Security of string resources

Question

I was wondering what\'s the security of Android\'s resources folders (I\'m especially concerned with strings). I know, I know, it would be ridiculous to store a password in Stri

Answer 1

Easy on a rooted phone. Expect anyone can read your string resources shared preferences, etc. I just hooked up ADB, changed to /data/data/com.tumblr/shared_preferences and read my username and password in the clear.

You can also download and decompile the apk. If you need to keep it secret, encrypt it.