Oddbean new post about | logout
Catalin Cimpanu | 1 years ago (raw) | export | reply | flag +1 
 Android 14 will block all changes to system certificates, even changes from root.

This happens because Google moved the management of a device's certificate root store into a separate component that can be updated via the Play Store.

The new mechanism prevents researchers from adding certificates to their devices for security and research work that requires intercepting HTTPS traffic.

"If you want to debug your own HTTPS traffic, you'll need to stick to Android 13."

https://httptoolkit.com/blog/android-14-breaks-system-certificate-installation/
5aeb250b | 1 years ago (raw) | root | parent | reply | flag 
 @14abadff some of us use our own CAs and certs to talk to our own server infrastructure. This is ridiculous.
faker | 1 years ago (raw) | root | parent | reply | flag 
 @14abadff Pentesting issues aside, how will this work in corporate environments that want their own CA trusted?
That's nuts!
Comunidad bahá´í de Mexicali | 1 years ago (raw) | root | parent | reply | flag 
 @14abadff That's whey we don't use Android but the other OS...  Although it says Android 11.  But we're using the Lineage OS.