
Checking for root is maintaining a false façade of security. By the definition of root it can always be bypassed and we should be designing workflows to discourage logging in from an untrusted device unless you have 2fa.

  • 3
    Allowing insecure old devices with tons of vulnerabilities allowing root access, but disallowing current custom ROMs with those patched is bullshit as well.

    But try telling that a bank. Especially if it is fine to do online banking on any random computer, where there is no safety check whatsoever!
Add Comment