UCyborg Posted August 31, 2020 Share Posted August 31, 2020 (edited) The bank that I use decided they will implement mandatory 2FA authentication to access their web services - the second factor second being none other than a smartphone app. For now it's still possible to access it using certificate installed on the computer and the password, but smartphone app is going to replace the certificate soon. So now you have to own a smartphone - to enter PIN code in the app every time to be able to login to the website on the computer, something that was possible without a fuss until recently. Now what really p***ed me off, their app must have tripped on the busybox (apparently one of many checks for signs of rooted phone) that was pre-installed with my current custom ROM and also sometimes came in handy in the past. Having only encountered one such app until now (for authorizing online payments - and it wasn't mandatory, you could've opted for dedicated code generator device), that was happy as long as it didn't find su binary / SuperSU.apk, this one caught me by surprise. OK, so busybox can be removed entirely. Or installed systemlessly (so it doesn't reside on /system partition) with help of Magisk, which facilitates providing root access, hiding it from apps that don't want to see it and providing means to be able to do other modifications without modifying files on /system partition. This banking app seems to have flagged my phone on their servers during activation process, so now can't be activated at all. It must have taken its serial number, which can't be spoofed in practice I think. There's Xposed module that does it, but there's no way around Google's SafetyNet with activated Xposed Framework. What a load of crap! So one's supposed to just buy new phone for one stupid app...which could function on the old one...if it wanted to. Planned obsolescence in general is really strong there...let's buy a new smartphone every year or two. New one would just be bigger, clunkier and preloaded with tons of crap I don't want or need, that can't be removed without root access and since Google's fixing SafetyNet... End of rant! Edited August 31, 2020 by UCyborg 1 1 Link to comment Share on other sites More sharing options...
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!Register a new account
Already have an account? Sign in here.Sign In Now