| joerg | killswitch is a red herring, it will not do any good but just forbid receiving calls. The main problem is malware which sneaks into every dumb user's phone and steals passwords, money, contacts, dickpicks, whatnot else. Apple does a hell of effort to block this, Android tries and often fails but at least has a means how it _would_ work if only... on am "open" system any such protection completely is missing | 01:36 |
|---|---|---|
| joerg | even the maemo harmattan went that lock-it-down route | 01:38 |
| joerg | some "OPSEC" folks inventing annoying lockdown measures so you couldn't even touch a single file in /etc/* or you brick your phone | 01:39 |
| joerg | and no installation of any app that's not completely reviewed and with permission tokens and shit | 01:39 |
| joerg | "sorry no, there's no token available to allow you to access control of the indicator LED. Security concerns" ROTFL | 01:40 |
| sixwheeledbeast | aegis :shudder: | 01:59 |
| Maxdamantus | imo the Android approach is fundamentally okay. | 04:21 |
| Maxdamantus | The bootloader trusts a certain key that's used to sign a kernel/initramfs. | 04:23 |
| Maxdamantus | The OS is meant to use special hardware to derive a key that will change if someone manages to change that trusted key, | 04:24 |
| Maxdamantus | Normally it will only trust the vendor's key, but on devices made in the last couple of years, you can flh your own key instead using `adb flash avb_custom_key` | 04:25 |
| Maxdamantus | er | 04:25 |
| Maxdamantus | `fastboot flash avb_custom_key` * | 04:26 |
| Maxdamantus | then relock your bootloader so that the key is actually enforced. | 04:26 |
| Maxdamantus | (when I said the OS is meant to derive a key, that's an encryption key for all non-OS data, so if someone wants to change what code is executed by the bootloader, they'll force that encryption key to change, so existing data becomes inaccessible) | 04:30 |
| Maxdamantus | Should have actually said "current Android approach", since I think this is part of "AVB2" | 06:49 |
| Maxdamantus | presumably with AVB1, running your own code would have always been insecure, since you couldn't relock the bootloader. | 06:50 |
| tuxtoolman | hey Joerg! it is biketool from TMO | 17:27 |
| sicelo | Hey :-) | 18:02 |
| joerg | o/ | 18:41 |
Generated by irclog2html.py 2.17.0 by Marius Gedminas - find it at https://mg.pov.lt/irclog2html/!