DeathByBigSad@sh.itjust.works to Android@lemmy.worldEnglish · edit-210 days agoHow big of a security risk is using a Custom ROM (like Lineage) that leaves the bootloader unlocked? (as opppsed to Graphene which re-locks the bootloader under a custom key)message-squaremessage-square21linkfedilinkarrow-up11arrow-down10
arrow-up11arrow-down1message-squareHow big of a security risk is using a Custom ROM (like Lineage) that leaves the bootloader unlocked? (as opppsed to Graphene which re-locks the bootloader under a custom key)DeathByBigSad@sh.itjust.works to Android@lemmy.worldEnglish · edit-210 days agomessage-square21linkfedilink
minus-squarefrongt@lemmy.ziplinkfedilinkEnglisharrow-up0·10 days agoIf someone gains access to your device they could alter or replace the OS without your notice, called an evil maid attack. If the bootloader is locked, they’d have to have the phone OS booted and screen unlocked, then unlock the bootloader, which wipes the device.
minus-squareNate@piefed.alphapuggle.devlinkfedilinkEnglisharrow-up0·edit-210 days agoIf this is part of your threat model and you are using lineage on a device that supports avb_custom_key then you can sign it yourself before flashing
minus-squareMagnum, P.I.@lemmy.dbzer0.comlinkfedilinkEnglisharrow-up0·10 days agoThis is the way to go
If someone gains access to your device they could alter or replace the OS without your notice, called an evil maid attack.
If the bootloader is locked, they’d have to have the phone OS booted and screen unlocked, then unlock the bootloader, which wipes the device.
If this is part of your threat model and you are using lineage on a device that supports
avb_custom_keythen you can sign it yourself before flashingThis is the way to go