undefined | Better HN

0 pointsdidntcheck1y ago0 comments

Only if I grant them root, which I'd only do to a very small number of open source apps

I instead have to use my desktop web browser, and desktop operating systems have a far worse security model than Android. No special permissions are generally needed to capture the screen, capture/inject keystrokes, or open .mozilla/whatever/cookies.sqlite

So my phone is still the significantly more secure environment. The fact that I have the ability to grant root does not make it "compromised"

0 comments

crazygringo1y ago

> Only if I grant them root

But that's exactly the point. The bank doesn't know what you've granted root. It doesn't know if you're a security researcher, or somebody installing pirated apps with spyware.

The bank can't enforce that on desktop web browsers, but at least it can on mobile.

oneshtein1y ago

Nope, they cannot enforce that on mobile when I have root.

crazygringo1y ago

Then why did the root commenter say:

> because their apps refuse to run on my rooted phone

j / k navigate · click thread line to collapse

0 pointsdidntcheck1y ago0 comments

Only if I grant them root, which I'd only do to a very small number of open source apps

So my phone is still the significantly more secure environment. The fact that I have the ability to grant root does not make it "compromised"

0 comments

crazygringo1y ago

> Only if I grant them root

But that's exactly the point. The bank doesn't know what you've granted root. It doesn't know if you're a security researcher, or somebody installing pirated apps with spyware.

The bank can't enforce that on desktop web browsers, but at least it can on mobile.

oneshtein1y ago

Nope, they cannot enforce that on mobile when I have root.

crazygringo1y ago

Then why did the root commenter say:

> because their apps refuse to run on my rooted phone

j / k navigate · click thread line to collapse