linuxmemes

20948 readers

473 users here now

I use Arch btw

Sister communities:

LemmyMemes: Memes
LemmyShitpost: Anything and everything goes.
RISA: Star Trek memes and shitposts

Community rules

Follow the site-wide rules and code of conduct
Be civil
Post Linux-related content
No recent reposts

Please report posts and comments that break these rules!

founded 1 year ago

MODERATORS

poopsmith

zephyr

rtxn

1019

Why don't banks like root on Android? (lemmy.world)

submitted 6 months ago by Waffelson to c/linuxmemes

188 comments fedilink hide all child comments

you are viewing a single comment's thread
view the rest of the comments

[–] [email protected] 11 points 6 months ago* (last edited 6 months ago) (1 children)

The banking apps I've tried don't require SafetyNet, instead they use Android AOSP's basicIntegrity. The latter doesn't require certification by Google, but also checks whether the device is rooted and the bootloader is locked.

This means custom ROM's on most devices won't pass basicIntegrity, as only Google Pixel, ~~OnePlus~~ and Fairphone allow for relocking the bootloader.

[–] [email protected] 7 points 6 months ago (1 children)

OnePlus no longer supports that as of ~ColorOS~ OxygenOS 12 unfortunately.

[–] [email protected] 1 points 6 months ago* (last edited 6 months ago) (1 children)

That's a bummer. Seems like Google Pixel and Fairphone are the only ones left. I don't even know why manufacturers wouldn't allow for relocking or even unlocking of their phones. I can't imagine they make much money with user data and the phone is already paid for. Warranty claims shouldn't be much of an issue either, as modifications can be easily detected and it's likely not a relevant amount of people anyway.

[–] Spiralvortexisalie 6 points 6 months ago

As I understand it, the stated purpose is to prevent supply chain attacks and ultimately possible damage to their brand. In practice many of these same vendors ship their own spyware and do not want it removed.