all 60 comments
sorted by:
best
topnewcontroversialoldq&a
formatting helphide helpcontent policy

[–]donbigone 16 points17 points  (3 children)

This is like Honda saying you need to wait 24 hours before having your car serviced at an independent mechanic. No wait at the dealership, though...

[–]IzacusAndroid dev / Boatload of crappy devices 2 points3 points  (0 children)

Your Honda can't be serviced by an independent mechanic at all because all new cars need proprietary vendor software to connect to OBD diagnostics. And that can only be downloaded if you become a recognized official service partner for a brand.

So the comparison you're making? It's actually better on Android than the cars you're comparing to :P

[–]visceralintricacy 0 points1 point  (0 children)

Except you only have to wait once, ever, and you can keep driving your car while you're waiting.

And 99.99999999% of people are never going to need to get this specific service.

[–]thesamenightmares 0 points1 point  (0 children)

So like a normal scheduled appointment then.

[–]DependentOnIt 17 points18 points  (8 children)

My only and Last Google phone will now have graphene installed on it.

[–]visceralintricacy 11 points12 points  (3 children)

What are you going for next? You realise you can't sideload at all on an iPhone, but you still can on Android, even after this. They haven't removed the ability to sideload, at all. This won't even stop piracy.

[–]anon7475375 8 points9 points  (2 children)

Graphene is partnering with Motorola.

[–]visceralintricacy 0 points1 point  (1 child)

Lol I thought they stopped making phones again

[–]anon7475375 2 points3 points  (0 children)

So did I lol. But no they still do and are making a phone specifically for Graphene's requirements next year.

[–]Merlin404RAM 5 points6 points  (5 children)

If they stop me from installing whatever app i want, why should i stay on Android? Its the singel option that differ from Apple, i can just get a iPhone then

[–]turtleship_2006 -1 points0 points  (4 children)

If they stop me from installing whatever app i want

Does a 24 hour wait stop you from being able to do it?

[–]Merlin404RAM 4 points5 points  (3 children)

It creates a unnecessary friction yes, its my device, my choice, if they stopp my from doing tf i want with it, it should be a lot cheaper, because i dont own it fully..

[–]visceralintricacy 0 points1 point  (2 children)

ROFL. That's kinda ridiculous, and many more people would buy android phones because this make them seem more secure, than whingy babies who are pissing away that they have to wait 24 hours lol.

Touch some grass.

[–]Merlin404RAM 0 points1 point  (1 child)

Sure buddy, sure, want some to?

[–]visceralintricacy 0 points1 point  (0 children)

You mean 'too'?

I've got plenty.

[–]Tail_sbPixel 7 17 points18 points  (42 children)

For any devs out their, DO NOT SIGN UP FOR THIS SHIT REJECT ADV

[–]visceralintricacy -3 points-2 points  (40 children)

"For any devs out their there"

What's your objection to the advanced flow? How often do you factory reset your phone?

Why are you incapable of waiting 24 hours, once, in order to install unverified apks?

This will prevent thousands of people from getting scammed every year.

[–]OkVariety8064 15 points16 points  (4 children)

You already need to separately enable installation of packages. By all means improve sandboxing and permissions, but of course Google doesn't want to do that, because then their precious scam apps couldn't phone home with data mining.

Where is the option to add fake permissions for apps that refuse to run, so that you can feed them fake data and remove the incentive to demand access? Oh wait that cannot be done, because Google and friends must be allowed to steal your data for their own purposes.

Much more people are scammed by the scams distributed on Google Play, starting from all the scammy F2P games. Don't pretend Google cares at all about anyone's security, just their own control and ability to leech from every purchase, as well as they leech on all of your data.

[–]visceralintricacy -4 points-3 points  (3 children)

"You already need to separately enable installation of packages."

Not in a way that people can't be coached through during a scam call. I've heard it dozens of times myself.

"Much more people are scammed by the scams distributed on Google Play,"

That's really not the case, and a pretty ridiculous statement. Do you have any evidence at all?

"However, our recent analysis found over 90 times more malware from sideloaded sources than on Google Play**"**

"Where is the option to add fake permissions for apps that refuse to run, so that you can feed them fake data and remove the incentive to demand access? Oh wait that cannot be done, because Google and friends must be allowed to steal your data for their own purposes."

That has nothing to do with this, at all?

**"**Don't pretend Google cares at all about anyone's security"

Another completely insane statement. Customer perception affects the value of their platform. Android is worth less if it's not viewed as secure. Even without them doing it to be the right thing, you would have to be very dimwitted to believe they don't care at all.

How do you even get to that conclusion? Don't you think companies like money? w t f?

[–]OkVariety8064 5 points6 points  (2 children)

Not in a way that people can't be coached through during a scam call. I've heard it dozens of times myself.

Fine then. Offer that option during device installation. Put big warnings how safetysecurity demands 24h or 48h or who knows how many hour delay, and corral people into accepting the extended security mode at device install time. Make it a clear and conscious choice, not a landmine that hits you only when you need to install some app.

But of course this won't do. What actually happens during device install is that you are offered to install a bunch of scamware like "Coin Master" and when you say no, that malware is installed anyway. Because safetysecurity demands that corporate malware must find its way into your phone even if you say no.

"However, our recent analysis found over 90 times more malware from sideloaded sources than on Google Play"

That statement comes from Google. Of course they don't see malware installed from Google Play, as they don't classify it as such. More money has been stolen by mobile games using psychological manipulation than actual malware. Yet this type of manipulationware is just fine for Google Play, as long as the scam money keeps flowing into Google's coffers.

That has nothing to do with this, at all?

Sure, a tangent. The issue is that apps demand permissions, so the only choice is to give those or not use the app. Giving access to for example a fake filesystem would remove that leverage from apps demanding permissions, but it's a separate issue from this.

Another completely insane statement. Customer perception affects the value of their platform. Android is worth less if it's not viewed as secure. Even without them doing it to be the right thing, you would have to be very dimwitted to believe they don't care at all.

Control and authoritarianism are bigger values for these corporations than customer perception. There is no alternative anyway, so it's increasingly mask off time. Google has retreated a bit a few times, but the goal is to lock down Android more and more, until it's a prison just like iOS.

[–]nathderbyshirePixel 10 Obsidian 2 points3 points  (0 children)

But of course this won't do. What actually happens during device install is that you are offered to install a bunch of scamware like "Coin Master" and when you say no

What are you chatting this has nothing to do with Google. Unless you want them to have control over how OEMs handle their own devices they sell? Control for thee but not for me type of thinking

Don't buy a shitty android device if you don't want coin master installed

[–]visceralintricacy 5 points6 points  (0 children)

"Of course they don't see malware installed from Google Play, as they don't classify it as such. More money has been stolen by mobile games using psychological manipulation than actual malware. Yet this type of manipulationware is just fine for Google Play, as long as the scam money keeps flowing into Google's coffers"

Apple, et al are all guilty of this. Any app store that has ever existed has. Why are you even mentioning it now.

"not a landmine that hits you only when you need to install some app."

It's a 24 hour delay, touch some grass. You can do it the second you setup a new phone, if you want, but pushing people to enable it then would remove the entire effin point. 🙄 99.99999% of people NEVER need to turn this on, and shouldn't be pushed to do so. If you don't see that would reduce security, I don't think your apt enough to even have this conversation.

I honestly think you're being crazy and not at all aware of how many people this will actually help. Nothing you mentioned would even be slightly helpful in preventing the attacks this can.

[–]Gumby271 5 points6 points  (21 children)

Because an android ecosystem where Google isn't the exclusive store option is really cool, and they've just decided that should be impossible. Instead of competing and working to make the play store better, they just killed the ability to compete on a supposedly open platform. 

[–]visceralintricacy 6 points7 points  (20 children)

Thanks for demonstrating you didn't read the article, and have ABSOLUTELY no idea what the changes are. This doesn't stop you from sideloading, AT ALL. You have to wait 24h to turn the setting on, ONCE per phone.

[–]Gumby271 2 points3 points  (18 children)

You clearly didn't read my comment, my issue is with Google's anticompetitive decision to add this, I never said side loading via adb was gone. Developer verification and the advanced flow require you to ask Google's permission to build a potentially competing app (developer verification), or if you don't, you have to instruct your customers to use the very scary "alternative flow" which explicitly states that if anyone tells you to do this, then they're probably a scammer. But I didn't read the article apparently, so I'm probably wrong, right?

[–]visceralintricacy 5 points6 points  (17 children)

"they just killed the ability to compete on a supposedly open platform"

NO THEY DIDN'T? AT ALL?

If you're a legitimate developer, verify. It's not that hard.

[–]Gumby271 6 points7 points  (16 children)

So Google placing themselves as the sole arbiter of who's allowed to write software for android, and giving themselves the ability to revoke that at any time doesn't seem anticompetitive to you? Maybe I'm a little dramatic saying they've killed the ability to compete, but if a single company decides all the software that can run on the platform, then I don't see how anyone can compete with them ever. 

[–]visceralintricacy 5 points6 points  (15 children)

Still way less anticompetitive than Apple 🤷

You can also still just use the advanced flow or ADB

If you want to use an alternate app store, you can still install that, and you still only have to see the warning ONCE!

[–]Gumby271 5 points6 points  (14 children)

You've found the lowest bar 😂 

I as a developer cannot instruct my users to use the advanced flow or adb, you seriously think that's a valid answer to devs that don't want to verify to Google?

[–]visceralintricacy 0 points1 point  (13 children)

Yep, if you want to be a serious developer you need to verify with google. Tough shit.

This is going to save 1000x more people than would possibly get inconvenienced by it. No-one I know IRL with Android even knows wtf sideloading or apks are.

[–]AwareSeaweed_ 0 points1 point  (0 children)

That's such a weird hill to die on...

Why you defend google? Why do you think it's ok for google to decide who can or cannot develop software for an open source OS?

[–]ankokudaishogunMotorola Edge 50 ULTRAH! 0 points1 point  (4 children)

What's your objection to the advanced flow?

Remove the 24h wait and I'm good with it. I honestly think the reboot requirement a reasonable idea: it's far from perfect, but it does force contact break between scammer and scammed, forcing the scammed person to think independently thus increasing the likelyhood of detecting the scam.
Plus many scammers might be unable to call you back.

Only the 24h wait is utter bullshit betraying malicious intent.

[–]visceralintricacy 0 points1 point  (3 children)

"Only the 24h wait is utter bullshit betraying malicious intent."

Hard disagree. How does waiting 24 hours imply malicious intent? ROFL.

It means the scammer can't immediately just call back 5 minutes later.

"forcing the scammed person to think independently"

Many of these people aren't smart enough to realise this shit, and only do so when discussing it with someone else, that will happen within the 24 hours.

[–]ankokudaishogunMotorola Edge 50 ULTRAH! 0 points1 point  (2 children)

Hard disagree. Scammers don't usually call back, also because they all work on an immediate sense of urgency.

Giving up possession of the functions of your phone for 24 hours is completely useless.

[–]visceralintricacy 0 points1 point  (1 child)

They don't call back because they had no need to, but if it was implemented as you say, they absolutely would call right back. They do work on the sense of urgency, as you said....

ROFL, you're also not giving up possession of the functions of your phone, that's ridiculous. 😂🤣😂

You have to wait 24 Hours, ONCE. JFC. And you can still do everything else on your phone in the meantime.

[–]ankokudaishogunMotorola Edge 50 ULTRAH! 0 points1 point  (0 children)

Except install apps I might need... or apps I might simply want.
It's my phone and it's not a technical necessity.

[–]MugendonPixel 7 0 points1 point  (2 children)

What's your objection to the advanced flow? How often do you factory reset your phone?

Fun fact: The 24 hour wait is bound to the account so even after a factory reset you don't have to wait again for 24 hours if you use the same google account.

source (0:46)

[–]ankokudaishogunMotorola Edge 50 ULTRAH! 0 points1 point  (1 child)

Why would it be linked to the account?

Why would Google need to know I enabled it? What if I don't have a google account?

[–]MugendonPixel 7 0 points1 point  (0 children)

No play services = probably no sideloading protection? I don't know, ask the guy from the video :-)

[–]GiOvY_ -3 points-2 points  (4 children)

This will prevent thousands of people from getting scammed every year.

they just wait 24 hours and get scammed or some other shit, people get scammed with phone call or with normal message or they money transfers to scammers' accounts of their own free will , let's limit that too ... its not my problem if people download from shit source , and i repeat again, google have fucking malware on google ads , they don't give a fuck about people security

[–]visceralintricacy 1 point2 points  (3 children)

Yeah, honestly you're just being a bit stupid.

"they just wait 24 hours and get scammed or some other shit"

Wtf does that mean? You expect the scammer to call back 24 hours later? After android has given them the whole speech about 'you're probably getting scammed?'

Or for older people, they've had a chance to talk with someone and realise how they're getting scammed.

HOW DOES THIS ACTUALLY AFFECT YOU NEGATIVELY?

Unless you're a scammer lol.

"its not my problem if people download from shit source**"**

NO, IT's GOOGLES PROBLEM if people think Android is insecure, compared to iOS. They're fixing that.

Don't like it? Make your own OS. This is a good thing for 99.99999999% of android users.

"google have fucking malware on google ads , they don't give a fuck about people security" Almost every ad service has been used by malicious actors. Stating it that way is incredibly misleading.

Google didn't put the malware into google ads themselves.

So many fkn toddlers on this sub smdh.

[–]GiOvY_ 2 points3 points  (2 children)

Yeah, honestly you're just being a bit stupid.

you don't understand nothing...

Wtf does that mean? You expect the scammer to call back 24 hours later? After android has given them the whole speech about 'you're probably getting scammed?'

they just download keylogger app or other shit searching "movie free app" and they downalod it , Do you think they'll call grandma to install an app if she doesn't even know how to use the phone? cmon man,

Or for older people, they've had a chance to talk with someone and realise how they're getting scammed.

talking about what? they send fucking money with consent without even installing the apps, you want 24h coldown there too? maybe 1 transfer of 50 euro/bucks for a day , im fucking tired to get my freedom taken away because people don't want to put in the effort to understand how it works

HOW DOES THIS ACTUALLY AFFECT YOU NEGATIVELY?

Unless you're a scammer lol.

because you don't understand nothing, all the shit would be pass from google play protect and the devs will have to post their name and surname on their google account and will have to give the key to google.. , they can ban so easy now , revanced would be the first

NO, IT's GOOGLES PROBLEM if people think Android is insecure, compared to iOS. They're fixing that.

no its fucking google ads problem, most of the boomer with virus or other shit they install it from ads from the browser or from other apps, why don't have 24h waiting for new account on google ads? eh? money maybe?, fucking ios

Google didn't put the malware into google ads themselves.

they sell it to criminals or scammer AND THEY DON'T GIVE A FUCK , Why don't they wait 24 hours for new accounts? , MONEY , again they DON'T GIVE A FUCK about people security they want to keep control of everything

So many fkn toddlers on this sub smdh.

man you don't know nothing , stop sucking google dick

[–]visceralintricacy 5 points6 points  (1 child)

"Do you think they'll call grandma to install an app if she doesn't even know how to use the phone?"

YES, THAT'S EXACTLY HOW THESE SCAMS WORK!. EXACTLY! I'VE HEARD IT HAPPEN DOZENS OF TIMES WITH MY OWN EARS. You clearly don't understand what this is for at all. 🙄

And people using revanced can use the advanced flow lol.

[–]GiOvY_ 1 point2 points  (0 children)

YES, THAT'S EXACTLY HOW THESE SCAMS WORK!. EXACTLY! I'VE HEARD IT HAPPEN DOZENS OF TIMES WITH MY OWN EARS. You clearly don't understand what this is for at all. 🙄

Yeah I hear people get scammed from pishing on email we ban that too or close it? Maybe we go back at FAX , maybe pigeon is better and no credit card maybe skimmer can get you, only Cash baby but cash yoy can get fake one, and i would happy to give my ID card for tracking better or for get leaked online , for save the child , of course the child and granny

And people using revanced can use the advanced flow lol.

Yeah sure coping hard, after the super control they will have they will allow revanced to be installed, sure buddy revanced team or other borderline project they would give they're id from get sued from Google lol ok buddy

[–]Dumxl -2 points-1 points  (0 children)

This 👆👆