[This post is by Nick Kralevich, an organise on the Android Security Team. Tim Bray]
Nexus S has been rooted, permit the insanity commence! proclaims Engadget. This is only possible because Android's section is crap and it's exploited easily to acquire stem priviledges [sic] adds a commenter.
Youll hit to excuse me if I strongly disagree.
The Nexus S, same the Nexus One before it, is designed to earmark enthusiasts to install bespoken operative systems. Allowing your own rush ikon on a clean Nexus S is as simple as running fastboot oem unlock. It should be no assail that modifying the operative system crapper give you stem admittance to your phone. Hopefully thats just the first of the changes you might make.
Legitimately gaining stem admittance to your figure is a farther scream from most rooting exploits. Traditional rooting attacks are typically performed by exploiting an unpatched section mess on the device. Rooting is not a feature of a device; rather, it is the active exploitation of a known section hole.
Android has a strong section strategy, hardback by a solidified implementation. By default, every Android applications are sandboxed from apiece other, serving to ensure that a vindictive or buggy covering cannot interfere with another. All applications are required to declare the permissions they use, ensuring the individual is in control of the aggregation they share. And yes, we aggressively fix known section holes, including those that crapper be used for rooting. Our peers in the section accord hit recognized our effort to mobile security, and for that, we are extremely grateful.
Unfortunately, until carriers and manufacturers wage an easy method to legitimately unlock devices, there module be a natural tension between the rooting and section communities. We crapper only hope that carriers and manufacturers module discern this, and not obligate users to choose between figure openness and security. Its possible to design unlocking techniques that protect the integrity of the mobile network, the rights of content providers, and the rights of covering developers, patch at the same time giving users choice. Users should demand no less.
Thanks
basyar.com
Tidak ada komentar:
Posting Komentar