Google appears to be working on tightening security in future versions of Android by essentially blocking write access to the /system partition… even if you have a rooted phone. You’ll still be able to write to the partition by rebooting into a custom recovery, but it means that you might need to reboot your device to install or run certain root-only apps in the future.
Developer Chainfire discovered the upcoming changes in some recent commits to the Android Open Source Project code.
It’s possible that the changes are just experimental and won’t ever make it into an official Android release. But the fact that they’ve been merged into the master branch of the code suggests that Google’s serious about making the change.
The good news is that this will make it much more difficult for malware to take over your device by making system-level changes that cannot be undone with a factory reset. The bad news is that root users who use apps like Titanium Backup or Root Explorer to manually make changes to the system partition will have to reboot their devices to perform those actions, and app developers who want to give users one-click tools that require /system access will have to retool their apps to work with custom recoveries so that you can simply reboot your device to apply changes.
Even most root apps don’t usually require access to the partition once they’re installed, so most folks with rooted phones will probably only notice the inconvenience when installing certain apps. And of course most Android users don’t have rooted devices, so they already lack the ability to write to /system.
On the other hand, it’s likely that we’ll see custom kernels and custom ROMs eventually which will circumvent Google’s security measures for folks who are willing to trade a little security for convenience.
via Android Police and xda-developers
Soon Firefox OS should be ready for prime time anyway
Dumb idea after doing this they might as well close the source for android that worked very well for Android 3.0
You know, most part of it is already closed, AOSP is only the bare essentials, many apps won’t work without Google services which are closed. I don’t really like this change either, but if it helps to keep malware at bay, I’m willing to reboot to make that one symlink I need in every blue moon.