Google has news on what you will need to do for still being able to sideload apps:
-
@itsFriday @grote How so? It's the one that's getting in your way the most. Want to use this app today? Screw you. Why do we cater to idiots getting scammed more than letting people own the devices we bought with our own money?
@CalcProgrammer1 @itsFriday @grote its wrong to assume this is about stopping scams or will do anything to stop scammers-
scammers will.. simply .. just ask you to enter your details into a web application, instead of a 'native' app, and nothing changes
the purpose is control, the purpose is survailence, the purpose is to deny certain people the 'privledge' of making android apps, the purpose is to send armed forces to your house to socially/actually murder you if you make an app they dont approve of
the purpose is not to 'stop scammers'
-
@itsFriday @grote How so? It's the one that's getting in your way the most. Want to use this app today? Screw you. Why do we cater to idiots getting scammed more than letting people own the devices we bought with our own money?
@CalcProgrammer1 @grote For the scamer scenario, 1 day of patience I see as a workimg precaution. But why do I need to go through hidden steps to get there? Why is there not a question at the very first startup "Would you like to add F-Droid, Aurora, ... and/or the option to install any apk on your phone? Tick the ones you like and it is installed automatically."
-
@lumi I agree with a lot of what you wrote but would differ on some things, are you interested in back-and-forth here?
@ryanprior sure
-
@oatrapado @grote Europeans might come to the rescue in the coming years with creations like FairPhone and Jolla Phone. Maybe if the donations start flooding in, Pine64 might be convinced to put more effort into the PinePhone.
@Frenezul0_o @grote those chinese/european phones are just obsolete and overprized, pinephone another archeological piece at a high price.
-
You're absolutely right. However I think you misinterpreted my initial post. That was to be seen more of the lines of "if life gives you lemons make lemonade" (and kinda ironically).
I just wanted to make readers think about all of this and the implications
-
@TimWardCam That's not my main concern, but I think there's exceptions for device management solutions. Also they could just register with Google if needed.
@grote @TimWardCam Google has a whole "Managed Google Play" as part of Enterprise Android support: https://support.google.com/work/android/answer/9495634?hl=en
I don't think companies doing such things will be fussed by this at all. A company using Android devices but not using enterprise management would already be in a pretty self-inflicted state of badness.
Edit: https://developer.android.com/developer-verification/guides/faq explicitly says this doesn't affect enterprise apps. -
@CalcProgrammer1 @itsFriday @grote its wrong to assume this is about stopping scams or will do anything to stop scammers-
scammers will.. simply .. just ask you to enter your details into a web application, instead of a 'native' app, and nothing changes
the purpose is control, the purpose is survailence, the purpose is to deny certain people the 'privledge' of making android apps, the purpose is to send armed forces to your house to socially/actually murder you if you make an app they dont approve of
the purpose is not to 'stop scammers'
@Li @CalcProgrammer1 @grote Yes, that's why I think the 24h are the only reasonable steps.
-
-
Google has news on what you will need to do for still being able to sideload apps:
* enable developer options
* confirm that you are not tricked
* restart phone and re-authenticate
* wait one day
* confirm with biometrics that you know what you are doing
* decide if you only want unrestricted installs for 1 week or forever
* confirm that you accept the risks
* enjoy the few apps that still have developers motivated to develop for a user-base willing to put up with this@grote the point about requiring biometrics is incorrect. The blog post states that you need to confirm with "biometric authentication [...] or device PIN."
-
Google has news on what you will need to do for still being able to sideload apps:
* enable developer options
* confirm that you are not tricked
* restart phone and re-authenticate
* wait one day
* confirm with biometrics that you know what you are doing
* decide if you only want unrestricted installs for 1 week or forever
* confirm that you accept the risks
* enjoy the few apps that still have developers motivated to develop for a user-base willing to put up with this@grote here, "sideloading" means "installing apps from developers who have not submitted a drop of blood to Google"
the drop of blood thing is an exaggeration; we don't yet know if something more, like an entire finger, will be required
-
Google has news on what you will need to do for still being able to sideload apps:
* enable developer options
* confirm that you are not tricked
* restart phone and re-authenticate
* wait one day
* confirm with biometrics that you know what you are doing
* decide if you only want unrestricted installs for 1 week or forever
* confirm that you accept the risks
* enjoy the few apps that still have developers motivated to develop for a user-base willing to put up with this@grote Judging by the attached image, biometrics are not mandatory, device PIN should work. Very bad, but mandatory biometrics is what would make it terrible, at least for me.
-
@grote @TimWardCam Google has a whole "Managed Google Play" as part of Enterprise Android support: https://support.google.com/work/android/answer/9495634?hl=en
I don't think companies doing such things will be fussed by this at all. A company using Android devices but not using enterprise management would already be in a pretty self-inflicted state of badness.
Edit: https://developer.android.com/developer-verification/guides/faq explicitly says this doesn't affect enterprise apps.@tedmielczarek @grote I'm thinking of a small company with a dozen or so developers who have one Android app that talks to their back end, for use by a few dozen installation crews. Anything with "enterprise" in its name would be *vastly* too expensive to be of any use to a company like that.
-
-
Google has news on what you will need to do for still being able to sideload apps:
* enable developer options
* confirm that you are not tricked
* restart phone and re-authenticate
* wait one day
* confirm with biometrics that you know what you are doing
* decide if you only want unrestricted installs for 1 week or forever
* confirm that you accept the risks
* enjoy the few apps that still have developers motivated to develop for a user-base willing to put up with thisFirst point is:
* be evil -
Google has news on what you will need to do for still being able to sideload apps:
* enable developer options
* confirm that you are not tricked
* restart phone and re-authenticate
* wait one day
* confirm with biometrics that you know what you are doing
* decide if you only want unrestricted installs for 1 week or forever
* confirm that you accept the risks
* enjoy the few apps that still have developers motivated to develop for a user-base willing to put up with this@grote Google always finds new ways to give me a reason to say fuck google.
-
@itsFriday @grote How so? It's the one that's getting in your way the most. Want to use this app today? Screw you. Why do we cater to idiots getting scammed more than letting people own the devices we bought with our own money?
@CalcProgrammer1 @itsFriday @grote
And it's not even about malware. Plenty in the Playstore. It's about Google deciding they are in control of your phone. You only rented it. -
Google has news on what you will need to do for still being able to sideload apps:
* enable developer options
* confirm that you are not tricked
* restart phone and re-authenticate
* wait one day
* confirm with biometrics that you know what you are doing
* decide if you only want unrestricted installs for 1 week or forever
* confirm that you accept the risks
* enjoy the few apps that still have developers motivated to develop for a user-base willing to put up with this"scammers often pressure victims into disabling security measures"
gee Google, i wonder where they might find malware that would bypass those "security measures" without any pressure at all??? oh well not fucking important i guess.
-
Google has news on what you will need to do for still being able to sideload apps:
* enable developer options
* confirm that you are not tricked
* restart phone and re-authenticate
* wait one day
* confirm with biometrics that you know what you are doing
* decide if you only want unrestricted installs for 1 week or forever
* confirm that you accept the risks
* enjoy the few apps that still have developers motivated to develop for a user-base willing to put up with this@grote buried in the FAQ, but note that they are saying that installation via ADB will not be affected by these changes: https://developer.android.com/developer-verification/guides/faq
So these sideloading changes are to cover "download an APK file from the internet and install it without using a secondary device". -
@grote remember, kids: "sideloading" is just "installing software that isn't on the app store." the corpos are just calling it "sideloading" because it sounds shadier.
-
Google has news on what you will need to do for still being able to sideload apps:
* enable developer options
* confirm that you are not tricked
* restart phone and re-authenticate
* wait one day
* confirm with biometrics that you know what you are doing
* decide if you only want unrestricted installs for 1 week or forever
* confirm that you accept the risks
* enjoy the few apps that still have developers motivated to develop for a user-base willing to put up with this@grote Nope.
