I see this as a good thing. The first step towards CyanogenMod being shipped with actual phones is fixing up some of the biggest handicaps it currently has.<p>It's just like the unknown sources setting. I could reliably be more confident when installing CM onto friends & family's phones with the assurance that they can't instantly screw something up.
One thing I don't like about Android in general is how many permissions a lot of apps get. I can't tell what exactly they're using them for and whether that "full network access" means an app (with root access) can upload all my contacts or files to some remote server.<p>On Windows and Linux I always have a firewall (and anti-malware software) installed and set to manual/strict mode, so I know what app is trying to access what remote IP. Can't do that on Android, so I don't keep any information I wouldn't want to fall into wrong hands (no usernames, passwords, photos, etc.)...<p>Disabling root by default is very reasonable, especially for a ROM that is used by thousands of "normal users"...
Honest question: How many Cyanogenmod users <i>don't</i> want their device to be rooted?<p>Though my friends are anything but representative, I don't know a single one, and I can't imagine anyone who would go through the process of rooting/unlocking/flashing, and then specifically want an <i>unrooted</i> device in the end.
Well it seems like a great idea, yes, but in all reality it may cause some serious problems. What exactly does <i>easily</i> enable root mean? Will it essentially be a one click root built into the OS? Personally, for my Nexus, it takes about 2 minutes to root. All that has to be done is open the command pront/terminal and type a few words. I actually just had to reroot after flashing the 4.0.4 update.zip. I'm actually not too sure this is a great idea.<p><i>"Many of you may not give it a second glance, but among all the furor and concern about permissions requested by market apps and privacy, all Custom ROMs (CyanogenMod included) ship with one major security risk — root!"</i><p>Most anyone who is willing to root and ROM will be savvy enough to know how to avoid security issues and things like malware in non-market apps. While I believe this is a good idea I am not sure how easily it can be implemented.<p>Knowing the CM team is pretty good gives me high hopes about this, but I am just curious how they plan on allowing everyone to root easily from within the OS.<p>Edit: Actually what they are doing makes sense. You don't run Linux as root all day. I am just curious as to how they will easily allow root to be turned on and off.
This still doesn't sound the most secure. I think it would be better to have a multi-layer config, where the first layer is something like "Enable Enable Enable Root?", which enables the second layer dialog "Enable Enable Root?", which enables "Enable Root?" dialog, which then enables the SuperUser.apk "Enable Root for this application". You can't be too secure.<p>I do agree that getting rid of the ever present root shell on the USB port is a good idea, but asking if you'd like to be asked questions? Coating a knife with liquid rubber doesn't get you a safer knife.