Steve "CyanogenMod" Kondik Contemplates The Death of Root On Android 240
c0d3g33k writes "Prompted by the addition of new security features in Android 4.3 that limit the effectiveness of elevated privileges, Steve Kondik wonders which uses really require full root. Most common activities that prompt owners to root their devices (backup/restore tools, firewall/DNS resolver management, kernel tuning), could be accomplished without exposing root, argues Kondik, by providing additional APIs and extensions to the user. This would improve security by limiting the exposure of the system to exploits. Reasonable enough, on the face of it. The title of the post, however, suggests that Kondik believes that eventually all useful activities can be designed into the system so the 'dangerous and insecure' abilities provided by root/administrator privileges aren't needed. This kind of top-down thinking seems a bit troubling because it leads to greater control of the system by the developer at the expense of the owner of the device. It's been said that the best tools are those that lend themselves to uses not anticipated by the creator. Reducing or eliminating the ability of the owner to use a device in ways that are unanticipated ultimately reduces its potential power and usefulness. Perhaps that's what is wanted to prevent an owner from using the device in ways that are inconvenient or contrary to an established business model."
Re:If no root, no Android. FirefoxOS anyone? (Score:5, Informative)
Re:If no root, no Android. FirefoxOS anyone? (Score:5, Informative)
I don't care if I don't root my phone until I can write to the hosts file.
Re:If no root, no Android. FirefoxOS anyone? (Score:3, Informative)
Root will be nesessary until the carriers allow us to freely uninstall their bloatware, and other useless/quasi-hostile junk (for me, that means facebook).
Good news! You haven't needed root to do that for a Long Time now. You can just click the "Disable" button in the app's details page, or drag it to the trash can from the apps drawer, and it's disabled. Sure, it's taking up a few MB of space on your system image, but, "oh well." At least, this is certainly true on any Android 4.x device I've owned.
Re:If no root, no Android. FirefoxOS anyone? (Score:4, Informative)
You missed the point--he's saying that root access might one day no longer be necessary, not that it'll become impossible to root an Android device.
Yes, this. You shouldn't root your device "just because you can", which seems to be the mentality some people have. It greatly increases your attack surface for security vulnerabilities. I'm certain that the ability to root will stick around "forever", but for most people having a well thought out API which allows separation of privileges is going to lead to better results.
Re:Reminds me of linux without a root prompt (Score:2, Informative)
Just use "sudo su" instead..
No no no no no no no no no no no no no no no! If you need to drop into a root shell use "sudo -i".
Re:If no root, no Android. FirefoxOS anyone? (Score:5, Informative)
Good news! You haven't needed root to do that for a Long Time now. You can just click the "Disable" button in the app's details page, or drag it to the trash can from the apps drawer, and it's disabled.
Bad news! You can only disable apps that your carrier has decided that they want to allow you to disable.
Re:If no root, no Android. FirefoxOS anyone? (Score:4, Informative)
what hardware? there is NO HARDWARE - thats why its on igg and not kickstarter (rules prevent vaporware)
Re: If no root, no Android. FirefoxOS anyone? (Score:5, Informative)
You don't need root to image a new ROM. You need an UNLOCKED BOOTLOADER. Two completely different things.
Everyone just stay calm and.... (Score:4, Informative)
Re: If no root, no Android. FirefoxOS anyone? (Score:5, Informative)