Hi!
Just a note about root in general and some about how it relates to GrapheneOS.
Root is, generally speaking, something that is highly insecure to have available to the user on any system. On something like Android, where you expose root access via user accessible UI, it _completely_ undermines the Android security model. It allows runtime modification of the OS which means that any app or service that bypasses the trivial UI prompt can now escalate itself to root privilege. I.e. you cannot partially grant godhood.
GrapheneOS makes many many security and privacy improvements that would be undermined at a fundamental level if you were to root it. And by their definition, it becomes no longer GrapheneOS but a fork you have created and is on you to maintain.
You mentioned liking to have control over your device. Think about control as the ability to be sure that when you grant or deny a permission or access to apps, etc on your device, it is guaranteed that those apps follow the rules you set. If you root, you lose that guarantee and that control.
skorp
npub1ux…xh7v5
2025-08-29 02:23:24 UTC
in reply to nevent1q…8vz5
Author Public Key
npub1ux78h5gvztwjgw0fmc8yfsh03m7t690ygnwndrfj628yt0hj3jyskxh7v5Seen on
wss://relay.momostr.pinkPublished at
2025-08-29 02:23:24 UTCEvent JSON
{
"id": "a5eab9c2e457529223b348ef9042805156f98a11f849c1197cfe8b7fbe5620e0",
"pubkey": "e1bc7bd10c12dd2439e9de0e44c2ef8efcbd15e444dd368d32d28e45bef28c89",
"created_at": 1756434204,
"kind": 1,
"tags": [
[
"e",
"93f4062ce2bef7c51f97c9195be5e27603becffd2895a9474337ecc8b325722c",
"",
"reply",
"a32ef24bb7a1ef3752e84e42c4a6701c1c1158af93001efea85695818d521d14"
],
[
"proxy",
"https://infosec.exchange/@skorp/115109672013327140",
"web"
],
[
"p",
"cb5e76ac63992751f547c35fcb38901dfec6ad3a2687f135db8098c0628ec38e"
],
[
"p",
"a32ef24bb7a1ef3752e84e42c4a6701c1c1158af93001efea85695818d521d14"
],
[
"e",
"0a11a43415d7f36baf6567f65e65573256f286cd791c00530a10b6c4d138d2e3",
"",
"root",
"a32ef24bb7a1ef3752e84e42c4a6701c1c1158af93001efea85695818d521d14"
],
[
"proxy",
"https://infosec.exchange/users/skorp/statuses/115109672013327140",
"activitypub"
],
[
"L",
"pink.momostr"
],
[
"l",
"pink.momostr.activitypub:https://infosec.exchange/users/skorp/statuses/115109672013327140",
"pink.momostr"
],
[
"-"
]
],
"content": "Hi! \n\nJust a note about root in general and some about how it relates to GrapheneOS.\n\nRoot is, generally speaking, something that is highly insecure to have available to the user on any system. On something like Android, where you expose root access via user accessible UI, it _completely_ undermines the Android security model. It allows runtime modification of the OS which means that any app or service that bypasses the trivial UI prompt can now escalate itself to root privilege. I.e. you cannot partially grant godhood. \n\nGrapheneOS makes many many security and privacy improvements that would be undermined at a fundamental level if you were to root it. And by their definition, it becomes no longer GrapheneOS but a fork you have created and is on you to maintain. \n\nYou mentioned liking to have control over your device. Think about control as the ability to be sure that when you grant or deny a permission or access to apps, etc on your device, it is guaranteed that those apps follow the rules you set. If you root, you lose that guarantee and that control.",
"sig": "a5dc811ca32f9a2a18290d72e682b2e97e48f6325f8e7fe711af0407154d0b1f5364f28630b8016511adbf24fbe088a7f0cde4db4503643d9715211cc58c39d8"
}