CyanogenMod is mostly due to personal preference with three anecdotal security points.
1) It's stable. I've worked with several mods that are better, but don't sustain with regard to updates. I prefer to stay with one thing than bounce from ROM to ROM as I track Android flaws. 2) It's not based on Sense. I have no objection to Sense ROMs in use, but I have to think that adding a potentially buggy layer onto a known-buggy layer isn't going to improve things much. 3) Back when Android had that exploited browser vuln, CyangogenMod was one of the first to release a fix for it. It's a single data point, sure, but it's one that I liked. -Josh More On Mon, Aug 27, 2012 at 11:24 PM, Michael D. Wood <[email protected]> wrote: > Why cyanogenmod? Is it just a personal preference? Just trying to > understand if cyanogenmod is more secure opposed to other roms that the apps > you listed will run on any AOSP rom. > > C.L., > Install RomManager - Cyanogenmod repos are in there to keep it upgraded. > > Check the roms out at http://xda-developers.com > -- > Michael D. Wood > ITSecurityPros.org > www.itsecuritypros.org > > ----- Reply message ----- > From: "C. L. Martinez" <[email protected]> > To: "PaulDotCom Security Weekly Mailing List" > <[email protected]> > Subject: [Pauldotcom] Questions and suggestions about security on Android > devices > Date: Mon, Aug 27, 2012 2:19 am > > > On Sun, Aug 26, 2012 at 5:07 PM, Josh More <[email protected]> wrote: >> My rules of thumb are: >> >> 1) If you are good at Operations, root the device, install CyanogenMod >> + DroidWall + AdAway + Lookout + Sophos. Check for updates for both >> Cyanogen and Play regularly. Install only the apps you need and only >> from trusted sources. Try not to do anything risky with it. >> >> 2) If you suck at Operations, go with Lookout and Sophos and hope that >> your carrier will do a better job of updates and secure configuration >> than you would. Expect to get popped eventually. >> >> -Josh More >> > > Thanks Josh ... But Cyanogenmod, is it easily upgradeable? Looking at > their website I only see tutorials about clean installs ... > _______________________________________________ > Pauldotcom mailing list > [email protected] > http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom > Main Web Site: http://pauldotcom.com > > _______________________________________________ > Pauldotcom mailing list > [email protected] > http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom > Main Web Site: http://pauldotcom.com _______________________________________________ Pauldotcom mailing list [email protected] http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom Main Web Site: http://pauldotcom.com
