[This post is by Nick Kralevich, an engineer on the Android Security Team. Tim Bray]
Nexus S has been rooted, permit the insanity commence! proclaims Engadget. This is exclusive doable because Android's section is poop and it's misused easily to gain stem priviledges [sic] adds a commenter.
Youll hit to defence me if I strongly disagree.
The Nexus S, same the Nexus One before it, is fashioned to allow enthusiasts to install custom operating systems. Allowing your own rush image on a pure Nexus S is as simple as streaming fastboot oem unlock. It should be no surprise that modifying the operating system crapper provide you stem admittance to your phone. Hopefully thats just the beginning of the changes you might make.
Legitimately gaining stem admittance to your figure is a farther cry from most rooting exploits. Traditional rooting attacks are typically performed by exploiting an unpatched section hole on the device. Rooting is not a feature of a device; rather, it is the active utilization of a known section hole.
Android has a brawny section strategy, backed by a solid implementation. By default, all Android applications are sandboxed from each other, serving to ensure that a malicious or equipage covering cannot interfere with another. All applications are required to tell the permissions they use, ensuring the individual is in control of the information they share. And yes, we aggressively mend known section holes, including those that crapper be used for rooting. Our peers in the section accord hit constituted our contribution to mobile security, and for that, we are extremely grateful.
Unfortunately, until carriers and manufacturers provide an cushy method to legitimately unlock devices, there module be a natural tension between the rooting and section communities. We crapper exclusive hope that carriers and manufacturers module recognize this, and not force users to choose between figure openness and security. Its doable to design unlocking techniques that protect the state of the mobile network, the rights of noesis providers, and the rights of covering developers, patch at the same time giving users choice. Users should demand no less.
Thanks
basyar.com
Tidak ada komentar:
Posting Komentar