þēodrīċ, norþes ecghlāfordMar 18

LineageOS: what breaks? Banking. I have a fairly robust risk appetite, but rooting a device to install a closed-source fork of Magisk that hides itself well enough that I can spoof Play Integrity so my bank's app will run is a few steps too far in the wrong direction. So choose what you prefer: access to your money, or some amount of control over your digital leash.

I see no way forward after September that doesn't involve having two phones: one that mostly lives at home for the applications that absolutely won't run without maximum verification, and one for daily use. At that point, I might as well get a used iOS device for the banking stuff.

This fucking sucks.

Show threadMarjorieRMar 19
@theodric is it not possible to do most of your online banking through the banks website rather than through their app?
Show threadþēodrīċ, norþes ecghlāfordMar 19
@marjolica I wish. As smartphone penetration nears 100%, banks have increasingly moved to using a proprietary app on the phone to authenticate your access to the website, rather than issuing a discrete hardware 2FA token, to save (them) costs. Revolut doesn't even offer a hardware token at any price, and their website is barely even skeletal. App-first. All those apps have to pass audit. The banks who just take the easy path and use Play Integrity Verification will automatically fail you with anything modified.
Show threadMarjorieR
@theodric my banks (Bank of Scotland, part of Lloyds Banking Group and Santander) still use username/passwords and SMS 2FA for their websites.
Mar 19 at 5:08pmWeb