Superuser on Android 4.3 gets sketchy

Superuser on Android 4.3 gets sketchy

According to a recent post by Koushik Dutta, aka – Koush, on Google+, there are some issues with the Superuser functionality in Android 4.3. According to Koush:

“Basically /system is mounted as nosuid to any zygote spawned process (ie, all Android apps). Root will still continue to work via adb shell, etc.

This is a pretty nasty change. It seems that SuperSU works around this by replacing install-recovery.sh to run a su daemon that pipes subsequent through it. Pretty hacky, but understandable why it was done this way.

Will need to look into how to do this in a less invasive fashion, if that is even possible. Of course, if building from source, this change can simply be reverted.”

What do you think of this change? Let us know in the comments.

About author

AndroidGuys
AndroidGuys 4641 posts

Founded on November 5, 2007, we've enjoyed bringing you the latest in Android news and rumors. Updated daily, we strive to deliver reviews, opinions, and updates on all things related to Android.

You might also like

News and Rumors

TVGuide.com Releases Android App

TVGuide.com has released their official TV listing and news application into the Android Market. If you are running Android 1.5 or higher then you will want to download this one

News and Rumors

Angry Birds Seasons adds 30 levels, ghost bricks, more with Haunted Hogs update

Rovio Mobile has released another 30 levels of fun, festive, pig smashing in their latest Angry Birds Seasons update, Haunted Hogs.  In addition to simply more levels of the popular

News and Rumors

Yandex.Shell goes free for global audience

Yandex.Shell, the home launcher with a 3D carousel interface, is now available for free to a global audience. Previously known as SPB Shell 3D, the developers were scooped up in

3 Comments

  1. Mickey
    July 27, 12:26 Reply

    What exactly does this mean? I am currently using SuperSU on my new Nexus 7 with stock 4.3 and it seems to be functioning fine. Is this an issue with only Koush’s Superuser?

    • Walkop
      July 27, 14:44 Reply

      It’s a security change with 4.3. Basically, it’s harder to attain proper root access at all; the way used now is just trying to circumvent the change, although it’s fairly hack-y in the process.

  2. insink71
    August 02, 21:01 Reply

    Basically Android 4.3 institutes selinux. If you’re not familiar with selinux, its basically something the NSA released back to the linux community to improve security/close security holes. I agree with this OP’s title. Now programs [or apks if you prefer] are effectively sandboxed and dan’t talk to one another. So chainfire [and probably koush] have started a su daemon.. then allowed apks to request permission(s) via IPC routing. Problem is, this effectively breaks the sandbox [and leaves ppl’s devices as insecure as pre-4.3]. I’m not against a su daemon and IPC routing, but I’d love it if that su damon managed permissions and only assigned what was needed; I’d love it if the master [true su process] was password protected at the least or better yet security keyed with a TPM system. These things though are complicated, and as long as one [or many] choose convenience over security, there will most likely be a hackable scenario. Just as safe with better security, just rewrite the selinux security policy 😉 it is open source; so, anyone can build a policy that gives them both some security and some convenience.

Leave a Reply