, install software without checking what it'll do, blindly giving permissions to anything their shady apps ask for. Then follow random shit on the internet and make things far worse.

[-] ChonkaLoo@lemmy.world 1 points 1 year ago

That's going to be a thing of the past. The future for corporate users is a locked down monitored system with least privilege access in the name of security. Zero Trust they call it.

[-] pimento64@sopuli.xyz -2 points 1 year ago

How much damage to end users deal

When I was in IT

most people aren't

most people click

  1. I'm talking about home computers

  2. Skill issue + not my problem. It doesn't matter if most people are competent, they should have full control over their property. The ones who fuck up will be responsible for the consequences of their actions. Most people are too stupid to use power tools correctly, but the last time I checked, I didn't have to nicely ask Milwaukee to unlock the bootloader on my drill so I could use it with torx bits.

[-] random65837@lemmy.world 4 points 1 year ago

I’m talking about home computers

Makes zero difference, it's the exact same situation, and the example holds.

Skill issue + not my problem

We're not talking about (you), that's been established already.

It doesn’t matter if most people are competent,

Yes, It absolutely does, because the people that aren't are the far majority.

they should have full control over their property.

They do, they can make the decision to root their device, void their warranty, and break their own shit. They waste other people's time crying because they didn't know what they were doing.

I didn’t have to nicely ask Milwaukee to unlock the bootloader on my drill so I could use it with torx bits.

Piss poor comparison, you also don't need to ask your phone mfg to install apps on it, connect accessories, set wallpapers, or any other USER level change. You absolutely are NOT allowed by Milwaukee to open up your drill and self-service it without voiding their warranty, which is the exact same thing. You could do it anyway, but you're on your own so they're not going to give you the go ahead on it at anytime. They're protecting themselves from the 99% who have no clue.

[-] Zak@lemmy.world 1 points 1 year ago

You absolutely are NOT allowed by Milwaukee to open up your drill and self-service it without voiding their warranty

If you're in the USA, however, you're allowed to do that by federal law, and Milwaukee is forbidden from voiding the warranty unless they can prove you serviced it incorrectly enough to cause the problem you're seeking warranty service for.

https://en.wikipedia.org/wiki/Magnuson%E2%80%93Moss_Warranty_Act

[-] random65837@lemmy.world 1 points 1 year ago

Milwaukee is forbidden from voiding the warranty unless **they can prove you serviced it incorrectly enough to cause the problem you’re seeking warranty service for. ** Which is exactly what they'd say. The Moss act is Swiss Cheese, and the only industry that it's every been pretty consistent with is the Automotive repair industry. We wouldn't need to fight for Right to Repair is Moss did it's job.

[-] Zak@lemmy.world 1 points 1 year ago

The act was primarily written to target tie-in service for profit, which is not the primary motivation of companies making consumer electronics that are difficult to service today; they want it to be replaced, not repaired. It was effective for that purpose, and continues to be effective when enforced.

Moss isn't a panacea. It does not cover making devices impossible to service in a cost-effective manner, availability of parts, serialization, or other anti-repair practices. It's just about warranties.

[-] pimento64@sopuli.xyz -1 points 1 year ago

Is your ability to deliberately misinterpret everything you read the result of study, or does it come naturally?

[-] random65837@lemmy.world 1 points 1 year ago

Feel free to give an actual example of that

[-] pimento64@sopuli.xyz 0 points 1 year ago

I'm good, I dropped out of zoology before I qualified on exercising sea lions

[-] 9tr6gyp3@lemmy.world 0 points 1 year ago* (last edited 1 year ago)

Notably, there is a difference between admin and root.

One has checks, the other can run scripts, change permissions, move files, delete files, hide malware, install rootkits, install ransomware, exfiltrate data, alter your OS, change hardware voltages, etc all without so much as a prompt.

It doesn't matter if you're a beginner or a seasoned veteran with handling root, it can cause some heavy damage to your system when you or another application mishandle it.

Rule of thumb is to remain in user mode for the entirety of your sessions. Only use admin rights when you need to make a system change. Most well-designed applications should not need to be run as admin, and definitely not root.

[-] pimento64@sopuli.xyz 0 points 1 year ago

What is this proselytization adding, here?

[-] 9tr6gyp3@lemmy.world 1 points 1 year ago

Its called the principle of least privilege, or principle of minimal privilege, or principle of least authority.

Its a philosophy learned by anyone who is serious about information assurance. Its a very basic, yet fundamental security concept.

[-] pimento64@sopuli.xyz 0 points 1 year ago

Got it. I thought it wasn't relevant to this context, and I was right.

[-] 9tr6gyp3@lemmy.world 1 points 1 year ago

This is relevant to giving apps "root access". How is that not relevant?

[-] PlatinumSf@pawb.social -1 points 1 year ago

Lol you're not getting those admin permissions by flipping a simple switch. Root access is far more involved than simple admin permissions so please try again.

[-] pimento64@sopuli.xyz -3 points 1 year ago

It can't be much more complicated than basic reading comprehension, but that's clearly beyond you.

[-] PlatinumSf@pawb.social 1 points 1 year ago

Lots of insults. Clearly you're a person of the people, you must work wonders when changing minds. 🤯

[-] pimento64@sopuli.xyz -1 points 1 year ago
[-] db2@sopuli.xyz 1 points 1 year ago
this post was submitted on 31 Aug 2023
44 points (95.8% liked)

Android

28199 readers
153 users here now

DROID DOES

Welcome to the droidymcdroidface-iest, Lemmyest (Lemmiest), test, bestest, phoniest, pluckiest, snarkiest, and spiciest Android community on Lemmy (Do not respond)! Here you can participate in amazing discussions and events relating to all things Android.

The rules for posting and commenting, besides the rules defined here for lemmy.world, are as follows:

Rules


1. All posts must be relevant to Android devices/operating system.


2. Posts cannot be illegal or NSFW material.


3. No spam, self promotion, or upvote farming. Sources engaging in these behavior will be added to the Blacklist.


4. Non-whitelisted bots will be banned.


5. Engage respectfully: Harassment, flamebaiting, bad faith engagement, or agenda posting will result in your posts being removed. Excessive violations will result in temporary or permanent ban, depending on severity.


6. Memes are not allowed to be posts, but are allowed in the comments.


7. Posts from clickbait sources are heavily discouraged. Please de-clickbait titles if it needs to be submitted.


8. Submission statements of any length composed of your own thoughts inside the post text field are mandatory for any microblog posts, and are optional but recommended for article/image/video posts.


Community Resources:


We are Android girls*,

In our Lemmy.world.

The back is plastic,

It's fantastic.

*Well, not just girls: people of all gender identities are welcomed here.


Our Partner Communities:

!android@lemmy.ml


founded 2 years ago
MODERATORS