 This is take two on this video. I actually just did a 10 minute video on this and I just didn't feel like it came across good. I'm feeling a little out of it today. So let me let me get to the point and try to not go on too long about this. Comments on one of my previous videos where I'm talking about Android phones versus other phones and basically how if you can unlock an Android phone unlock the boot loader you pretty much have control over it and I also talked about how Android phones and phones in general in my opinion aren't very secure because they don't really ask you for passwords except for when you passcode to login but when it comes to doing stuff it asks you can this program do that and I think that's silly but let's let's read the some of the comment from this gentleman. He says how is it better to type a password to authorize an app to use your camera? He goes on to talk about how it just doesn't seem like secure to have to type a password over and over and over again and that is not what my point was. My point was okay there's certain systems when Windows Vista came out for example Windows Vista came out and every program you ran it's like this program is trying to run is that okay which is just stupid and annoying to ask because yeah it's okay because I ran it and also how is it secure have an okay button anyone can okay button that's not security. So part of my point is don't tell me or ask me hey this program is going to use the camera is that okay unless I'm going to type in some sort of password to approve it because an okay button is not security either go either either just let everything do everything or require me to give something permission don't go down the middle of the road that's not real security that's that's fake security to make you feel good but let's talk about permissions for a moment again on the phone there's really no permissions like on a desktop Linux system or a Unix system or some you know Unix like systems that are out there so on a desktop computer you may not realize this you're a user and you might have to do sudo or login as root to do some more advanced things but the things you can do and there's a lot of different things to do is because you're part of a group and you can look and see what groups your user is part of and so it's it's not it's silly to have a piece of software and say this software is allowed to do this and this software is allowed to do this in my opinion it's can this user do it can Chris is Chris allowed to do this and that might seem you know if you have just a computer at your house and it's your own personal computer and you're the only user that might seem a little silly but when you have a multi user system which Linux and Unix like and Unix based systems are their multi user systems you need to have these permissions and let me give you sometimes it might seem a little silly some of these permissions but when you really think about it there's reasons for them for example on most computers nowadays nowadays you don't set your clock your your clock goes to a server there's a client running in the background your machine it goes to a server it gets the time and updates your clock regularly making sure that it stays in sync with that server but I can tell you back you know 13 years ago when I first started using Linux a lot of the distros you go to the clock settings and you couldn't modify the time without logging in as root or pseudo or doing something like that the regular user couldn't change the clock I'm not sure how it is on modern day systems again I don't do it very often because my computer automatically syncs with a server why would you not be able to set the clock on your computer maybe I want to set it you know for a different time for whatever reason well from a business standpoint from a multi user standpoint that could be very detrimental to your your your business and I'm going to give you an example of a story it's an old story I might not get all the details exactly but general idea of it I think it was captain's app look him up captain's app he was a hacker back in the day back in I believe the 80s and back then he found connection to a server the server was owned by some phone company I don't remember what phone company or if they say in the story he got in because I believe because he just tried for the username guest and the password guest and he was logged in and he snooped around a little bit and supposedly the only thing he really did was change the clock of the server from a.m. to p.m. so every time it was let's say it was 6 p.m. he switched so it's at 6 a.m. or the other way around that a big deal yet it cost the the the phone provider lots and lots of money because it took them a couple of weeks to figure this out until bills started going out because you see back in the day there were things called peak hours when it came to phone usage and especially if you're making you know long-distance phone calls um if you called someone during the day it was more expensive than if you called in the middle of night in off peak hours well he just flipped the time around on the server so for weeks everyone who's making phone calls during the day was getting a discount on their calls and the people at night were getting charged too much but no one realized until the bills went out and that was just a big mess and all he did was change the clock from a.m. to p.m. so there's an example I don't know what group you need to be part of what the group is called on a Linux system but there is a group you need to be part of if you want to change the clock you also remember changing the clock it's actually changing settings on your motherboard because your motherboard keeps track of your time and so that's some access that you want to have secure and here's another example that a lot of you may have come across so I get a lot of people talking about how they go to use an android or not android uh an arduino and they um go to plug in their arduino they start the arduino ide and then they go to upload it and it says they don't have permission so a lot of people end up doing sudo to start the arduino interface which you shouldn't do that's not what you're supposed to do so when you hook your arduino to your usb port it's actually converting it from a usb to a serial port so it's a serial port connection to communicate through serial port connection you need to be part of the serial port group which is called i believe dial up either dial up or dial out uh and i'm assuming it's called that because back in the day you would hook up your modem to the serial port you would hook up a lot of devices to your serial port so communicate with other devices and other computers and get online back in the day you had to connect through the serial port and you have to think about the security aspect of that is now you're hooking up your machine to other devices that are communicating with it you don't want just any user being able to do that so that carries over it's a serial port connection when you hook up to because the arduino itself if you have the usb plug on it actually has a usb to serial adapter in it or you have one that doesn't and you're using a usb to serial adapter so all you have to do is add yourself to the dial up or dial out i think it's dial up group so you know you would sudo and then there's a command uh it's like change group or add group i don't even remember off the top of my head this user to dial up group and then yet that user has to log out and log back in and then you can start up the arduino interface and access the serial port it isn't giving the arduino interface access to serial port you as a user have permission to use that serial port so any program you start should be able to access that serial port so you see how that works it's it's not this software has permission it's because you should trust the software on your machine so if you don't trust your software machine that's that's your first problem but you should trust your software your software shouldn't be doing anything malicious so your next concern is the users on your machine and you want to restrict users when you have multiple users you may you know not want certain people changing certain settings on your machine so that was the first question that person asked and the second question comment he says i mentioned in the other video where you know a quick way to check and this is in the only way it's just a quick way a wool thumb for me is to find a project and i gave lineage os as an example which is a community-based arduino project go to a project like that look at their listed devices if your device is on that list or you're looking to buy a device and it's on that list that pretty much means that you can unlock the bootloader if you can unlock the bootloader of a device you own that device you can then root it with ease you can change the operating system um but if it's on that list in theory you should be able to unlock the bootloader otherwise it wouldn't be on that list it wouldn't be supported but his point is he says you know having a phone that has lineage os um at the time purchase doesn't really mean that it's always going to be supported he gave an example of the Motorola g4 uh and i have a Motorola g i can't this might be a Motorola g4 it might be a Motorola g2 i think it was it might have been a yeah it's one of those two anyway and i have lineage on that but i haven't updated in a while but yeah he's right lineage um no longer sports that and my point wasn't that find it on the list of the project and that project is always going to support it that was not my point at all my point was if it's not a project like that that means you can unlock the bootloader which means that you personally have control of that device doesn't mean that there's always going to be somebody there to help you or do it for you it'd be nice to think that lineage os is going to support all devices forever but it's just unrealistic but the truth is you can get the arduino or sorry the android source code because arduino android is free and open source software on there the gpl and apache license so you can compile arduino android yourself and put it on your phone you know and you have nowhere to put the drivers and stuff like that and have i ever done that no i thought about doing it once and i had download like 50 gigs worth of source code and i was like no no i'm not gonna bother with that so my point was not that there will always be people there to help you because they're won't uh it doesn't mean that you're going to want to do something but the point is if you can unlock the bootloader of your phone um you pretty much have control over that phone you can route it and update it it just might be a lot of work on your part but it's still that freedom of being able to do that uh so yeah it's not that it's going to be easy or that it's always going to be supported by other people but if you can unlock the bootloader and then you have somewhat control of your device you might have to learn and do some work though so anyway this video was just as long as last but i feel like maybe i did a little better i don't know anyway i thank you for watching and i hope that you have a great day