can anyone pointe to the thread to root a nexus 6 with marshmallow on it please? i search but i see a lot of old, conflicting and outdated reports
I just want solid instructions that somebody here already used
cpugeeker said:
can anyone pointe to the thread to root a nexus 6 with marshmallow on it please? i search but i see a lot of old, conflicting and outdated reports
I just want solid instructions that somebody here already used
Click to expand...
Click to collapse
Here are the steps I used:
- flash/upgrade to Marshmallow
- flash modified boot.img
- flash/boot TWRP and sideload latest v2.50+
No. Not that unless you want unknown evil invading your phone and stealing your private information.
Use this instead;
http://forum.xda-developers.com/nexus-6/general/root-t3231211
doitright said:
No. Not that unless you want unknown evil invading your phone and stealing your private information.
Use this instead;
http://forum.xda-developers.com/nexus-6/general/root-t3231211
Click to expand...
Click to collapse
WOW what happen with them? I found some readings but now all. What exactly went down? Any good reads on this?
doitright said:
No. Not that unless you want unknown evil invading your phone and stealing your private information.
Use this instead;
http://forum.xda-developers.com/nexus-6/general/root-t3231211
Click to expand...
Click to collapse
lol. I appreciate your work on providing other root access methods, but you really shouldnt go around claiming made up info as fact and trying to spread fear everywhere you can. You have no proof whatsoever of the things you claim.
EniGmA1987 said:
lol. I appreciate your work on providing other root access methods, but you really shouldnt go around claiming made up info as fact and trying to spread fear everywhere you can. You have no proof whatsoever of the things you claim.
Click to expand...
Click to collapse
You obviously don't know the first thing about security, or the gravity of offering root control to an unknown entity.
To make it simple, unless you can *prove* that something is safe, the only rational assumption is that it isn't.
In other words, it is not my place to prove them unsafe. It is your responsibility to prove that they are safe, and frankly, that is an impossible task.
Feel free to use whatever you like. But don't go recommending to somebody that they take dangerous risks that are unnecessary.
---------- Post added at 01:33 AM ---------- Previous post was at 01:27 AM ----------
cpugeeker said:
WOW what happen with them? I found some readings but now all. What exactly went down? Any good reads on this?
Click to expand...
Click to collapse
It was almost acceptable when it was maintained by a single individual, but at some point fairly recently, the code was transferred/sold to an outfit that has been buying up all the root control software that can be found on play store.
Although the original author continues to make the software available under his pseudonym, there is no indication of the contract in place between him and the software's new owners, and no indication of their motives.
That makes the situation incredible frightening and dangerous.
doitright said:
You obviously don't know the first thing about security, or the gravity of offering root control to an unknown entity.
To make it simple, unless you can *prove* that something is safe, the only rational assumption is that it isn't.
In other words, it is not my place to prove them unsafe. It is your responsibility to prove that they are safe, and frankly, that is an impossible task.
Feel free to use whatever you like. But don't go recommending to somebody that they take dangerous risks that are unnecessary.
Click to expand...
Click to collapse
So something that has always been a bit closed, yet still trusted and used, gets transfered to a newly made company started through XDA leaders and still maintained currently by Chainfire for a while, and suddenly this means secret organizations with corrupt ties have suddenly taken control of the Android root world?
EniGmA1987 said:
So something that has always been a bit closed, yet still trusted and used, gets transfered to a newly made company started through XDA leaders and still maintained currently by Chainfire for a while, and suddenly this means secret organizations with corrupt ties have suddenly taken control of the Android root world?
Click to expand...
Click to collapse
It doesn't guarantee that it's bad. But for it to not be controlled by the creator (a first ballot Hall of Famer in this community) and ownership switched to an unproven entity, it turns it from solid and secure to who knows what. The new owners could be just as good. But we should skeptically wait and see
EniGmA1987 said:
So something that has always been a bit closed, yet still trusted and used, gets transfered to a newly made company started through XDA leaders and still maintained currently by Chainfire for a while, and suddenly this means secret organizations with corrupt ties have suddenly taken control of the Android root world?
Click to expand...
Click to collapse
It is not really a newly made company and no where are the XDA leaders involved.
Now make no mistake. Chains SU will be around for a very long time. Will there be other options? Sure, there are many already. If not as mainstream. Apps like this will come and go. It is the nature of the beast.
Now before people start bashing others they better have something to prove it. Other wise they have nothing to say worth listening to.
zelendel said:
It is not really a newly made company and no where are the XDA leaders involved.
Click to expand...
Click to collapse
Could you provide some info on the company to the people here then? Because business filings say that you are wrong on that. The filings for the company were done on August 11th of this year and they rent a virtual office space at the Trump Building on Wall Street. Chainfire himself also said that the XDA leadership was involved in getting his project moved over to this company. Now maybe he wasnt supposed to let that slip, IDK, but he did say it.
EniGmA1987 said:
Could you provide some info on the company to the people here then? Because business filings say that you are wrong on that.
Click to expand...
Click to collapse
Just look deeper and you will see. Just because they have a different name, or make an off shoot doesnt really make them a different company. If you read you will see that they already have their fingers into a few SU apps already. Dont you think that is odd for a new company?
XDA admins only made introductions. I personally dont really care. Nor should anyone really. If you are using SU then you know the risks you run and how to spot them.
zelendel said:
Just look deeper and you will see. Just because they have a different name, or make an off shoot doesnt really make them a different company. If you read you will see that they already have their fingers into a few SU apps already. Dont you think that is odd for a new company?
Click to expand...
Click to collapse
What would be incredibly useful and go a long way in putting people's minds at ease, would be a realistic explanation of the MOTIVATIONS of this company, WHICH IS NEW, regardless of your perception of it being a simple name change, for acquiring and controlling ALL of the different mechanisms for controlling root on Android.
Frankly, I can imagine only a few motivations, none of which ANYONE should be ok with;
1) Charging for it,
2) Forcing ads that the user cannot control,
3) Backdoor/botnet/etc.
You need to remember that while their software will prompt you when some OTHER software tries to access root, it has the ability to hide its own use of root, as well as to wipe evidence from the logs.
Root access should ONLY EVER be open source.
doitright said:
What would be incredibly useful and go a long way in putting people's minds at ease, would be a realistic explanation of the MOTIVATIONS of this company, WHICH IS NEW, regardless of your perception of it being a simple name change, for acquiring and controlling ALL of the different mechanisms for controlling root on Android.
Frankly, I can imagine only a few motivations, none of which ANYONE should be ok with;
1) Charging for it,
2) Forcing ads that the user cannot control,
3) Backdoor/botnet/etc.
You need to remember that while their software will prompt you when some OTHER software tries to access root, it has the ability to hide its own use of root, as well as to wipe evidence from the logs.
Root access should ONLY EVER be open source.
Click to expand...
Click to collapse
The open source was done once. It didnt last very long and due to the nature of SU will never stay open source and mainstream at the same time. If someone wants to charge for the SU app then ok let them. Heck most already paid for the SU pro anyway. No point in going on a witch hunt before there is something to hunt. All we can do is sit back and wait. If chain trusts them then I am willing to give them a chance. Root itself is a security risk and anyone that does root should know just what they are doing. If not then they get whats coming to them.
This is not this companies first root app. As stated they own/profit from just about all the root apps that are around.
zelendel said:
The open source was done once. It didnt last very long and due to the nature of SU will never stay open source and mainstream at the same time.
Click to expand...
Click to collapse
I have no idea how to respond to that besides saying to you that this statement is *ABSURD*.
The open source root was the *FIRST* root, and has persisted. In fact, the root that *I* am working on, is the extension of that very same *ORIGINAL* root done by Koush. It has remained *the* primary mechanism for controlling root access from 2009 to present, except for a brief loss of maintenance during the reign of Android 5.x.
Further, the nature of root REQUIRES it to be open source.
And will be THE ONLY mainstream method of providing root access control for anyone who has ANY consideration for security.
If someone wants to charge for the SU app then ok let them. Heck most already paid for the SU pro anyway.
Click to expand...
Click to collapse
Only because they are being denied simple and mandatory features. This isn't a voluntary charge, this is coercion and even RANSOM.
No point in going on a witch hunt before there is something to hunt.
Click to expand...
Click to collapse
But there IS a witch to hunt: SECURITY. Or lack thereof.
All we can do is sit back and wait. If chain trusts them then I am willing to give them a chance.
Click to expand...
Click to collapse
You are a fool. Not only did the author of that binary root NEVER actually do anything to EARN your trust, the fact that you put your trust into a business arrangement that doesn't even involve you is tremendously scary... for you.
Root itself is a security risk and anyone that does root should know just what they are doing. If not then they get whats coming to them.
Click to expand...
Click to collapse
No. This is entirely invalid. Root is not a security risk when done correctly, in open source, and treated with *respect*.
Binary root control *IS* a security risk, and unfortunately you are wrong again on this, since knowing what you are doing DOES NOT protect you from it. There is NOTHING you can do to protect yourself from binary software that you VOLUNTARILY put into a sensitive position of high trust.
This is not this companies first root app. As stated they own/profit from just about all the root apps that are around.
Click to expand...
Click to collapse
That is a TERRIFYING prospect for reasons I've already discussed.
doitright said:
I have no idea how to respond to that besides saying to you that this statement is *ABSURD*.
The open source root was the *FIRST* root, and has persisted. In fact, the root that *I* am working on, is the extension of that very same *ORIGINAL* root done by Koush. It has remained *the* primary mechanism for controlling root access from 2009 to present, except for a brief loss of maintenance during the reign of Android 5.x.
Further, the nature of root REQUIRES it to be open source.
And will be THE ONLY mainstream method of providing root access control for anyone who has ANY consideration for security.
Only because they are being denied simple and mandatory features. This isn't a voluntary charge, this is coercion and even RANSOM.
But there IS a witch to hunt: SECURITY. Or lack thereof.
You are a fool. Not only did the author of that binary root NEVER actually do anything to EARN your trust, the fact that you put your trust into a business arrangement that doesn't even involve you is tremendously scary... for you.
No. This is entirely invalid. Root is not a security risk when done correctly, in open source, and treated with *respect*.
Binary root control *IS* a security risk, and unfortunately you are wrong again on this, since knowing what you are doing DOES NOT protect you from it. There is NOTHING you can do to protect yourself from binary software that you VOLUNTARILY put into a sensitive position of high trust.
That is a TERRIFYING prospect for reasons I've already discussed.
Click to expand...
Click to collapse
He has done alot to earn my trust. You would know that had to been around as long as I have been.
I am fully aware of the first root. And the reasons behind him stopping its development. The only ones that I am aware of that was even using it was CM and they are almost as much of a joke as MIUI.
I am fully aware of what you are working on and to be honest not something I or many others would use would even use as you are unknown and to be honest not really trusted. Maybe after you have been around a while more people will put faith in you and your projects. Not to mention your attitude is enough to make many not bother with it.
Root is a security risk. Just as any real developer. Even Google is making things like root harder to obtain because they see the risk. But to be honest as I have already said "Mobile security is and illusion" If I was truly worried about security I would not unlock my bootloader or bother with rooting.
Now we can argue this back and forth and never get anywhere. So We can end this here.
doitright said:
You obviously don't know the first thing about security, or the gravity of offering root control to an unknown entity.
To make it simple, unless you can *prove* that something is safe, the only rational assumption is that it isn't.
In other words, it is not my place to prove them unsafe. It is your responsibility to prove that they are safe, and frankly, that is an impossible task.
Feel free to use whatever you like. But don't go recommending to somebody that they take dangerous risks that are unnecessary.
---------- Post added at 01:33 AM ---------- Previous post was at 01:27 AM ----------
It was almost acceptable when it was maintained by a single individual, but at some point fairly recently, the code was transferred/sold to an outfit that has been buying up all the root control software that can be found on play store.
Although the original author continues to make the software available under his pseudonym, there is no indication of the contract in place between him and the software's new owners, and no indication of their motives.
That makes the situation incredible frightening and dangerous.
Click to expand...
Click to collapse
This is almost the most amazing post on xda. :good:
Could you kindly prove that the Google Factory Image is safe? Otherwise I would advise you destroy your handset immediately as its probably not safe.
zelendel said:
He has done alot to earn my trust. You would know that had to been around as long as I have been.
Click to expand...
Click to collapse
I've been around longer than you. Try again.
I am fully aware of the first root. And the reasons behind him stopping its development. The only ones that I am aware of that was even using it was CM and they are almost as much of a joke as MIUI.
Click to expand...
Click to collapse
I won't argue with CM being a joke, but MOST people used Koush's superuser up until they were stopped by selinux.
I am fully aware of what you are working on and to be honest not something I or many others would use would even use as you are unknown and to be honest not really trusted. Maybe after you have been around a while more people will put faith in you and your projects. Not to mention your attitude is enough to make many not bother with it.
Click to expand...
Click to collapse
Speak for yourself, but don't you DARE to speak for others.
As far as the trustworthiness of my work goes... go ahead and AUDIT IT. The code speaks for itself.
Root is a security risk. Just as any real developer.
Click to expand...
Click to collapse
I ask myself. Answer is that you have no idea what you are talking about.
Even Google is making things like root harder to obtain because they see the risk. But to be honest as I have already said "Mobile security is and illusion" If I was truly worried about security I would not unlock my bootloader or bother with rooting.
Click to expand...
Click to collapse
Google is correctly worried about the dangers of binary root. As YOU should also be.
Now we can argue this back and forth and never get anywhere. So We can end this here.
Click to expand...
Click to collapse
Only because you have degenerated into personal attacks rather than rational argument.
---------- Post added at 06:07 PM ---------- Previous post was at 06:05 PM ----------
Amos91 said:
This is almost the most amazing post on xda. :good:
Could you kindly prove that the Google Factory Image is safe? Otherwise I would advise you destroy your handset immediately as its probably not safe.
Click to expand...
Click to collapse
I can't prove that google factory image is safe. I can make a strong argument to suggest that it most likely is, and I can prove that AOSP is safe.
FYI: I use a Nexus, so I'm not limited to factory images, as implied by your last sentence.
Well, I'm no techie, I'm just an end-user of other people's talented work, but I'm with doitright on this one. I have trusted Chainfire for years - I have a number of his apps on my device, all of them paid for even though most work perfectly as free apps, simply because I do trust his work. Even if it's closed source black box stuff, he has always appeared to be a straight-up guy.
Still, once the black box passes into company ownership, at that point my trust ends. Companies are not charities hoping for donations. They want some return on whatever investment they've put into taking over SuperSU. Bottom line, I don't trust companies - and yes, that does include Google or Alphabet or whatever piece owns Android these days. I live with the knowledge that I am the product - my choice.
It's also my choice to opt for an open-source solution over a black box one. If doitright's superuser can be audited by people who know what they're looking at (I don't) then that'll do it for me.
And as an afterthought, yes, doitright is a spiky character. So is Torvalds. So what? As long as he comes up with the goods I have no problem with it. He comes across as passionate, doesn't suffer fools gladly (and that is just a saying, I'm not referring to any posters), and since I'm pretty much the same, if a bit more politic in the way I write, I can't criticise that...
doitright said:
Feel free to use whatever you like. But don't go recommending to somebody that they take dangerous risks that are unnecessary
Click to expand...
Click to collapse
Risk = Chance * Effect.
doitright said:
I've been around longer than you. Try again.
I won't argue with CM being a joke, but MOST people used Koush's superuser up until they were stopped by selinux.
Speak for yourself, but don't you DARE to speak for others.
As far as the trustworthiness of my work goes... go ahead and AUDIT IT. The code speaks for itself.
I ask myself. Answer is that you have no idea what you are talking about.
Google is correctly worried about the dangers of binary root. As YOU should also be.
Only because you have degenerated into personal attacks rather than rational argument.
---------- Post added at 06:07 PM ---------- Previous post was at 06:05 PM ----------
I can't prove that google factory image is safe. I can make a strong argument to suggest that it most likely is, and I can prove that AOSP is safe.
FYI: I use a Nexus, so I'm not limited to factory images, as implied by your last sentence.
Click to expand...
Click to collapse
I only speak for the developers I have talked to about using your root set up instead of chains. Got the same answer from all of them.
As for being around longer then me in the modding area. I would put a bet on that. I have been modding phones before a smart phone was even a thought.
You were the first to throw insults. As seems to be your way. Anyone that doesn't agree with you is called a fool or other wise.
Nope you are right. I have no idea what I'm talking about. Now excuse me I have some bugs to fix thanks to Google messing things up.
Related
There is an ota update of 142.00mb, Im trying to download it and I keep getting error. it reboots into recovery and says 25% then it boots into main phone, then it says install update was unsuccessful. Any ideas? I did have my phone rooted it before, the method I used was threw the app store.
the_professor. said:
There is an ota update of 142.00mb, Im trying to download it and I keep getting error. it reboots into recovery and says 25% then it boots into main phone, then it says install update was unsuccessful. Any ideas? I did have my phone rooted it before, the method I used was threw the app store.
Click to expand...
Click to collapse
Go here...http://forum.xda-developers.com/att-galaxy-s5/general/g900and3tong3keeprootota-zip-t2862299
Read trouble shooting
I dont want to root it again, i wanted to unroot it, i seem to be having alot of problems since I rooted .
the_professor. said:
I dont want to root it again, i wanted to unroot it, i seem to be having alot of problems since I rooted .
Click to expand...
Click to collapse
You don't have to root, that's why I said read the trouble shooting in the op.
what is op? sorry
the_professor. said:
what is op? sorry
Click to expand...
Click to collapse
Opening post or sometimes Original poster.
I've been getting a notification about an update that I repeatedly decline. About 15 min ago it was forced to my phone but failed. What I mean by forced is I had no option to decline/remind me later. Now my biggest issue with that is how do they know or why do they think I'm not using my phone to handle important business? That is what aggravated me the most. Assuming I want the update, and attempting to force it on my phone. I'm pissed for real for the first time with AT&T.
Assassyn said:
I've been getting a notification about an update that I repeatedly decline. About 15 min ago it was forced to my phone but failed. What I mean by forced is I had no option to decline/remind me later. Now my biggest issue with that is how do they know or why do they think I'm not using my phone to handle important business? That is what aggravated me the most. Assuming I want the update, and attempting to force it on my phone. I'm pissed for real for the first time with AT&T.
Click to expand...
Click to collapse
Short answer - they don't care. Their interest in maintaining residual control over your property is more important to them than whatever you want to do with your property.
Assassyn said:
I've been getting a notification about an update that I repeatedly decline. About 15 min ago it was forced to my phone but failed. What I mean by forced is I had no option to decline/remind me later. Now my biggest issue with that is how do they know or why do they think I'm not using my phone to handle important business? That is what aggravated me the most. Assuming I want the update, and attempting to force it on my phone. I'm pissed for real for the first time with AT&T.
Click to expand...
Click to collapse
Not to defend any carrier but my guess is they felt it was an important enough update and had to be pushed to the phone after the repeated attempts were declined. I agree that this is not a proper practice and perhaps a call to executive services filing a complaint might help in the long run. But as the other 99% of owners that are not rooted or modified will probably just accept the update, they have little concern for the rooted community. One would hope that it was detecting a period of low activity?
Kamchak said:
Short answer - they don't care. Their interest in maintaining residual control over your property is more important to them than whatever you want to do with your property.
Click to expand...
Click to collapse
Ah..the old "my property" argument....well what rights you have to things you purchase are subjective. In most communities a homeowner cannot park a vehicle on his own grass, nor keep unregistered vehicles in his driveway unless covered, has to maintain the property...and thousands of other laws and ordinances telling them exactly what they can and cannot do to their owned "property." Cell phones are a communication device thus governed by communication laws allowing the carriers to tell you what you can and cannot do to your "property" for security and communication regulated reasons. The only way around those regulations forcing updates to you (to a certain degree) is to buy an unlocked device from independent sales outlets. Using a certain carrier will then add their restrictions to you in the TOS that you sign.
KennyG123 said:
Ah..the old "my property" argument....well what rights you have to things you purchase are subjective. In most communities a homeowner cannot park a vehicle on his own grass, nor keep unregistered vehicles in his driveway unless covered, has to maintain the property...and thousands of other laws and ordinances telling them exactly what they can and cannot do to their owned "property." Cell phones are a communication device thus governed by communication laws allowing the carriers to tell you what you can and cannot do to your "property" for security and communication regulated reasons. The only way around those regulations forcing updates to you (to a certain degree) is to buy an unlocked device from independent sales outlets. Using a certain carrier will then add their restrictions to you in the TOS that you sign.
Click to expand...
Click to collapse
Although I understand what you are saying, and (being a homeowner) understand the realities of your post, I am uncertain as to the purpose in making the answer. Although my answer may be an old argument, that doesn't make it an erroneous argument. Their consideration for our interests begins and ends with our wallets. They couldn't care less about what we want to do with our communication equipment, whether bought from a certain carrier or an independent sales outlet. I'd venture to guess that their TOS isn't any different, regardless from where you obtain the property.
As far as there not being a way around their control, isn't that why this site exists? I thought what xda-developers was here for was to help people get the most out of their devices by providing a collaborative environment where people could share their experiences of creative use and exploration of said property without restriction by other entities?
Kamchak said:
Although I understand what you are saying, and (being a homeowner) understand the realities of your post, I am uncertain as to the purpose in making the answer. Although my answer may be an old argument, that doesn't make it an erroneous argument. Their consideration for our interests begins and ends with our wallets. They couldn't care less about what we want to do with our communication equipment, whether bought from a certain carrier or an independent sales outlet. I'd venture to guess that their TOS isn't any different, regardless from where you obtain the property.
As far as there not being a way around their control, isn't that why this site exists? I thought what xda-developers was here for was to help people get the most out of their devices by providing a collaborative environment where people could share their experiences of creative use and exploration of said property without restriction by other entities?
Click to expand...
Click to collapse
What you say is true...I was just trying to clarify the entitlement I see way too often regarding what people feel are their rights to do what they want with their "property." As a communication device it is not fully anyone's property until deactivated.
This site does exist to help members do more with their devices than intended by the carrier..however that comes with ramifications like voiding the warranty or violating TOS. There are many posts made by people thrown off of their carrier for tethering huge amounts of data. As for a way around their control...there are many methods available on this site to avoid updates. At the first sign of an unwanted updated the OP should have sought those methods out. I know...it was a surprise that it got forced on the device (though failing) without consent. I am sure there is some clause in the TOS allowing that. So I apologize if it seemed my post was directed at you..it was just to clarify this "property" idea that I see spouted way too often around this site. :good:
KennyG123 said:
Not to defend any carrier but my guess is they felt it was an important enough update and had to be pushed to the phone after the repeated attempts were declined. I agree that this is not a proper practice and perhaps a call to executive services filing a complaint might help in the long run. But as the other 99% of owners that are not rooted or modified will probably just accept the update, they have little concern for the rooted community. One would hope that it was detecting a period of low activity?
Ah..the old "my property" argument....well what rights you have to things you purchase are subjective. In most communities a homeowner cannot park a vehicle on his own grass, nor keep unregistered vehicles in his driveway unless covered, has to maintain the property...and thousands of other laws and ordinances telling them exactly what they can and cannot do to their owned "property." Cell phones are a communication device thus governed by communication laws allowing the carriers to tell you what you can and cannot do to your "property" for security and communication regulated reasons. The only way around those regulations forcing updates to you (to a certain degree) is to buy an unlocked device from independent sales outlets. Using a certain carrier will then add their restrictions to you in the TOS that you sign.
Click to expand...
Click to collapse
I was able to get them to go away after freezing the updater apk file with Titanium BackUp. Haven't been bothered since. I think if it's that serious to where they need to force an update, they should at least tell us what the major concern is. Very likely that they won't but it's ok, I "fixed" it enough for my liking.
Assassyn said:
I was able to get them to go away after freezing the updater apk file with Titanium BackUp. Haven't been bothered since. I think if it's that serious to where they need to force an update, they should at least tell us what the major concern is. Very likely that they won't but it's ok, I "fixed" it enough for my liking.
Click to expand...
Click to collapse
Yes! Thankfully there is no shortage of information on this site on how to prevent OTA's and the annoying nags.
KennyG123 said:
Yes! Thankfully there is no shortage of information on this site on how to prevent OTA's and the annoying nags.
Click to expand...
Click to collapse
I take my annoying nag out to dinner a couple times a month. Oops don't tell her I said that or I'll be building another doghouse. ????
"You stay classy San Diego"
Sent from my G900A powered by XKRom GoldLimiTed.
I saw the root thread is getting clogged down with arguments over the cost to benefit ratio involved with the Turbo root.
So is it worth it? What works and what doesn't? Post your thoughts.
I know several people that root for the sole purpose of having WiFi tether, for those I would think that it is worth it!
But has the wifi tether been achieved yet? I've heard that many are having difficulties.
I think it's also worth nothing that Sunshine has full root and unlocked bootloader for 25$. Now, a small $5 is the difference between full root and unlocked bootloader and write protected half-root system. Admittedly, I am not familiar with having root on a write protected system since I have never owned a system that has this. What I do know is that I have no idea how to edit a system image, nor do I feel any obligation to pay $20 to read a tutorial on how to download a linux VM and waste hours of my life failing at editing system files in hopes that I can achieve what I want to achieve. Perhaps to those more experienced with editing major files like that, the $20 is worth it, but I think for the average android user who appreciates root it may not be.
Basketballhero75 said:
I think it's also worth nothing that Sunshine has full root and unlocked bootloader for 25$. Now, a small $5 is the difference between full root and unlocked bootloader and write protected half-root system.
Click to expand...
Click to collapse
Sounds to me like Sunshine is underpriced then, lol! Hey @jcase, looks like you should charge more.
JulesJam said:
Sounds to me like Sunshine is underpriced then, lol! Hey @jcase, looks like you should charge more.
Click to expand...
Click to collapse
I support what they are doing and the price they charge.
It's not comparable to sunshine, as they are entirely different products. SunShine's goal is just unlock, the included TempRoot is only there to make it work on phones without root.
I will repost my thoughts that I put in the initial release thread for mofo, and thanks to the OP here for creating a discussion thread, I hate being "that guy" who posts off topic. I rarely see anything on the internet that inspires me to bother writing an opinion, but this topic really struck a chord with me.
Personally, I don't fundamentally think it's wrong to charge for root, despite it being historically developed and distributed for free. That being said, one of the things that has made the android dev community amazing is its dedication to opening the abilities of software and hardware for everyone. This core concept of community development and participation is what has helped shape sites like XDA. Once we start the trend of putting a price tag on it, it starts to get a bit apple smelling in here.
For myself, root by itself, not an unlocked bootloader, on a device that’s about to get an OS upgrade is not worth 20$.That price tag is very broken and again sets a bad example. I REALLY DO empathize and sympathize with hard working devs wanting to get some funds back for their time, but the only 0 day exploit being used here is the price tag for this.
Cheers!
I imagine most of us spend $20 over the course of a month on little extras.. a candy bar, fast food lunch, or bar night with friends... etc
So if you sacrifice those little extras for one month to have root on a device that is basically on your body 24/7, to me, is an easy justification to make.
Coming from rooted phones I had no idea how borked an ad-filled android experience is. Being able to use my phone without any visual intrusions is well worth it.
Also coming from 5.0 on an M8, I really don't mind staying with 4.4.4 if the 5.1 update kills the mofo process. Worse case, Im stuck with root on 4.4.4 until my edge up next March and start this process all over again
YES. You can flash an edited image I don't get why people are complaining about this so much it opens a door that allows for mostly anything you could ask for. Edit Image and reflash with what they want.
I have no problem in principle with charging for root. There's nothing at all wrong with a developer expecting compensation for something that (1) requires a specialized skill set that that developer has and (2) clearly required a great deal of that developer's time. Why should I expect them to give me that for free? It would certainly be nice if they did, but it's not something that's owed to me.
That said, I somewhat regret having paid for this. It's fundamentally different from what most users mean when they refer to "root." Apps that advertise themselves as "root apps" almost uniformly contemplate being able to write to /system on the fly, and the lack of an ability to do so means that my phone—while technically rooted—lacks some pretty basic root functionality.
I would have no problem paying $20 or more for what I'll call "true-root". I'm not a technical guy, so doing all the stuff that's required to basically flash a new image is not something I'm willing to do. In addition, you still have write-protection that's not possible or not easily possible to currently circumvent. When I rooted my Droid Razr Maxx (the 1st and only phone I ever rooted), I basically connected to the phone to my laptop, ran a . bat file and sat back and waited. The end result was a fully rooted phone. There was no questions or concerns about what could or could not run. If the app in question required root, then you knew it would safely work.
Don't get me wrong. I believe this will open the door for more possibilities with the Turbo. I can certainly appreciate the time and effort from all involved to get this to where it is. That being said, for me and me only, I will not be implementing this, as it stands today. That would be my stance even if it was being offered at no cost.
The only reasons I ever rooted my Razr Maxx was to get WiFi Hotspot and Titanium Backup working, so the lack of root for me is an inconvenience, not the end of the world.
The issue is that most members here are used to a certain experience, and then when that experience is different they will complain. When they have to pay for that different experience, they complain more. I personally feel like this is 100% worth $20, especially since it is a license for the program. I'm sure that this will open up a lot of doors for this device soon.
If you read this post and on, it looks like we kind of already do have WP off
http://forum.xda-developers.com/showthread.php?p=59691280
Sent from my XT1254 using Tapatalk
this_is_nascar said:
I can appreciate that view on the subject. It's still not going to be for everyone.
Click to expand...
Click to collapse
I totally agree with you, it's not for everyone. Everyone is welcome to try (at their own risk), but it's not a "push the magic button" method. Some like the fact that with a little elbow (and finger) grease they can finally get root on a device that was believed so locked down as to never allow root. Some are intimidated by the process of having to do some modding/coding/whatever and would rather wait for an easier (push a magic button) method. Both choices are A-ok in my book.
My problem is with the people who think paying a dev is outrageous, no matter what they are paying for or how much work it is going to be on their end once they get hold of the software after forking over their cash. Someone doesn't want to pay, fine. No need to go out on a soapbox and proclaim your holy testament to the world that so-and-so dev is ridiculous for charging for their work.
Like was said a few posts back, devs that release their sh!+ for free, it's greatly appreciated. Devs that charge for their hard work, I commend you all for being capitalistic in this society.
LifeAsADroid said:
I totally agree with you, it's not for everyone. Everyone is welcome to try (at their own risk), but it's not a "push the magic button" method. Some like the fact that with a little elbow (and finger) grease they can finally get root on a device that was believed so locked down as to never allow root. Some are intimidated by the process of having to do some modding/coding/whatever and would rather wait for an easier (push a magic button) method. Both choices are A-ok in my book.
My problem is with the people who think paying a dev is outrageous, no matter what they are paying for or how much work it is going to be on their end once they get hold of the software after forking over their cash. Someone doesn't want to pay, fine. No need to go out on a soapbox and proclaim your holy testament to the world that so-and-so dev is ridiculous for charging for their work.
Like was said a few posts back, devs that release their sh!+ for free, it's greatly appreciated. Devs that charge for their hard work, I commend you all for being capitalistic in this society.
Click to expand...
Click to collapse
I understand your points.
I had no problem paying for it. I have used free root exploits many times in the past. I tried to donate for most of them (but haven't always) so I see no problem with kicking some money to the dev for his work.
As for those complaining about not getting free root or "half-root". You've gone 5+ months without ANY root. You are free to go along your merry way and ignore this root. At this point it shouldn't make a difference in your life. You should have done some research when you bought your phone. Historically, Moto phones have been difficult to root/unlock. I'm sure you had other choices at your time of purchase. If root meant that much to you, you should have got the M8 or some other phone with "full root".
As far as "half-root", I understand where people are coming from, but it still gives us root functionality, even if we dont have system write ability. For instance, I am now able to run ARU-R and Greenify in root mode. This alone was worth the price for me. Others have had success w/ Ti backup which is also great. My next step is to start testing some of the advanced Tasker functions, but I dont see why they shouldnt work with this "half-root". So far it does most of everything I needed it for so you'll see no complaints from me.
People need to understand that this is a huge step forward from where we were just a week or 2 ago. And appreciate that maiko1 didnt have to spend his time finding and developing an exploit for us, let alone release it in a nicely packaged tool. Whether you thing WP root is worth $20 is going to vary based on individual needs. Why not instead just be greatful we've come this far and if you want to save your $20 then just keep holding out for whatever else this may open down the road.
LifeAsADroid said:
I totally agree with you, it's not for everyone. Everyone is welcome to try (at their own risk), but it's not a "push the magic button" method. Some like the fact that with a little elbow (and finger) grease they can finally get root on a device that was believed so locked down as to never allow root. Some are intimidated by the process of having to do some modding/coding/whatever and would rather wait for an easier (push a magic button) method. Both choices are A-ok in my book.
My problem is with the people who think paying a dev is outrageous, no matter what they are paying for or how much work it is going to be on their end once they get hold of the software after forking over their cash. Someone doesn't want to pay, fine. No need to go out on a soapbox and proclaim your holy testament to the world that so-and-so dev is ridiculous for charging for their work.
Like was said a few posts back, devs that release their sh!+ for free, it's greatly appreciated. Devs that charge for their hard work, I commend you all for being capitalistic in this society.
Click to expand...
Click to collapse
I agree with this approach but your earlier comments were attacking people who didn't object to paying for root out of principal but basically object to paying for what's available right now, as it doesn't give them what they're looking for.
I haven't paid for MOFO yet because it doesn't give me what I'm looking for, which is the ability to install, update and change xposed packages, adaway, etc without having to build and flash a new image every time. I don't have the skills OR the time to do that. I'll be more than happy to pay the $25 I pledged in the root bounty thread if I can get a solution that works for ME.
Like I said, I'm all for devs getting paid to do this, and to be honest, when I read the post about MOFO (before I knew exactly how it worked and what the limitations were), I was relieved that they built the payment mechanism into the solution instead of having to PM hundreds of users and ask for their bounty pledge or for donations on the forum. Moreover, I have a lot of appreciation and respect to people who do these things, whether they charge for it or not. I get all sweaty every time I flash a new ROM, I can't even imagine how much work it is to find these exploits and explore using them for our advantage. It's just that this solution isn't for everyone, at least the way it is now.
Here is how I see it. Maiko1 made a product. This product does exactly what it is designed and advertised to do. Unfortunately, it’s not quite what I’m looking for. If I’m looking for a new car, and I want a car with a sun roof, and someone offers to sell me a car without a sun roof, well, I can decide whether I want to forego that feature and buy that car, or hold off in the hopes that a car with a sunroof will become available. No offense to the dude who made the car without a sunroof at all. I appreciate all the work he put in. It’s just not what I’m looking for. Now, if someone comes along and figures out a way to add a sunroof to the car (adaway, greenify, etc.), I may reconsider and purchase it. But as of now, I don’t really see how those root apps will function without WP off. Don’t they need to be able to write things to the system partition to function properly? I could be wrong on that and if so someone please explain how these root apps will work with the current root option. Just my 2 cents.
Munkee915 said:
I had no problem paying for it. I have used free root exploits many times in the past. I tried to donate for most of them (but haven't always) so I see no problem with kicking some money to the dev for his work.
As for those complaining about not getting free root or "half-root". You've gone 5+ months without ANY root. You are free to go along your merry way and ignore this root. At this point it shouldn't make a difference in your life. You should have done some research when you bought your phone. Historically, Moto phones have been difficult to root/unlock. I'm sure you had other choices at your time of purchase. If root meant that much to you, you should have got the M8 or some other phone with "full root".
As far as "half-root", I understand where people are coming from, but it still gives us root functionality, even if we dont have system write ability. For instance, I am now able to run ARU-R and Greenify in root mode. This alone was worth the price for me. Others have had success w/ Ti backup which is also great. My next step is to start testing some of the advanced Tasker functions, but I dont see why they shouldnt work with this "half-root". So far it does most of everything I needed it for so you'll see no complaints from me.
People need to understand that this is a huge step forward from where we were just a week or 2 ago. And appreciate that maiko1 didnt have to spend his time finding and developing an exploit for us, let alone release it in a nicely packaged tool. Whether you thing WP root is worth $20 is going to vary based on individual needs. Why not instead just be greatful we've come this far and if you want to save your $20 then just keep holding out for whatever else this may open down the road.
Click to expand...
Click to collapse
Perhaps my situation is a little different than most:
I purchased my first droid turbo the morning it came out at my local Verizon store from a friend who had an extra upgrade. I paid a little over $300 for it after taxes. The phone was great, the processor was powerful, and the battery was superb (although not quite 48 hours with my use). As an unlimited data user on Verizon, the lack of tethering for free got to me, and I decided to sell the 64GB beauty for a sound 550$ to pull in a nice little profit.
Fast forward a couple months:
Scanning the droid forums every now and then, I found a post that stated that root was being explored on the turbo. Many android news websites started reporting it and I was beginning to hate my M7 because of it's consistently inconsistent battery life. So what did I do? On March 22nd, I purchased another Turbo for $450; only because I knew it was getting root. And wouldn't luck have it, that the phone arrived in my mailbox yesterday afternoon just hours before the root method was released.
So I am technically INCLINED, but I would not consider myself technically knowledgeable or resilient in regards to system images. With that being said, I don't really trust myself to futz around with my brand spanking new droid turbo since I have no idea what I would do if something goes wrong. (Murphy's Law) I purchased a phone under the notion of "Root is coming to the Turbo!"; which it did! This is 100% undoubtedly a sufficient method of obtaining root. It just wasn't all that I was expecting; and I do have a bad taste left in my mouth only because I purchased this phone thinking I would be getting what I consider to be "full root".
Now,
Am I blaming the developer in ANY way? Absolutely not. His work is fully appreciated on my end.
Do I think this is a huge step for the Turbo development community? Of course!
Will this root method and usage be worth $20 for some people, but not for others? Yes.
Would I recommend this specific root method to any of my friends here at home? Unfortunately, no.
Look, if a dev wants to collect on their work, then by god let them do it! If I poured my time into an exploit such as this, you can be damn sure that I would ask for some capital in return. But would I charge $20? I honestly don't think I would.
LifeAsADroid said:
Correction: my feeling is "here is the best method available as of now. Meet the dev half way and do some very basic, very minor work if you want this function so bad. Dev brought you 90% of the way there, you do the rest because the dev doesn't have your phone in his hands."
Click to expand...
Click to collapse
Here's the thing - why go 90% there, and not 100%? There's a technical reason for that, obviously, and if a talented developer like the one that created Mofo can't do it (or doesn't think it's worth the time), a hack, weekend-warrior tinkerer like myself certainly can't. Not without putting in many hours to educate myself on all the inner workings of Android, and most guys who want to root probably can't really devote that kind of time and/or resources to it.
Are you saying that you're not the slightest bit disappointed that this isn't an easy, plug-n-chug solution?
---------- Post added at 02:43 PM ---------- Previous post was at 02:36 PM ----------
evastonian said:
If you read this post and on, it looks like we kind of already do have WP off
http://forum.xda-developers.com/showthread.php?p=59691280
Sent from my XT1254 using Tapatalk
Click to expand...
Click to collapse
Unfortunately, if you read on, you'll see it was only temporary, makes everything unstable, and doesn't survive reboot.
If WP off was as simple as downloading an app from the Play store, I'm thinking the developer could have figured out how to do it and integrate it into Mofo.
spinach.chin said:
Here's the thing - why go 90% there, and not 100%? There's a technical reason for that, obviously, and if a talented developer like the one that created Mofo can't do it (or doesn't think it's worth the time), a hack, weekend-warrior tinkerer like myself certainly can't. Not without putting in many hours to educate myself on all the inner workings of Android, and most guys who want to root probably can't really devote that kind of time and/or resources to it.
Are you saying that you're not the slightest bit disappointed that this isn't an easy, plug-n-chug solution?
---------- Post added at 02:43 PM ---------- Previous post was at 02:36 PM ----------
Unfortunately, if you read on, you'll see it was only temporary, makes everything unstable, and doesn't survive reboot.
If WP off was as simple as downloading an app from the Play store, I'm thinking the developer could have figured out how to do it and integrate it into Mofo.
Click to expand...
Click to collapse
http://forum.xda-developers.com/showthread.php?p=59691816
It does survive soft reboot. So we can install xposed, and update SU binaries. It automates mounting as R/W after the kernel. So this looks like a solution.
Sent from my XT1254 using Tapatalk
In regards to the what seems to be a disturbing trend in forcing people to "Buy" their hacks. (If You Wish To Use Them)
I was going to write a big long rambling post about it but i think the link below sums it up pretty good.
I think we have lost our way somewhere along the path.
http://en.wikipedia.org/wiki/Hacker_ethic#The_hacker_ethics
no one is forcing any one to buy anything. this root product didn't cost $0 on the developers end, especially in terms of time. if i put that much time and effort into a product, i would like to be compensated as well. if you don't want to pay the fee, then you don't get root. you were the one that knowingly bought a phone that didn't have an unlockable bootloader and didn't have root. having root and/or bootloader unlock on locked phones is not a right.
koftheworld said:
no one is forcing any one to buy anything. this root product didn't cost $0 on the developers end, especially in terms of time. if i put that much time and effort into a product, i would like to be compensated as well. if you don't want to pay the fee, then you don't get root. you were the one that knowingly bought a phone that didn't have an unlockable bootloader and didn't have root. having root and/or bootloader unlock on locked phones is not a right.
Click to expand...
Click to collapse
I think your missing the point ... you even read the wiki article or just the first line of the post and go OMGMYYOUSOUNGRATEFUL lol
I didn't even read the article that you linked, however, I'd like to remind you that no one is forcing you to purchase anything? This is true with anything and everything. That's the problem with today's society, instant gratification and on the flip-side, a person's perceived right of entitlement. I say this all the time, if you don't like something, vote with your wallet. That goes for anything. I can't stand the fact that athletes and team owners make the amount of money they do, so I no longer pay to go to an event. I no longer pay to purchase swag, etc. I vote with my wallet.
Same here. If people have an issue with being charged for (I can't even call it root access), then don't buy it. It's really that simple.
You are correct... poor choice of words in the first line ... They are not Forcing me to do anything. But please try to see past my poor wording and realize the point.... Hacker Ethic ... hack the planet ...free the world ... not OMG i can make money of this! lol
Akrifay said:
I think your missing the point ... you even read the wiki article or just the first line of the post and go OMGMYYOUSOUNGRATEFUL lol
Click to expand...
Click to collapse
Of course I read the post. This is not the golden age of android hacking anymore. Everyone is looking to monetize due to the complexity of actually getting root/bootloader unlock as compared to how the OS was in the beginning. The community, the phones, and the OS were much different in the beginning. At this point in time, I think people who don't have these skills and willingly purchased locked down devices should have their wallets open if they want anything. Maybe with the next big OS we'll see a return to "hacker ethics", but now it's about getting paid for you think your work is worth.
Why is it disturbing that you pay for their time and effort working on this? The Sunshine team spent countless ours and bricked countless devices to develop Sunshine. Should they bear the burden just so you can freely use the fruits of their labor?
What I think is disturbing is that people expect hackers and developers to do things for free. They don't have to do what they do. They don't have to put up with rude users (not referring to you). They don't have to release their work to the public. They don't have to reply to countless posts, PMs, and emails. It is a bunch of time they pit into this.
But, but, but...it's their hobby, they like doing it. I like working on cars as a hobby, but it doesn't mean I should change everyone's oil for free.
But, but but...releasing their methods benefits the android community as a whole. Making me give away my time and effort for the good of the community sounds like socialism.
Your reference to the hacking ethics forgets the assumption that other hackers are sharing their work too. Where is your share of the code that you're working on to benefit the hackers? Since there is no code of yours to share you can contribute monetarily, if they require it.
Akrifay said:
You are correct... poor choice of words in the first line ... They are not Forcing me to do anything. But please try to see past my poor wording and realize the point.... Hacker Ethic ... hack the planet ...free the world ... not OMG i can make money of this! lol
Click to expand...
Click to collapse
I understand where you are coming from. There are still those that do imbibe those ideals, but most of them have disappeared into nexus land or have taken jobs outside of XDA (like Hash).
Akrifay said:
I think your missing the point ... you even read the wiki article or just the first line of the post and go OMGMYYOUSOUNGRATEFUL lol
Click to expand...
Click to collapse
Ethics are not rules. You can follow them or not, its up to the individual. That being said, it does say "Information should be free", not that they should work for free. If maiko1 decides to publish information on the exploit he found, i guess that would be following ethics. He doesnt have to create a tool that does the work and release it for free. Hackers still have jobs. they have to buy food and pay rent. Many times hackers will find exploits and leverage them against companies for larger payouts or even a full time gig. In that light, I'm glad he released it, even if it is at a cost, because there's a real chance we might have never seen the exploit.
Munkee915 said:
Ethics are not rules. You can follow them or not, its up to the individual. That being said, it does say "Information should be free", not that they should work for free. If maiko1 decides to publish information on the exploit he found, i guess that would be following ethics. He doesnt have to create a tool that does the work and release it for free. Hackers still have jobs. they have to buy food and pay rent. Many times hackers will find exploits and leverage them against companies for larger payouts or even a full time gig. In that light, I'm glad he released it, even if it is at a cost, because there's a real chance we might have never seen the exploit.
Click to expand...
Click to collapse
I had never thought/considered that, but it makes sense.
orangechoochoo said:
Why is it disturbing that you pay for their time and effort working on this? The Sunshine team spent countless ours and bricked countless devices to develop Sunshine. Should they bear the burden just so you can freely use the fruits of their labor?
What I think is disturbing is that people expect hackers and developers to do things for free. They don't have to do what they do. They don't have to put up with rude users (not referring to you). They don't have to release their work to the public. They don't have to reply to countless posts, PMs, and emails. It is a bunch of time they pit into this.
But, but, but...it's their hobby, they like doing it. I like working on cars as a hobby, but it doesn't mean I should change everyone's oil for free.
But, but but...releasing their methods benefits the android community as a whole. Making me give away my time and effort for the good of the community sounds like socialism.
Your reference to the hacking ethics forgets the assumption that other hackers are sharing their work too. Where is your share of the code that you're working on to benefit the hackers? Since there is no code of yours to share you can contribute monetarily, if they require it.
Click to expand...
Click to collapse
I have contributed to many a Dev over the years... I am not a Dev per say ... But i believe i am a Hacker by the true definition ... just happens not to be Android Software that i hack. It is amazing work that they do and i am very appreciative for it. But leave it up to the individual to "donate" ... I dont know guess im just an old schooler in a new schooler world lol
Munkee915 said:
Ethics are not rules. You can follow them or not, its up to the individual. That being said, it does say "Information should be free", not that they should work for free. If maiko1 decides to publish information on the exploit he found, i guess that would be following ethics. He doesnt have to create a tool that does the work and release it for free. Hackers still have jobs. they have to buy food and pay rent. Many times hackers will find exploits and leverage them against companies for larger payouts or even a full time gig. In that light, I'm glad he released it, even if it is at a cost, because there's a real chance we might have never seen the exploit.
Click to expand...
Click to collapse
Oh I know! This is great! ABSOLUTELY Ethics are Subjective 100% I agree with you totally ... i guess it just boils down to your definition of right and wrong... Hey i hope he makes a ton of money off it i really do ... Just by my definition i have in MY head i consider it ethically wrong ... IMO hehe
I'm all for supporting the devs for their hard work and time. However, I think whats trying to be communicated here is the change in mindset that we have moved to a format of people willing to donate for a project vs. making it mandatory. Again while I do feel those who do the work should get compensated, I am kinda of disappointed in the idea of an X amount of $$. The bounty was set up so people can donate what they can to the project. There will be many people who are willing to pay money but not $20, others may be willing to pay more. With a mandatory set amount you tend to alienate some of the community. Things have changed and it is getting harder to root devices. I know it takes more work. I acknowledge this. However, it does feel that overall sense of community is suffering as a result. I respect the Dev's decision in how to release the root method. However, I am one who will not be rooting my device because my needs just don't require it and therefor I don't feel it would be worth $20 for me to have root. That's just me though.
Symbiontsoul said:
I'm all for supporting the devs for their hard work and time. However, I think whats trying to be communicated here is the change in mindset that we have moved to a format of people willing to donate for a project vs. making it mandatory. Again while I do feel those who do the work should get compensated, I am kinda of disappointed in the idea of an X amount of $$. The bounty was set up so people can donate what they can to the project. There will be many people who are willing to pay money but not $20, others may be willing to pay more. With a mandatory set amount you tend to alienate some of the community. Things have changed and it is getting harder to root devices. I know it takes more work. I acknowledge this. However, it does feel that overall sense of community is suffering as a result. I respect the Dev's decision in how to release the root method. However, I am one who will not be rooting my device because my needs just don't require it and therefor I don't feel it would be worth $20 for me to have root. That's just me though.
Click to expand...
Click to collapse
Yay im getting through! lol
I forgot about the bounty. Did the guy get it? If so, then I it's odd that he is asking for additional payment too.
Edit- I see that the root bounty thread was closed be cause the rooter is requiring $20 payment t instead.
wow, XDA sure has changed over the years.
Akrifay said:
In regards to the what seems to be a disturbing trend in forcing people to "Buy" their hacks. (If You Wish To Use Them)
I was going to write a big long rambling post about it but i think the link below sums it up pretty good.
I think we have lost our way somewhere along the path.
http://en.wikipedia.org/wiki/Hacker_ethic#The_hacker_ethics
Click to expand...
Click to collapse
If I am to agree with you, I would like to see your free hack/exploit contribution to the community.
You aren't paying for a root method. The root method is explained. You're paying for the product that does it for you.
Akrifay said:
Oh I know! This is great! ABSOLUTELY Ethics are Subjective 100% I agree with you totally ... i guess it just boils down to your definition of right and wrong... Hey i hope he makes a ton of money off it i really do ... Just by my definition i have in MY head i consider it ethically wrong ... IMO hehe
Click to expand...
Click to collapse
Well, look at it this way. By the definition you posted, in that information should be free, maiko1 had no further responsibility to the community than to make a post and say "Hey, i found XYZ exploit. Do with it what you will." He did not have to say how that exploit specifically would allow us to gain root access, let alone make a tool that did it for us. All he had to do was publish the information. Then he would have been an "ethical hacker" according to your definition. Now, seeing as how in the post above the one i quoted, you stated you are not an Android developer, even if you had this information available for free, what would you do with it? By your own admittance you wouldnt be able to achieve root with just the information, you still needed a tool to do it for you. Someone has to develop this tool. There are no ethics for "ethical development" and certainly no expectation that it should be free. Developers work for money. Don't confuse hacking with developing. Hacking is finding exploits. Developing tools to take advantage of them is a whole other story.
Also, just to kill the whole "the hack should be free" argument :
As Stallman notes, "free" refers to unrestricted access; it does not refer to price.
Click to expand...
Click to collapse
From the article you linked. You have access to the method and tool, he didnt root his own phone and keep it from the rest of us. Doesnt mean you shouldnt pay for it.
I can't speak for those behind the root "hack", but I know I don't work for free.
Your time isn't worthless, so why should mine?
adrynalyne said:
Your time isn't worthless, so why should mine?
Click to expand...
Click to collapse
Furthermore, your skills aren't worthless either, so why should they be free?
Hi,
Many people are more and more concerned about privacy and security. The goal of this post is not to hear that people concerned about security and privacy should run stock.
Many threads over internet, over xda and reviews in Play are spreading assumptions about the security concerns since SuperSU is taken by an unknown, discrete and rather secret organisation, CCMT.
We all know the concerns spread over King root in the past.
There are no clarifications either from Chainfire or CCMT about their privacy policy. The supersu.com site has no indications about any physical identity or headquarters. There is no mention of any privacy policy statement. Any post related to these questions in other threads is wiped by mods as out of topic.
Many people over the years never trusted SuperSU as an app, but rather a human known as Chainfire. His reputation over xda community made him above any questioning.
Now, the privacy concerns around a so powerful application rely on a new owner: CCMT. The new owner is secret, has no physical identity, no previous reputation, no nationality and no privacy policy at all. It is releasing new GUI versions that even Chainfire states he is not aware of.
So, like many people, I am questioning my self about CCMT, their origin and their privacy policy. Over the years, I never thought a second to question on Chainfire, but, like many, I feel the right to ask it now.
I am expecting from this thread more clarifications about basic things: CCMT identity, headquarters, privacy policy, national affiliations (Europe / US vs Asia...)... so that anyone can decide to trust them or not
Phil3759 said:
Many people over the years never trusted SuperSU as an app, but rather a human known as Chainfire. His reputation over xda community made him above any questioning.
Click to expand...
Click to collapse
I can't agree more about this. That may be why lots of SuperSU users become worried after this transaction.
As far as I know, Whois says SuperSU.com belongs to a company in Hangzhou, China. And as a Chinese, I see many local SuperSU users hurrying to rollback or uninstall SuperSU. If CCMT is really a company from my country, I deeply understand their anxiety, because that's something related to the whole Chinese software industry:
The most renowned Chinese companies, like Tencent(Wechat, QQ, etc), Baidu, Alibaba(Alipay, etc), Qihoo(360 security, etc), Kingsoft(CleanMaster apps, not that CM for CyanogenMod), run in same strategies, that is to make free, but heavily bundled, bloated, privacy-peeking apps. Some even require hundreds of permissions, run hundreds of services and/or activities, install bloated apps automatically, or open camera to take photos on background. And they will do another clean version for Play Store for foreigners. So you won't experience that disaster, but in China thanks to GFW we can't use Play Store, but to download apps from other unofficial sources.
If CCMT is really Chinese, they, however I must point out, seems not to do anything far-fetched in the new release. SuperSU seems as pure as it used to be. And I believe a new company can't afford the risk to do that thing worldwide right after it takes off.
If CCMT is not Chinese, or wherever it locates, there's still possibility that SuperSU may be used to do something we dislike. We can remain cautious for a period of time. But we also have to beware that this decision was carefully made by Chainfire, and CCMT was introduced by XDA leadership. None of them want to see things go wrong.
But, yeah, I want to know more about CCMT too. It's indeed weird to see such a invisible company buy SuperSU.
Phil3759 said:
Hi,
Many people are more and more concerned about privacy and security. The goal of this post is not to hear that people concerned about security and privacy should run stock.
Many threads over internet, over xda and reviews in Play are spreading assumptions about the security concerns since SuperSU is taken by an unknown, discrete and rather secrent organisation, CCMT.
We all know the concerns spread over King root in the past.
There are no clarifications either from Chainfire or CCMT about their privacy policy. The supersu.com site has no indications about any physical identity or headquarters. There is no mention of any privacy policy statement. Any post related to these questions in other threads is wiped by mods as out of topic.
Many people over the years never trusted SuperSU as an app, but rather a human known as Chainfire. His reputation over xda community made him above any questioning.
Now, the privacy concerns around a so powerful application rely on a new owner: CCMT. The new owner is secret, has no physical identity, no previous reputation, no nationality and no privacy policy at all. It is releasing new GUI versions that even Chainfire states he is not aware of.
So, like many people, I am questioning my self about CCMT, their origin and their privacy policy. Over the years, I never thought a second to question on Chainfire, but, like many, I feel the right to ask it now.
I am expecting from this thread more clarifications about basic things: CCMT identity, headquarters, privacy policy, national affiliations (Europe / US vs Asia...)... so that anyone can decide to trust them or not
Click to expand...
Click to collapse
I'm also trust Chainfire and Xda but what in the future when Chainfire has nothing to do anymore with SuperSu? I prefer SuperSu because it's simply the best superuser for Android devices and Chainfire was always the first to root new devices but when Chainfire leaves SuperSu I'm seriously thinking to remove SuperSu and going for an opensource Superuser as PHH Superuser.
I really hope CCMT is a good and fair company but there are lots of bad examples where good apps are sold to questionable company's for example Quickpic and Cheetah mobile.
Thanks to Chainfire for the years of development on SuperSu and I respect your decision.
Sent from my lightning fast SM-G930F (S7)
I have to agree I find the whole thing to be shady as **** pardon my French, everything that surrounds it lately is pointing towards them not being a trustworthy entity, I have always trusted chainfire, he has been a stand up guy but money �� talks, obviously he has signed a nda so he can't disclose anything related to this, what I find shady imo is they are going far out of they're way to make their identity hidden, when the company/acquisition was first announced by @Chainfire they were supposed to be a trustworthy Compay who has built root apps that "everyone" has used in the past. Just a quick glance at their website and Google plus you can tell they are not native English speaking people, not that there is anything wrong with that, but it solidifys the only info that we know is that the domain is located in China, so most likely the owners do as well, we all know how bad China is for security/privacy.
There is a couple rumors going around that the actual owner of ccmt is Josh the xda owner/admin. If that is true then just tell the community it will save yourself alot of trouble, many developers etc are arleady working on alternatives to supersu because of the way this had been handled.
To put it frankly and to c/p Phil we the millions of root users would like to know..
CCMT identity, headquarters, privacy policy, national affiliations (Europe / US vs Asia...)... so that anyone can decide to trust them or not
Without this information you are basically admitting you are an untrustworthy company and shouldn't be trusted with literally uncontrollable access to millions of root users devices.
I say uncontrollable because supersu modify and reloads the sepolicy at will and can literally do anything it wants without user consent.
This is why this is such a big deal!!!!
Ps- to xda lets keep this discussion open.
BeansTown106 said:
I have to agree I find the whole thing to be shady as **** pardon my French, everything that surrounds it lately is pointing towards them not being a trustworthy entity, I have always trusted chainfire, he has been a stand up guy but money ? talks, obviously he has signed a nda so he can't disclose anything related to this, what I find shady imo is they are going far out of they're way to make their identity hidden, when the company/acquisition was first announced by @Chainfire they were supposed to be a trustworthy Compay who has built root apps that "everyone" has used in the past. Just a quick glance at their website and Google plus you can tell they are not native English speaking people, not that there is anything wrong with that, but it solidifys the only info that we know is that the domain is located in China, so most likely the owners do as well, we all know how bad China is for security/privacy.
There is a couple rumors going around that the actual owner of ccmt is Josh the xda owner/admin. If that is true then just tell the community it will save yourself alot of trouble, many developers etc are arleady working on alternatives to supersu because of the way this had been handled.
To put it frankly and to c/p Phil we the millions of root users would like to know..
CCMT identity, headquarters, privacy policy, national affiliations (Europe / US vs Asia...)... so that anyone can decide to trust them or not
Without this information you are basically admitting you are an untrustworthy company and shouldn't be trusted with literally uncontrollable access to millions of root users devices.
I say uncontrollable because supersu modify and reloads the sepolicy at will and can literally do anything it wants without user consent.
This is why this is such a big deal!!!!
Ps- to xda I know you helped facilitate this sale, and are probably gonna delete my message to cover this up(this is gonna be posted on Twitter and g+ as well) I should probably say goodbye to my recognized titles as well huh? But honestly this is scary **** and seriously one of the biggest security concerns the development Community has ever seen. Before u delete this just think of how many times you guys closed kingroot threads when honestly supersu could be owned by kingroot/cheetah/etc and nobody knows.
Click to expand...
Click to collapse
Couldn't have said it better myself, beans.
BeansTown106 said:
I have to agree I find the whole thing to be shady as **** pardon my French, everything that surrounds it lately is pointing towards them not being a trustworthy entity, I have always trusted chainfire, he has been a stand up guy but money ? talks, obviously he has signed a nda so he can't disclose anything related to this, what I find shady imo is they are going far out of they're way to make their identity hidden, when the company/acquisition was first announced by @Chainfire they were supposed to be a trustworthy Compay who has built root apps that "everyone" has used in the past. Just a quick glance at their website and Google plus you can tell they are not native English speaking people, not that there is anything wrong with that, but it solidifys the only info that we know is that the domain is located in China, so most likely the owners do as well, we all know how bad China is for security/privacy.
There is a couple rumors going around that the actual owner of ccmt is Josh the xda owner/admin. If that is true then just tell the community it will save yourself alot of trouble, many developers etc are arleady working on alternatives to supersu because of the way this had been handled.
To put it frankly and to c/p Phil we the millions of root users would like to know..
CCMT identity, headquarters, privacy policy, national affiliations (Europe / US vs Asia...)... so that anyone can decide to trust them or not
Without this information you are basically admitting you are an untrustworthy company and shouldn't be trusted with literally uncontrollable access to millions of root users devices.
I say uncontrollable because supersu modify and reloads the sepolicy at will and can literally do anything it wants without user consent.
This is why this is such a big deal!!!!
Ps- to xda I know you helped facilitate this sale, and are probably gonna delete my message to cover this up(this is gonna be posted on Twitter and g+ as well) I should probably say goodbye to my recognized titles as well huh? But honestly this is scary **** and seriously one of the biggest security concerns the development Community has ever seen. Before u delete this just think of how many times you guys closed kingroot threads when honestly supersu could be owned by kingroot/cheetah/etc and nobody knows.
Click to expand...
Click to collapse
If Beans post gets deleted, its gotta make you think.
BeansTown106 said:
Ps- to xda I know you helped facilitate this sale, and are probably gonna delete my message to cover this up(this is gonna be posted on Twitter and g+ as well) I should probably say goodbye to my recognized titles as well huh? But honestly this is scary **** and seriously one of the biggest security concerns the development Community has ever seen. Before u delete this just think of how many times you guys closed kingroot threads when honestly supersu could be owned by kingroot/cheetah/etc and nobody knows.
Click to expand...
Click to collapse
Recognized titles are not based upon arbitrary criteria - your title is based on your achievements and contributions, not whether you agree with people or not.
I wrote an article on the portal discussing the merits of open source in superuser apps. I don't think there's a massive conspiracy here to be honest.
My personal view on the situation is that the community can and should simply take this as a good reason to get together and write a better, open-source superuser app. Go on out there, and let's do it right. There's projects working on it, so let's all get in behind those, and let's get functional parity? If this is something you believe in, let's make it happen? Awesome opportunity to learn a lot about the underlying workings of android and selinux as well.
pulser_g2 said:
Recognized titles are not based upon arbitrary criteria - your title is based on your achievements and contributions, not whether you agree with people or not.
I wrote an article on the portal discussing the merits of open source in superuser apps. I don't think there's a massive conspiracy here to be honest.
My personal view on the situation is that the community can and should simply take this as a good reason to get together and write a better, open-source superuser app. Go on out there, and let's do it right. There's projects working on it, so let's all get in behind those, and let's get functional parity? If this is something you believe in, let's make it happen? Awesome opportunity to learn a lot about the underlying workings of android and selinux as well.
Click to expand...
Click to collapse
Couldn't agree more.
I've said it before; Anything can be sold to anybody and we shouldn't care. But when we specifically ask for who is/are the guys that take complete control of our devices over a night and they specifically go out of their way to not answer a simple question, it blatantly shows that they don't want to tell us something. It's so simple.
I'm all in for an opensource alternative and I will try to help as much as I can.
pulser_g2 said:
Recognized titles are not based upon arbitrary criteria - your title is based on your achievements and contributions, not whether you agree with people or not.
I wrote an article on the portal discussing the merits of open source in superuser apps. I don't think there's a massive conspiracy here to be honest.
My personal view on the situation is that the community can and should simply take this as a good reason to get together and write a better, open-source superuser app. Go on out there, and let's do it right. There's projects working on it, so let's all get in behind those, and let's get functional parity? If this is something you believe in, let's make it happen? Awesome opportunity to learn a lot about the underlying workings of android and selinux as well.
Click to expand...
Click to collapse
i hear ya, just didnt know, what would/could happen to me if i spoke out on this topic, it seems anyone who voices their opinion in the ccmt thread has been getting deleted. i understand that the there is a good chance nothing shady is going on. but at the same time to completely hide anything about yourself or your company and form a new company just to stay "secret" raises some big flags. i would have to say the chances are greater of their being something fishy going on than not 60/40%? maybe lol.
but on your topic of a open source superuser i fully agree that is what we should all start doing, even if people are not skilled to contribute alot contribute little bits that you know, and help review code/audit it as well.
im on vacation right now but i plan on looking into the open source superuser when i get home.. this is obviously something I will do and im sure alot of others will do, but it sadly doesnt help the millions of users on SuperSU right now which is the scary part.. i just think without demanding info we will never get any, and this is SOMETHING we should definitely have more info on
KreAch3R said:
I've said it before; Anything can be sold to anybody and we shouldn't care. But when we specifically ask for who is/are the guys that take complete control of our devices over a night and they specifically go out of their way to not answer a simple question, it blatantly shows that they don't want to tell us something. It's so simple.
I'm all in for an opensource alternative and I will try to help as much as I can.
Click to expand...
Click to collapse
this. money talks and i dont have anything against chainfire selling supersu, but when the company is doing everything they can to hide themselves we have problems considering every android user post what android 4.0+ is using superSU minus a handful or two.
Personally, I'm hoping some of our awesome Dev's around here might pick up the challenge and create an alternative. If the community isn't happy with the present situation, well, xda is all about changing situations when it comes to our devices.
Time will tell where this all goes, but I definitely find lack of faith disturbing, and I have faith an alternative will come.
Let's hop on this. PM your github username if you want in.
https://github.com/FOSSUC
BeansTown106 said:
i hear ya, just didnt know, what would/could happen to me if i spoke out on this topic, it seems anyone who voices their opinion in the ccmt thread has been getting deleted. i understand that the there is a good chance nothing shady is going on. but at the same time to completely hide anything about yourself or your company and form a new company just to stay "secret" raises some big flags. i would have to say the chances are greater of their being something fishy going on than not 60/40%? maybe lol.
but on your topic of a open source superuser i fully agree that is what we should all start doing, even if people are not skilled to contribute alot contribute little bits that you know, and help review code/audit it as well.
im on vacation right now but i plan on looking into the open source superuser when i get home.. this is obviously something I will do and im sure alot of others will do, but it sadly doesnt help the millions of users on SuperSU right now which is the scary part.. i just think without demanding info we will never get any, and this is SOMETHING we should definitely have more info on
Click to expand...
Click to collapse
I would rather stay neutral on the matter (as with most things), and since I'm not aware of the situation (don't spend as much time on here following the news as I used to), I don't feel in a position to discuss or speculate. I'd be tempted to mention Hanlon's Razor, but as I say I haven't followed things.
What I would say from a business perspective is that forming companies for new reasons isn't entirely unusual. In fact it can be a good idea. I would form a new company for any major new "product" - it's considerably easier to do that, than to attempt to transfer the rights to something between separate companies.
If you have any specific concerns about anything untoward, please do drop me a PM so I can look into it.
pulser_g2 said:
I would rather stay neutral on the matter (as with most things), and since I'm not aware of the situation (don't spend as much time on here following the news as I used to), I don't feel in a position to discuss or speculate. I'd be tempted to mention Hanlon's Razor, but as I say I haven't followed things.
What I would say from a business perspective is that forming companies for new reasons isn't entirely unusual. In fact it can be a good idea. I would form a new company for any major new "product" - it's considerably easier to do that, than to attempt to transfer the rights to something between separate companies.
If you have any specific concerns about anything untoward, please do drop me a PM so I can look into it.
Click to expand...
Click to collapse
It's not about who owns it, it is about why so much secrets, why no country of origin, why no privacy policy. There are no references despite they were claimed. Also, we all felt some frustration in Chainfire posts when CCMT released versions he is not aware of.
A superuser app must be from a completely trustful source. Even Chainfire mentioned that, if he wanted, he could exploit root to his will. He was honest and trustful.
We still have a good app, but no more a trustful source, that is the issue.
Until the situation is clarified, I feel legitimate that a site like xda officially warns about security concerns with the current app. It won't be fare else that kingroot was banned for the same reasons.
Phil3759 said:
It's not about who owns it, it is about why so much secrets, why no country of origin, why no privacy policy. There are no references despite they were claimed. Also, we all felt some frustration in Chainfire posts when CCMT released versions he is not aware of.
A superuser app must be from a completely trustful source. Even Chainfire mentioned that, if he wanted, he could exploit root to his will. He was honest and trustful.
We still have a good app, but no more a trustful source, that is the issue.
Until the situation is clarified, I feel legitimate that a site like xda officially warns about security concerns with the current app. It won't be fare else that kingroot was banned for the same reasons.
Click to expand...
Click to collapse
Can you hit me up on Telegram? Telegram @nolanroell
Looks like it's a company in Beijing, Chinese users are concerned too (link in Chinese).
As a matter of fact, I don't trust any software from such a company who tried so hard (but not successfully) to hide their identity, especially with root access.
Now Google Play is auto-updating to 2.78 and I have no way of keeping 2.76 unless I disable all auto-update... Shady business. Reverting to stock now.
fhfuih said:
I can't agree more about this. That may be why lots of SuperSU users become worried after this transaction.
As far as I know, Whois says SuperSU.com belongs to a company in Hangzhou, China. And as a Chinese, I see many local SuperSU users hurrying to rollback or uninstall SuperSU. If CCMT is really a company from my country, I deeply understand their anxiety, because that's something related to the whole Chinese software industry:
The most renowned Chinese companies, like Tencent(Wechat, QQ, etc), Baidu, Alibaba(Alipay, etc), Qihoo(360 security, etc), Kingsoft(CleanMaster apps, not that CM for CyanogenMod), run in same strategies, that is to make free, but heavily bundled, bloated, privacy-peeking apps. Some even require hundreds of permissions, run hundreds of services and/or activities, install bloated apps automatically, or open camera to take photos on background. And they will do another clean version for Play Store for foreigners. So you won't experience that disaster, but in China thanks to GFW we can't use Play Store, but to download apps from other unofficial sources.
If CCMT is really Chinese, they, however I must point out, seems not to do anything far-fetched in the new release. SuperSU seems as pure as it used to be. And I believe a new company can't afford the risk to do that thing worldwide right after it takes off.
If CCMT is not Chinese, or wherever it locates, there's still possibility that SuperSU may be used to do something we dislike. We can remain cautious for a period of time. But we also have to beware that this decision was carefully made by Chainfire, and CCMT was introduced by XDA leadership. None of them want to see things go wrong.
But, yeah, I want to know more about CCMT too. It's indeed weird to see such a invisible company buy SuperSU.
Click to expand...
Click to collapse
mycnam said:
Looks like it's a company in Beijing, Chinese users are concerned too (link in Chinese).
As a matter of fact, I don't trust any software from such a company who tried so hard (but not successfully) to hide their identity, especially with root access.
Now Google Play is auto-updating to 2.78 and I have no way of keeping 2.76 unless I disable all auto-update... Shady business. Reverting to stock now.
Click to expand...
Click to collapse
I saw that thread this morning when I hang around v2ex. The company is indeed very shady.
I remember you should be able to disable auto-update in Play Store and you can still use
Chainfire's link
https://download.chainfire.eu/supersu-stable
To download 2.76 by now.
First I was against magisk because we have superior supersu systemless root. Now I'm glad that @topjohnwu did it.
Going to give a try for phh superuser and magisk. Byebye SuperSU Chinese malware!
BeansTown106 said:
this. money talks and i dont have anything against chainfire selling supersu, but when the company is doing everything they can to hide themselves we have problems considering every android user post what android 4.0+ is using superSU minus a handful or two.
Click to expand...
Click to collapse
Let me play Devil's Advocate for a second...rooting your phone and leaving it rooted is like leaving your doors not only unlocked but wide open. So say a hacker steals your identity...and you get a fancy lawyer that blames it on your device being rooted...and decides to sue (SU?) the creator of Supersu..or worse creates a class action suit for not making it with better firewalls to prevent this...there are no warnings posted when you root your phone. I am surprised Chainfire didn't spend everyday in court because of idiot lawyers. Here is a fine example of that stupidity. So why not protect yourself from that stupidity with a corporation? And make it a little difficult to find out who is behind it? Not saying I like not having an open presence on XDA...but maybe that is still coming. Let's hope and I understand everyone's concerns. I have faith in Chainfire that he would choose a buyer that would not sully his reputation or harm us, the users.
Now as @pulser_g2 stated this is a chance for the community to come together...all the great devs at XDA's disposal, to create an XDA homegrown root solution. This is just the sort of thing that can make XDA great again in this time of locked bootloaders and declining development. So...let's make it happen! :highfive::good:
https://www.washingtonpost.com/news...o-buy-almost-anything/?utm_term=.088c0c1a80ff
It seems like this directly applies to the ability to root and tinker with our electronics?
Edit: if some mod would fix my grammar in the post title...that would be great.
skinote said:
https://www.washingtonpost.com/news...o-buy-almost-anything/?utm_term=.088c0c1a80ff
It seems like this directly applies to the ability to root and tinker with our electronics?
Click to expand...
Click to collapse
It's been a little while, but figured I'd reply about it, because I had the same reaction to hearing about that decision. Some qualifiers; the case was regarding patent law. As such this decision is not an apples to apples comparison to rooting/modding/taking control of our phones and other similar electronics; and we cannot point to this case and tell Google/Apple, Samsung/LG/HTC/et al, and AT&T/Verizon/Sprint/et al to give us full access to our phone if we want it. That said, I do still think that if someone was to take a case to the Supreme Court specifically on this topic; the decision would be pretty much the same.
The SCotUS has been fairly consistent over the decades with regards to the person who purchases a physical device as being allowed to do whatever they want with it after they get it. But they might also decide to allow the phone companies some requirements so that they can secure their services. This likely is the main reason why none of the companies will try to resolve rooting/modding/bootloader unlocking in the courts; they know that they will lose based on previous decisions.
With how Android has been steadily moving to be more and more like iOS in trying to make it harder and harder to root the phone and taking away more and more control that the end user has; I think that it might be a good time for a new mobile phone OS that innately gave the user the option to root, install custom recoveries, and otherwise truly make ones phone their own.