262
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
this post was submitted on 15 Jul 2026
262 points (100.0% liked)
Open Source
47928 readers
255 users here now
All about open source! Feel free to ask questions, and share news, and interesting stuff!
Useful Links
- Open Source Initiative
- Free Software Foundation
- Electronic Frontier Foundation
- Software Freedom Conservancy
- It's FOSS
- Android FOSS Apps Megathread
Rules
- Posts must be relevant to the open source ideology
- No NSFW content
- No hate speech, bigotry, etc
Related Communities
- !libre_culture@lemmy.ml
- !libre_software@lemmy.ml
- !libre_hardware@lemmy.ml
- !linux@lemmy.ml
- !technology@lemmy.ml
Community icon from opensource.org, but we are not affiliated with them.
founded 7 years ago
MODERATORS
Yes I am.
I spend a long time of my career in IT Sec.
80% of android users will freely install whatever APK from wherever.
Info stealer infected fake apps are a massive risk to a huge part of the user base.
Yes, it will get a little bit more complicated to sideload. But nobody is prevented from it.
And everybody that is against user protection (and yes, this is fucking user protection, just not for you) is invited next Christmas to de-worm the android devices of my family without wiping them.
EDIT for all those that only read the memes. Sideloading will NOT be disabled. You have to jump though extra hoops.
Yes, the way they do this is not even testable yet and we can argue over details.
I support the principal idea, as someone who had to live with the fallout of people who installed "it support apps" because someone told them to
Most scam apps are in the Google Play Store btw
maybe because it was to easy to upload to the googleplay store. Maybe there should be some kind of verification of the person uploading. How could this be accomplished?
Joking aside I don't think side loading should be encoumbered like this, but for the official app store it makes sense.
Spoken like a true Microsoft and Google agent.
so the real-world id requirement is also user protection? play store is basically an info stealer at this point.
I think you should invite people to join you on not one, but two Christmasses to compare before and after. I'm sure they won't magically fix things this time, at best it would be a little setback not changing much in the end. What it would do is directly giving Google even more power while hurting open source community, alternative appstores and OSes.
I should care because? Do they care about me not wanting google shoved in every aspect of my life?
so your family's devices get their apps from outside the play store?
people are effectivly prevented from sideloading. not "just a little more complicated"
of course nana uses adb exclusively to install apps on her smartphone, after all this is a totally real story about user protection right?
A ridiculous and absurd lie. 90% have zero clue what one is, let alone go into the developer settings (there are one, maybe two settings you have to enable) to change the settings to even make that possible. Why are you lying about this? It's weird.
I am lying? OK, so is:
I have over 2 decades of background in hardcore IT-Sec, i know my stuff. And you? What is your qualification, where are your sources?
I wonder if a statement like this ever once convinced anyone of anything. My guess would be it nearly always has the opposite effect. You basically told me that whatever I know doesn't matter because "trust me bro". For all I know, you're the worst source ever for literally every topic. Your articles didn't back you up. Why do people bother with shit like this? "I'm an expert so what I say goes" is idiotic and in no way addresses the common sense point I was making: the average person definitely doesn't know or install apks because of fucking course they don't. If you said 80% would if scammed, that's at least plausible but I'm not even sure I could believe that. The well is poisoned now in any case so you're not convincing anyone here after this... Whatever masturbatory shit this was. Or just shilling for a corporation? Who the fuck knows
He just using the old "Argument from Authority" logical fallacy. I've worked with tons of people, even those that did in fact "know their stuff", that thought it was perfectly valid to dismiss others because of their experience being more extensive than others. Ironically, after I'd prove these people wrong in serious matters (usually several times), I somehow got added to the nebulous authority whitelist in their head. I don't want to just be believed became I'm dammit, believe me when I'm correct and provide evidence!
Given that your first article says nothing about 80% I'm not continuing to click your links.
I was being generous when I said 90%.
Source: I have ever spoken to another human.
Alternate stores like Accrescent and FDroid are blocked by this policy, and Google refuses to implement any mechanism for authorising at the store level either. Store level authorization is an obvious alternative to verification of each individual app.
Both Accescent and FDroid have some oversight processes in place, and do not contain "random" APKs. Googles actions show the real motive, which is control... not security.
For someone who possibly considers themselves better informed than others, you're seem to be missing the fact that Google's plan had no option for sideloading unverified apps until a sizeable outcry from us (a lot of professional developers and users). Unverified app installation was only allowed (via new hoops) after this action. For now. The fact that Google's plan did not have an option for installing unverified apps shows us what they really want. Therefore it won't be surprising if they make it increasingly difficult or impossible in the future.
At least make it a toggle, like you need to request access for your account for your phone.
Kneecapping everyone because idiots exist is idiotic.
So with your career in ITSec, you're aware of the massive amount of malware found in the play store? That it has historically been the main distribution vector for malware?
You are downplaying the hoops here by a lot. To install software on my own phone.
Stop calling installing software "side loading". Its nonsense.