552
Great, the worst of both worlds. (share.jackgreenearth.org)
submitted 8 months ago* (last edited 8 months ago) by JackGreenEarth@lemm.ee to c/android@lemmy.world

I can't root my phone because I don't have an image for it (Moto G73) although I'd like to, but for some reason my banking app thinks it's rooted and refuses to work. This happened just after I updated it, it wasn't happening before.

Edit: I'm regretting not getting the Motorola Edge 40 Neo, which also costs £250, but is slightly better in multiple ways, and seems like it has better root support.

top 50 comments
sorted by: hot top controversial new old
[-] Jake_Farm@sopuli.xyz 53 points 8 months ago
[-] chemicalwonka@discuss.tchncs.de 16 points 8 months ago* (last edited 8 months ago)

This happens because "normie" Android devices has a proprietary shit called SafeNet Attestation API

[-] lemmyvore@feddit.nl 30 points 8 months ago

SafetyNet is the old thing. It's all about Play Integrity now. Magisk & friends have already moved on to a new method of fingerprint spoofing.

load more comments (1 replies)
[-] FartsWithAnAccent@lemmy.world 12 points 8 months ago

This is the correct take.

[-] ilinamorato@lemmy.world 51 points 8 months ago

More and more every day, I wish the Firefox Phone had survived.

[-] FlavoredButtHair@lemmy.world 19 points 8 months ago

Firefox had a phone? I wish Firefox would try again.

[-] ilinamorato@lemmy.world 19 points 8 months ago

They did. It was a project initially called "Boot to Gecko," about a decade ago; and the idea was to make a Linux kernel OS so lightweight that you were running web apps as close to bare metal as possible. There were intended to be no binary apps, only web apps running on open standards; though that didn't necessarily carry through as originally intended.

I agree. I think it was before its time and would be a real boon today.

[-] echodot@feddit.uk 6 points 8 months ago* (last edited 8 months ago)

I can't remember much about it but I seem to remember that the actual hardware itself was very entry level which was part of the problem. It really would have done better to appeal to enthusiasts.

I get that it was marketed at third world countries, but I still think they would have done better had they had a western version with more up-to-date specs as well, if only to get the kind of market share that would encourage app developers.

load more comments (1 replies)
[-] jayandp@sh.itjust.works 6 points 8 months ago

It kinda did survive. KaiOS is forked from Firefox OS, though it's more designed for Kinda-Smart feature phones in developing countries.

load more comments (1 replies)
[-] Forester@yiffit.net 50 points 8 months ago

Just FYI, rootkit malware does exist for phones

[-] JackGreenEarth@lemm.ee 7 points 8 months ago

What is that and how does it relate to my issue?

[-] Chainweasel@lemmy.world 41 points 8 months ago

Spyware that roots your phone.

load more comments (4 replies)
load more comments (1 replies)
[-] FrameXX@discuss.tchncs.de 44 points 8 months ago* (last edited 8 months ago)

Did you unlock your bootloader? Some apps just scan for Google Play SafetyNet or in some other way to check whether you unlocked your bootloader or rooted and if they think you do they will vaguely state you are rooted.

Other's concern about your phone being infected are justified and I recommend you to try whether a dedicated root checking app thinks your phone is rooted. These usually don't lie.

Regarding your rooting situation I always rooted the lazy way. Renamed magisk.apk to magisk.zip, flashed it and it always worked for me. But I rooted only 2 phones in my life really and this is not the recommended method by magisk developer.

load more comments (5 replies)
[-] Flax_vert@feddit.uk 28 points 8 months ago

I've had a banking app think my phone was rooted before. Had to basically switch banks.

[-] Thcdenton@lemmy.world 24 points 8 months ago

Online banking has always been a disaster.

[-] echodot@feddit.uk 6 points 8 months ago

I remember when I got a new phone and I could not figure out how I was supposed to get the banking app on my phone so I called the bank and they said oh you just have to remove the app from your old phone.

Weird but ok.

Thing is, what if I don't have the old phone what am I supposed to do then banking app people? The rep really couldn't get her head around the idea that the phone was in at the bottom of a lake.

Then I had to go through this carry-on where I had to send in all sorts of bits of info and then the video of me waving just so they let me install the app again. And that's on top of all of the other security the banking app already has.

load more comments (2 replies)
[-] bulwark@lemmy.world 19 points 8 months ago* (last edited 8 months ago)

Lineage OS user here, my banking app got an update a while ago that stopped trusting my finger scanner because I'm rooted. Luckily it still allows passwords or else that would be a deal breaker.

*Edit, now that I think about it I'm not even rooted, just an unlocked boot loader.

[-] AlternatePersonMan@lemmy.world 18 points 8 months ago

Adjacent topic... Do you use a credit union? Because fuuuuuuck banks.

[-] Cheems@lemmy.world 17 points 8 months ago

My bank just merged with another and released a new app. Immediately when trying to log in it said that the app can't be used with developer mode enabled.

[-] JackGreenEarth@lemm.ee 16 points 8 months ago

With developer mode enabled? I have that enabled, although my error message is about root. With a degoogled stock ROM, you have to have adb to backup system data, it's crazy your bank was blocking that.

load more comments (1 replies)
[-] Osiris@lemmy.world 14 points 8 months ago* (last edited 8 months ago)

Credit unions are better but that doesnt mean their app will work on a rooted device
Source: My credit Union app doesnt work on my rooted devices 🙃

load more comments (4 replies)
[-] ma11en@lemmy.world 18 points 8 months ago

Is your system software fully updated?

Are you running a Beta version of the system software?

load more comments (4 replies)
[-] henfredemars@infosec.pub 16 points 8 months ago

Did you enable developer mode and their message is stupid?

load more comments (1 replies)
[-] AnomalousBit@programming.dev 16 points 8 months ago

But Android is open source! Oh, until you actually do any fucking thing with it. Be gone, Google.

[-] ToxicWaste@lemm.ee 14 points 8 months ago

maybe a stupid question: But doesn't android sandbox every app? If every app is running in a sandbox, it shouldn't be too hard to pretend your phone isn't rooted.

If they check for a specific version number, like @RagingRobot mentioned, it also shouldn't be a problem. Just set that specific sandbox to return whatever version you want.

I am aware that 'just configure the sandbox' is not really an accessible solution. But a sandbox-config-master would be a great app for rooted phones.

[-] JackGreenEarth@lemm.ee 22 points 8 months ago

Well apparently rooted phones can pretend to apps they're not rooted. Problem is, my phone isn't actually rooted.

[-] dai@lemmy.world 7 points 8 months ago

Turn developer options off.

[-] yamanii@lemmy.world 6 points 8 months ago

Do it, my local government app at least had the decency to explain it was the developer mode being on and not root.

load more comments (1 replies)
[-] RagingRobot@lemmy.world 14 points 8 months ago

This happened to me once when I updated Android. The bank software had a check for a specific version and my version was higher so it thought I was running something weird. I had to wait for the bank to update the app to support the newest android version

[-] lemmyvore@feddit.nl 13 points 8 months ago

Install TB Checker and use the various detection modes to figure out what the bank app might be picking up on.

They check for a lot of (dumb) things instead of just checking for Play Integrity like they're supposed to. For example it might be detecting an app that could be using root, even if it's not, and assume that means you must be rooted, even though you're not. 🤷

load more comments (1 replies)
[-] MystikIncarnate@lemmy.ca 12 points 8 months ago

I have too many gripes with banks and how they handle digital interactions.

They're a bunch of dinosaurs, both in what they support and how they support it. They're also in a position where they feel like they can do what they want and you just have to suck it up.

And for the most part, they're right, because all the banks are equally bad. A nontrivial number of the apps are just chrome running in an app window, security is a joke, they make you sign in with your card number which is plainly visible to anyone with eyes that is within a few meters of your card anytime you have it out of your wallet, they restrict your password so you can't use special characters or have it be long enough to actually provide real security, and they limit your 2FA options to SMS. Everything is terrible.

Even when you go into the bank or use the ATM, access is restricted by a fucking FOUR DIGIT NUMERICAL PIN and if you can even use a longer pin code, they don't tell you that and most systems assume your pin is four numbers and won't let you enter any more than that.

God forbid you lose your card, good luck going through the gauntlet of outdated information the bank is going to ask about for you to prove you are who you say you are.

They're all the fucking same and it infuriates me.

load more comments (3 replies)
[-] Duke_Nukem_1990@feddit.de 8 points 8 months ago

Wasn't there talk about Google deprecating SafetyNet? If this has already happened and your banking app is still relying on it, it could lead to a fslse positive on the root check I believe.

[-] PostaL@lemmy.world 7 points 8 months ago

Had the same problem with my banking app. Fortunately, mine was solved with a reboot.

[-] BearOfaTime@lemm.ee 7 points 8 months ago
load more comments (3 replies)
[-] Dempf@lemmy.zip 7 points 8 months ago* (last edited 8 months ago)
  1. Install Kitsune Mask (just like Magisk install) https://huskydg.github.io/magisk-files/

  2. Install PIF Next. It will automatically download new device fingerprints as Google bans old ones https://github.com/daboynb/PlayIntegrityNEXT

  3. Google, banks, Microsoft, whoever else is aggressively checking for root. Please consider to eat my entire asshole. Thank you.

Edit: nvm I'm bad at reading, I missed that you couldn't even root your phone.

load more comments
view more: next ›
this post was submitted on 06 Mar 2024
552 points (97.8% liked)

Android

28017 readers
67 users here now

DROID DOES

Welcome to the droidymcdroidface-iest, Lemmyest (Lemmiest), test, bestest, phoniest, pluckiest, snarkiest, and spiciest Android community on Lemmy (Do not respond)! Here you can participate in amazing discussions and events relating to all things Android.

The rules for posting and commenting, besides the rules defined here for lemmy.world, are as follows:

Rules


1. All posts must be relevant to Android devices/operating system.


2. Posts cannot be illegal or NSFW material.


3. No spam, self promotion, or upvote farming. Sources engaging in these behavior will be added to the Blacklist.


4. Non-whitelisted bots will be banned.


5. Engage respectfully: Harassment, flamebaiting, bad faith engagement, or agenda posting will result in your posts being removed. Excessive violations will result in temporary or permanent ban, depending on severity.


6. Memes are not allowed to be posts, but are allowed in the comments.


7. Posts from clickbait sources are heavily discouraged. Please de-clickbait titles if it needs to be submitted.


8. Submission statements of any length composed of your own thoughts inside the post text field are mandatory for any microblog posts, and are optional but recommended for article/image/video posts.


Community Resources:


We are Android girls*,

In our Lemmy.world.

The back is plastic,

It's fantastic.

*Well, not just girls: people of all gender identities are welcomed here.


Our Partner Communities:

!android@lemmy.ml


founded 1 year ago
MODERATORS