Evolution-x-devices/device_xiaomi_sm6150-common
2
0
Fork 0
mirror of https://github.com/Evolution-X-Devices/device_xiaomi_sm6150-common synced 2026-01-27 12:07:36 +00:00
Code Issues Packages Projects Releases Wiki Activity

sm6150-common: rootdir: Restrict apps access to /proc/net/unix

Browse Source 
* Banking apps read the file /proc/net/unix to
  check system modifications, (in our case, custom rom)
  Let's avoid this by chmod it 440.

Test: Install a banking app as of Brazilian Nubank or PicPay, login.
Observed no side effects on any other proccess or apps

Change-Id: Iec7897faf487785bdc202b146a50d9ac5fd1ea85
Signed-off-by: Jeferson Oliveira <jroliveira.oliveira301@gmail.com>
Signed-off-by: therealmharc <therealmharc@gmail.com>
This commit is contained in:
Jeferson Oliveira
2023-08-16 19:36:59 +02:00
committed by therealmharc
parent 9a48c665f4
commit 8767b80032
1 changed files with 3 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
rootdir/etc/init.target.rc
View File

@@ -133,6 +133,9 @@ on property:sys.boot_completed=1
# Enable suspend to RAM
write /sys/power/mem_sleep "deep"
# Only owner can acces this node
chmod 440 /proc/net/unix
service vendor.pd_mapper /vendor/bin/pd-mapper
class core
user system