<Thread> Hi @ARCHOS
! Let's discuss a backdoor found in the EngineerMode app on the @ARCHOS 40 Power phonepic.twitter.com/RY5Yxw02zL
You can add location information to your Tweets, such as your city or precise location, from the web and via third-party applications. You always have the option to delete your Tweet location history. Learn more
This item is set to "rooted" if the method get_rootflag returns 1. This method is a native method defined in the jni_engineermode lib.pic.twitter.com/wcTpspt2W5
In the strings of libjni_engineermode.so we can find: - /data/misc/rootrecorder - [root_recorder] magic=%d\n - [root_recorder] rootflag=%d\n - [root_recorder] sprd magic verify pass.\n - [root_recorder] sprd magic verify failed.\npic.twitter.com/YlrgCMYykn
By disassembling the method get_rootflag we can see the following flow: 1) Open and read /data/misc/rootrecorder 2) Compare the value with 'ROOT' 3) Returns 1 if equals, otherwise 0pic.twitter.com/IhsyqA9g7R
As I didn't root my device yet, I can't write to /data/misc/rootrecorder
. Moreover, I didn't find any use of this backdoor in the limited part of the firmware I have. I will continue to dig 
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.