Android Question Security of downloaded files

Nickelgrass · Feb 8, 2022

Hello,
I have an app that can download multiple config files from a server in JSON format. They should be placed in File.DirInternal. My question is now how safe is this? The files are not encrypted (but do not contain any crutial data and it uses HTTPS). Could an attacker potetntially write some shell script instead of JASON data and somehow exectue it in the DirInternal?
Thanks

AnandGupta · Feb 8, 2022

Android does not allow an app to see other apps dirinternal

FrankDev · Feb 8, 2022

what if the system is rooted ?

AnandGupta · Feb 8, 2022

FrankDev said:
what if the system is rooted ?

If you are so much worried, then keep it encrypted.
But keep in mind there are hacker who can break hard encryption, it is their job.

Erel · Feb 8, 2022

Nickelgrass said:
Could an attacker potetntially write some shell script instead of JASON data and somehow exectue it in the DirInternal?

No. Even if your app will download compiled code, that code will never run.

Nickelgrass · Feb 8, 2022

Ok, thanks for the replies.

Android Question Security of downloaded files

Nickelgrass

Active Member

Erel

AnandGupta

Expert

FrankDev

Active Member

AnandGupta

Expert

Erel

B4X founder

Nickelgrass

Active Member

Similar Threads