Remix.run Logo
bongodongobob 2 days ago

Yeah, that's rooting your phone. It should be a little difficult. You can do it. And it's good that most people don't.

gyello 2 days ago | parent [-]

The problem is not that rooting is difficult, it's that in most cases now it permanently renders parts of the phone inoperable or makes it impossible to use contactless payments or any banking apps or content streaming apps etc.

These additional restrictions are not there for security despite what we are told.

WarOnPrivacy 2 days ago | parent | next [-]

> it's that in most cases now it permanently renders parts of the phone inoperable or makes it impossible to use contactless payments or any banking apps or content streaming apps etc.

I've had to cloak the rooted state from an app or two or they'd choose to withhold functionality. That was a couple of phones ago. I've not had trouble with banking, payments, etc since.

miki123211 2 days ago | parent | prev [-]

They're for the bank's (and other customers') security, not yours.

I think they're supposed to prevent people from reverse-engineering banking app APIs and writing bots that perform millions of requests per second, trying to brute force their way into peoples' accounts.

As an extra protection, SafetyNet also makes it harder to distribute apps that repackage your genuine banking app, but with an extra trojan added.

potamic a day ago | parent [-]

Every bank of repute also has a web portal for internet banking. If it were about security, leaving this open while closing the mobile route doesn't make sense. The web is also vulnerable to scammers hosting trojan websites but somehow that doesn't seem to be a big problem.

If a bank (or any entity for that matter) needs to control the client in order to make their systems secure, then it's bad security. The system must be secure despite the client.