I’ve written this blog post about moving from rooted Samsung to a Pixel running GrapheneOS. It’s a list of every root tool that I used, with a note on whether I’ll miss it. I wrote it as a checklist for myself initially, and decided to add links and more comments and publish it. Turns out I don’t really need root, which truly surprised me.
Do you have any apps or tools that hold you back from leaving root?
I had this moment years ago when I realised 95% of root tweaks I was using were available non-rooted anyway. The other 5% I learnt to live without and now struggle to remember what they even were.
Thank you for posting this. It’s interesting to see someone else who has walked similar paths, and not just see what you did, but read about how you felt about it and how you decided to do things and how you felt afterwards.
I also went from rooted Android (LG, Motorolla, OnePlus, etc. to GrapheneOS. (custom Windows Mobile Roms before that ~ not even Windows Phone, Windows Mobile…) I miss some of the customizability that custom Roms and root gave me, but surprisingly I don’t miss root that much.
I used root mainly to block ads and theme/modify visual elements. I still block ads, just network wide and not on an individual device level. I did use it for some other stuff and have tried a handful of the things on your list.
Similar to your root situation, something that caused me ongoing grief and difficulty is degoogling. Like you mention with freezing apps, I haven’t been able to fully cut out all the google stuff though over the course of the last year, I have gotten very close. I made a Lemmy post asking for help a while back and made significant progress with my remaining proprietary dependencies thanks to people’s kind suggestions. I hope to share with the community again the next time I redo an Android device.
Btw, I love the site: very Y2K; very small web.
It’s great to hear someone found it interesting :) I’ll be looking forward to your notes on degoogling. And I’m glad you like my website, I really love the current small web revival, even though I’m too young to have experienced the original small web times of the internet.
Based on GrapheneOS’s response in this thread, I understand that freezing apps might be completely unnecessary
Link in that part doesn’t work but is it really that bothersome to use Hail with Shizuku? You only need to re-enable shizuku after reboot. I don’t restart my phone too often so it is not a problem for me.
In my case I rooted my device once to try some fancy things. It was fun but then I never bothered with rooting again. Most things that I need can be done with Shizuku/ADB and/or app patches.
Thanks, I fixed the link, but the old version still seems to be cached. It should be https://discuss.grapheneos.org/d/1173-taskmanager-real-killing-of-processes/9 And yes, I restart my phone pretty often, and I think it also restarts automatically at night, so re-enabling Shizuku every time is something I don’t want to deal with. Another alternative I forgot to add to the post (and now I will) is this app: Force Stop Helper. It’s a simple list of apps with following features useful for my usecase:
- Clicking on an app takes you to it’s system settings page where you can enable/disable it with one click
- You can pin certain apps to the top
- Disabled apps are shown greyed out and marked as disabled
Using this is not as convinient as Hail, but perfectly fine for apps that I don’t need to freeze multiple times a day. Sort of a middle ground between convenience and security.
I don’t need root, but there is something about a company trying to tell me “no you can’t” that makes me really want to prove them wrong.
I’ve rooted every single one of my Android devices over the last 15 years. I have no plans to stop. I paid for the device, therefore it is mine, and I will do what I damn well please with it.
Ansolutely! I thought a lot about the pros and cons of GrapheneOS, and decided it was better for both my privacy and security, and also ease of life. I still felt bad about the loss of control though, and that’s why I wrote this list for myself. Now I don’t feel as some evil company forbids me from having root access, but that I voluntarily chose a system that protects my privacy to the point of taking some tools (that I didn’t really use that much) away from me to protect me agains exploits. It may be copium, but I’m happier :)
Valid, I can respect that choice. I prefer having full access available, but that’s just how I do.
And you can still root Graphene - they just don’t support it
But you have to compile it again on every update, right?
You don’t have to compile GrapheneOS from source thanks to avbroot which can take a release zip, patch it with root and sign it using a custom avb key. This lets you root while keeping the bootloader locked.
The rooted-graphene project automates this completely using GitHub actions. It even lets you do OTA updates like normal GrapheneOS.
This lets you root while keeping the bootloader locked.
Wait, what? That’s a pretty big deal!
It should be noted that while you can do this, it can increase your attack surface, defeating a lot of the point of Graphene. Before I started using Graphene, I was a huge fan of rooting and getting full control of my device, so I definitely understand the appeal. But I don’t think I would root Graphene myself, automated or otherwise.
I tried to live without root after my last reinstall. Finally I had to root to make AndroidAuto work, as I’m using microG instead of Google Play, and aa4mg requires root.
That’s a neat little tool! I’ve been looking for something like this
Main thing keeping me away is banking. Unless if I just carry two phones. Quite trendy these days.
That’s one of the biggest topics surrounding android customization, and I somehow completely dodged it. My bank app does not care about anything unless I try to hook it with LSPosed modules. No integrity checking, no root checking, no scanning for installed apps, nothing.
This must be a European problem perhaps? I can’t understand why this is the deal breaker for so many.
Banks have web sites. I don’t know why anyone would ever allow their financial institutions access to their phone’s plethora of sensors and the available telemetry on what they are doing on their mobile device 24/7. That links confirmed ID + “trusted platform” + biometrics + transactions + location + all the metadata every other app hoovers up in one convenient place. The very same people across the pond are worried about having to verify ID to look at porn, but are cool with their bank knowing the position of their accelerometer while they’re taking a dump.
In my local bank you can choose between 2 ways of 2fa: in their app or sms. Sms is less secure and slower, as you have to wait a bit for the sms to arrive. And you have to use 2fa for each online purchase, and login to the website. But my bank’s app works perfectly fine on rooted phones.
However Revolut stopped working, and I gave up reading about workarounds. I have an old unrooted broken phone always at home, I use it for that only. Revolut’s website is limited, you can only see your balance and disable your cards if they were stolen, nothing else, you have to use the app for everything.
Not sure what kind of apps you are into that know when you’re taking a shit but my banking apps have notification permissions and that is about it (camera when needed but yank it straight after). Most bank and broker websites are limited compared to the app. I have 8 finance related apps and it was constant musical chairs with which one will break after an update requiring hours of workaround research, if one is even available. Any version of Interactive Broker straight up refused to work on rooted device. You may personally be OK with giving up that functionality on your phone but not everyone is in the same boat as you.
My bank apps work on Graphene with the exploit protection compatibility mode enabled, even the ones that require Play Integreity API.
what about their websites?
For me the biggest thing is having a full backup. I don’t want app developers to be able to decide if data on my phone gets backed up or not, that is not their decision to make, it’s my phone, goddammit. And I want to back it up to where I want to. Also in a similar vein, having access to all data on my system. In the worst case scenario to troubleshoot things.
Also, there are so many useful tweaks where I just wonder, why the fuck is this not part of Android, or why do I need root to change this? Like being able to rotate my phone 180°. Or having a battery bar instead of a battery icon. Or showing more icons in the notification area. Or not having it close apps after I haven’t used them for a certain amount of time (I left that video open for a fucking reason, maybe because I wanted to finish watching it tomorrow or the day after).
Oh, and an ad blocker that is much better integrated into the system is pretty nice.
GrapheneOS has a full system backup, but I haven’t used it yet.
Having access to all data feels great, but I personally used it only once: to move history and open tabs fom one firefox fork (Mull) to another (IronFox). It came very handy tho.
I completely agree on the system tweaks part.
And for an adblocker, I wonder what do you use? It was a big reason to root for me, but I switched back to RethinkDNS (DNS blocking using the VPN slot) after a while. The reason was that I use pretty aggressive filters, and need to unbreak apps often. With ADAway, I needed to start logging, then do the problematic request again, look in the logs, allow the domain, and then reapply the filters to my system.
For blocking individual apps from accessing the Internet entirely, I couldn’t find a good solution, although I feel like it must be possible with root. GrapheneOS, on the other hand, allows you to toggle the internet permission like any other.
can you expand on the backup and possibly restore that worked for you? no solution I tried on a rooted lineageos worked, tried phone to similar phone and restore to same phone after wipe. tried adb, seedvault, neobackup, a couple others (anything with backup on fdroid) none worked remotely acceptable.
Neo Backup does a fairly good job for me, at least for backing up app data. It has some bugs every now and then, but it gets the job done. What problems did you have?
never once succeeded in any meaningful way that I’m confident I can lose the thing and restore it on another device.
I do a full backup. transfer the backup file to the other phone. initiate restore - errors, incomplete data, apps are never to rarely transferred, a total mess. phones aren’t the same but are similar (SDM845) and the same LOS 22.2 with microG and magisk.
