266
Android 14 blocks all modification of system certificates, even as root
(httptoolkit.com)
Welcome to the main community in programming.dev! Feel free to post anything relating to programming here!
Cross posting is strongly encouraged in the instance. If you feel your post or another person's post makes sense in another community cross post into it.
Hope you enjoy the instance!
Rules
Follow the wormhole through a path of communities !webdev@programming.dev
This article isn't clear on one question: Are users still able to add new trusted authorities? I have a custom CA installed so as to be able to access self-hosted https services inside my home network. Given that Android now prevents you from accessing sites with an untrusted/self-signed cert, I need this feature.
Aka, you cannot untrust google's certs. And google can do whatever the fuck they want, and you cannot change or alter that behaviour.
So, if google wants to publish a root CA, that allows them to act on behalf of any other domain, they can do that. etc.
Sounds like a powerful tool for law enforcement
Now, If only google didn't give out information without a valid search warrant.......
Or, didn't sell your data.