Discussion
Loading...
@gargron It may be sideloading from the point of view of the OS supplier but is deliberate loading for me, the owner of the device.
@gargron
But if only *I* can choose what software you install and run on your device, you'll be so much *safer*!
@Gargron counter-point: run your software outside this rentseekers sandbox then. it’s absolutely a bad look for them if something happens to you while in their ecosystem (randsomware, malware, identity theft, etc.)
just because you own the physical memory registers doesn’t mean you’re ever making use of them without this rentseekers work and IP.
@Gargron apart from security and privacy.
@Gargron
Was its origin really meant to be pejorative or dismissive? I never interpreted it that way until now.
@Gargron reminds me of browser developers acting as authorities of who is trustworthy in PKI.
@Gargron
Especially as this newest move of Google is redundant: play protect is already built in all Google play services using phones.
Especially as this newest move of Google is redundant: play protect is already built in all Google play services using phones.
It already flashed and remains suspicious Appa and known malware from all sources.
So how exactly is locking down the signing keys for apps that are allowed to run at all and connecting them with government ID for developers helping security?
This purely an anticompetitive measure.
@Gargron
Sideloading as a word was coined in 1990
https://en.m.wikipedia.org/wiki/Sideloading#Historical
Sideloading as a word was coined in 1990
https://en.m.wikipedia.org/wiki/Sideloading#Historical
Please stop spreading lies to make people angry
@Gargron True words!
@Gargron True and I’m mad at Apple for making this possible. If they hadn’t set it up this way, no one else would be able to either
@Gargron I remember when the ability to run a wide variety of programs on a given piece of hardware was actually strong selling point. Like with my first computer, a Commodore 128 - you could run BASIC AND CP/M.
@Gargron as programmer i do not want to be registered for ability to do my job
@Gargron yes, but...
Ma and Pa _need_ some form of sandbox. Sandboxing should be optional. But some form of sandboxing should exist when non-tech people will use computers.
It's a dangerous world.
@Gargron its like Toyota or ford getting to dictate who is allowed to ride/drive your car, kinda nuts that we let it happen : /
@Gargron at this point I just want a fucking slab that lets me call from Linux.
I want postmarketOS on an AMD Ryzen with only 64bits (dump the 32, make a bloody atom ryzen you cowards), and a pure-64 Steam build. I want a slab that lets me play anime games if I bloody want to. And deploy a Linux fleet management solution. AND JUST LET ME DO MY THING.
@Gargron This list of replies is a hilarious string of people pretending that they’ve never looked at someone’s Windows machine *so completely fucked up with malware and viruses that the owner just blithely clicked on and installed* that the only solution was to nuke it from space and *buy a whole new computer*
For a good fifteen years the number one reason for tossing perfectly good hardware and buying a newer Win PC was virus/malware infestation. Might still be, I have no idea.
@Gargron Those who make these decisions have goals to make as much profit as possible. And in fact we get a regression.
Debian is the friendliest system for civil society.
Debian is the friendliest system for civil society.
@Gargron It is known that sideloading is a real risk for most of Android users*
*The bad guy comes to your home, enable ADB debug, you let him connect your phone, you give him your pin, you let him few moment to load a naughty apk (bring coffees) and VOILÀ ! 🔥
BTW I had today to clean a fully stock up to date Android (you even can install bank app on) because of a "legit" Play Store bloatware setup'd lots of other adware apks 👍
@Gargron And how the heck is anyone supposed to *build* software and test it on their device? FFS!
@Gargron IMO the only long-term solution to this is Android getting completely separated from Google. The "annoy users into submission" approach they take with Play Protect right now is already very much overstepping.
@Gargron As someone who developed operating systems for 50 years I know that there are reasonable cases; but, as none are relevant to Google’s latest behavior, I will not elaborate.
Since a mobile device is mostly a general purpose system you should be able to run any software that doesn’t violate laws and it’s not the OS vendor’s responsibility to enforce laws except those regulating the radios in the device.
@Gargron tell this to apple mfs
@Gargron There's also no reasonable case for an OS developer or app developer to have a say over whether I can have root access to my own device. Yet there are a whole shit-load of things I can't do on my phone because it is rooted.
@Gargron This is crazy because even on iPhones it's perfectly possible to install applications that are not approved by Apple in any way, by regular users with no privileges. It's a hassle (at least initially) and it has limitations, but the fact that you can and you won't be able to do the same on Android is crazy.
@Gargron I did not know of this word. It sounds a bit like the word ”jaywalking” which was invented by car companies to shame pedestrians into getting out of the way.
@Gargron
I agree: if someone buys a "computer" or a general purpose device, your point certainly holds.
But on the other side of a fine line I imagine (perhaps older) game consoles: when the original Nintendo came out, that company was not expected to help you run Atari software on their hardware.
They'd not preventing it - if you could figure out it, good on you. But Nintendo shouldn't be expected to make that work.
Not-supporting versus actively-preventing is the key difference for me.
@Gargron We should use the word “cartel” or “syndicate” for these official channels. Yes, the words used for drug dealers and Mafia clans.
Amen! And then there's my cars infotainment center that I can't even sideload!
Edit: I'm sure there are some absurdly smart people here who could tear apart the dash board and hard wire into the computers pinout to do it. But that's a little beyond my capabilities.
@Gargron "You purchased" is the key. The goal is not to buy, but to pay a fee and lose ownership of the device as well.
@Gargron has your Doctor asked you if they can Sideload Copilot into your visit yet?
@Gargron I'd argue there's a critical reason besides rent-seeking: security.
It's a genuine conflict between user rights and the need to protect the average person. Phones hold our banking apps, 2FA tokens, mics, cameras, and countless secrets.
When a sideloaded app steals data, the user doesn't say, "My sideloaded app failed." They say, "My Android/iPhone got hacked." The OS developer takes the blame.
Android's approach—allowing it, but behind a clear security warning—seems like a decent compromise in this difficult balancing act.
@Gargron There are. But barely in Consumer Business.
@Gargron on one side, how different is what Google is proposing from what Mozilla has been doing with side-loaded extensions, which they have to certificate even if you host them yourself?
on the other side, why did I see no one complaining about the Mozilla stance on this?
@Gargron I like Samsung's Auto Blocker. It runs my phone in pure mode with everything locked down and secure. But with flip of a switch and fingerprint scan, I can use Dev tools or sideload apps. Then flip it back and all of it still works. I'd be furious if this was the only way.
@Gargron but Eugen, developers will continue to be free to distribute their apps off of Google Play and sideloading remains unaffected!
(as long as the apps are signed by Google shhhhhhhh don't tell the regulators, the whole walled garden thing has been going so well for Apple)
@Gargron Hear Hear
@Gargron Capitalism. Solved.
@Gargron word. And yet a German court recently decided against ad blockers ... apparently they are a copyright violation, or some such non-sense. Maybe we should flow with it and charge them for the use of display surface?
@Gargron Google is actually brilliant here. Unlike Apple, they don't need to manufacture all the devices. They can just create a software walled garden on anything running their OS.
@Gargron
Thanks for the explanation as I had no idea what this mean,I think we need to remember when you buy devices they are NOT your devices, you buy hardware, and a license to run the OS that dictates how the people who write the OS want you to do things.
@Gargron I never thought of it that way.
@Gargron the whole case of why I've always had an Android phone: I'm a dev, if I want something I can write and install it.
I almost never do of course, but it's completely fucked up for Google to expect me to register an account with their service to receive their blessed key material in order to install my stupid side project on my own device
@Gargron Apple too. And MS...
I don't understand how companies managed to get people to accept this...
@Gargron Hills I will die on!
@Gargron Bold of you to assume that your phone is really "yours". I'm sure that by buying one Google owns your soul and that of your firstborn.
We need more competition in the Mobile OS market, and Google needs to be hit with a big enough antitrust suit to cripple them for a couple of decades.
@Gargron
Google is selling the sideloading-ban as a measure to enhance security.
But would this “security measure” also affect app stores that are already more secure than Google’s Play Store, like @fdroidorg ?
@Gargron "Sideloading" is the rentseeker word--so as "jailbreaking" and "custom firmware". But, nobody seems to care.
@Gargron Once you’ve bought the hardware, it’s yours, not a lease where the vendor still dictates your choices. Calling it sideloading makes it sound like something shady, when it’s just freedom to install what you want.
@Gargron the review process at Google can be a PITA, but for a good reason. Permissions to access more than an app really needs can be exploited for harvesting private information on a seemless update that most won't even notice. Side loaded apps downloaded from say APK mirror can have been tampered with using smali edits and you won't know. What Google should do is certified dev signing keys to trace and confirm if an APK is legit or not and coming from the actual dev, regardless of being side loaded.
@Gargron Imagine buying something from a local store instead of amazon was called "sideshopping" and there's a massive campaign to delegitimize buying items from stores not approved by amazon. Completely absurd. Why accept that exact ideology when it comes to installing software on your phone?
@Gargron Even the term "Side loading", makes it sound non-standard and risky. Which of course, it's not.
@mbpaz@mas.to
replied
·
activity timestamp
5 days ago
@Gargron casual mention that official DJI pilot apps are distributed from the DJI website and are not on Google Play.
@Gargron absolutely 💯!!
@Gargron
I agree in spirit, but man... Its only 50% rentseeking... My elderly parents and computer illiterate siblings and coworkers would get in trouble fast if they weren't constrained by 3 software platforms: mint software manager, android play, and MS whatchamacallit. I have pounded it into their heads: never download software candy from strangers. (I live in an anti-apple pocket of the world)
I agree in spirit, but man... Its only 50% rentseeking... My elderly parents and computer illiterate siblings and coworkers would get in trouble fast if they weren't constrained by 3 software platforms: mint software manager, android play, and MS whatchamacallit. I have pounded it into their heads: never download software candy from strangers. (I live in an anti-apple pocket of the world)
But then, i guess all three of those do let you do your own thing to varying degrees.
@Gargron I think this just became so acceptable and the inertia from the consumers just allowed both Apple and Google to do pretty much what they please..
@Gargron …i bet the EU is going to prevent this from happening, in Europe.
@Gargron I can't hear "sideload" without thinking about this classic: https://youtu.be/Sa0EtdtPi8w
@Gargron That word "your" is carrying more than its rated weight.
@Gargron also looking at you, car manufacturers 😐
bonfire.cafe
A space for Bonfire maintainers and contributors to communicate
Automatic federation enabled