Future versions of CyanogenMod won't enable root by default

[nsane.forums]

Many technically-inclined Android users "root" their devices, a process that allows them to circumvent some of the operating system's built-in restrictions by running at an elevated superuser privilege level. Although rooting opens up sophisticated capabilities that wouldn't otherwise be available, it also exposes the user to some risks. It potentially makes it easier for certain kinds of malicious software to circumvent the platform's native security features.

The developers behind CyanogenMod, a popular third-party Android system ROM, have decided they are no longer comfortable enabling root access by default in their ROM. Future versions of CyanogenMod, starting with version 9, will not enable root by default. It will still be available as an option for users who want root access.

The developers elaborated on their decision in a blog post: "On a default CyanogenMod installation, root usage will have to be explicitly enabled by the user. This means that the user is fully aware that any application that uses root may perform actions that could compromise security, stability and data integrity. Once enabled, the process mirrors that of the current process, apps that request root will be flagged by the SuperUser.apk and the user will have to grant selective access."

The CyanogenMod is arguably the most well-known custom Android ROM. It's believed to be in use on approximately 1.5 million active devices. It is based on Google's Android Open Source Project (AOSP), but includes a number of advanced features, improvements, and optimizations that have been contributed by its developer community.

View: Original Article