Google Play’s latest security change may break many Android apps for some power users. The Play Integrity API uses hardware-backed signals that are trickier for rooted devices and custom ROMs to pass.
Technology
75
Beiträge
46
Kommentatoren
10
Aufrufe
-
This post did not contain any content.
RIP banking apps and Mc Donalds on GrapheneOS
-
So instead of completely using FOSS softwareonly, you just give in to the corps?
This has nothing to do with FOSS, of which plenty exists on iOS
-
This has nothing to do with FOSS, of which plenty exists on iOS
I have yet to see a FOSS ROM for IOS devices. Or like any FOSS app I use, like Etar, a free version of Sncthing, a Retroarch with at least the same functionality as on android, a browser that dosent use WebKit, and a terminal emulator or at least a free fully featured vim app that can access my full storage.
Also, they can't break Costum ROMs, since AOSP is Open Source.
Also, since none of my devices can run AltStore in order to validate side loaded stuff every 14 days, I have to get everything from the App Store, since AltStore is kinda dead
And also I want to develope my own apps, but I neither have an Apple Desktop, noir do I have 99€ a year to pay for Apples Private key.
TL;DR: Even with Gservices, Android is still just better then iOS since you can just Root it and disable tracking stuff (or not root it and just disable the tracking apps but not Gservices)
-
What do people even do in there ?
In France some banks illegally force users to use the banking application to approve online transactions as a security feature.
They could implement OTP as an alternative but they don't because they are lazy.
Which ones? I've been on Boursorama, CA and SG, and they all provide SMS 2FA if you don't want to use the app.
-
Which ones? I've been on Boursorama, CA and SG, and they all provide SMS 2FA if you don't want to use the app.
It depends which local branch. CA and the Caisse d'Epargne lied to me about it. BoursoBank is good though.
-
If I don't have Play Integrity spoofed, my iPhone friends get an error when they try to RCS message me. This pretty much breaks communication for me.
I have zero problems with this on Lineage. ?? No spoofing either, just Lineage.
-
on devices running Android 13 or later.
Sounds easy then: stay on the latest Lineage that does not incorporate A13.
While I wouldn’t say Google is actively hostile towards these power users,
Author is obviously sold out. Are they even trustable?
on devices running Android 13 or later.
Sounds easy then: stay on the latest Lineage that does not incorporate A13.
This isn't viable. You can't run an older android version than a device ships with and eventually older hardware will become obsolete enough that it won't be able to connect to current gen mobile networks.
For now, sure, you can run android 12 on an older device and bypass integrity easily, but sooner or later that won't be viable.
-
It doesn't make it "tricky", it makes it impossible.
Stares at rooted A13+ phone passing 2/3 integrity checks
It's possible, but it's annoying.
-
Stares at rooted A13+ phone passing 2/3 integrity checks
It's possible, but it's annoying.
Those are the wrong integrity checks
-
Those are the wrong integrity checks
No, they're absolutely not. Check out tricky store and play integrity fork to see how we're faking a trusted environment on custom and rooted roms. You can pass new device integrity with a valid unrevoked keybox on A13+ and new strong on <A12.
It's a new stage in the arms race for sure but it's still possible to bypass until all of the keys used to sign keyboxes are revoked.
-
-
-
-
-
-
-
Microsoft’s vast advertising business is target of Irish Council for Civil Liberties (ICCL) Enforce application for class action launch under EU data law
Technology
1
-
Brian Eno: “The biggest problem about AI is not intrinsic to AI. It’s to do with the fact that it’s owned by the same few people”
Technology
1
