this post was submitted on 15 Aug 2024
449 points (97.9% liked)

Technology

59308 readers
4786 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
[–] NuXCOM_90Percent@lemmy.zip 23 points 3 months ago (5 children)

The problem is that there are very good reasons to have specific authoritative app stores/package repositories. and it is a lot harder to have privileged and unprivileged accounts on a phone versus a computer.

But yeah. Something has to be done about that since it is the fundamental issue with mobile devices.

[–] Altomes@lemm.ee 20 points 3 months ago (3 children)

I mean as someone running Graphene OS it hasnt been that difficult having the playstore being a sandboxed non system app

[–] Brujones@lemmy.world 7 points 3 months ago

I honestly haven't noticed a difference.

[–] NuXCOM_90Percent@lemmy.zip 6 points 3 months ago

The issue is less the app store itself and more the applications in it. Because while I agree that basically everything should run sandboxed unless specifically given permission, the problem is more about sourcing the apps themselves.

Google and Apple are far from perfect but they do a good job of protecting big companies. So if you download "Chase bank app" with 12 million stars from "Chase bank company" (like, their actual account and not just me half assing it) then you can pretty much trust that is legit. Whereas downloading that on a random app store you bought so you can play pubg mobile locally or whatever nonsense people were doing? You can pretty much trust that it is not legit but most people won't understand that.

In a perfect world? I would love it if people got into a habit of checking hashes (which, is an inherently flawed approach but "works pretty well" if you aren't already compromised) and so forth. As it stands? There are very good reasons to just tell grandpa to not install random APKs he found on the internet.

Exactly. I don't even use the Play store on GrapheneOS, I use Aurora to get apps from Google Play, and F-Droid for everything else. I don't even have Google Play services running at all on my main profile, it only runs on my "work" profile because I need an app that needs it.

[–] NeoNachtwaechter@lemmy.world 9 points 3 months ago

it is a lot harder to have privileged and unprivileged accounts on a phone versus a computer.

True. But it shouldn't be.

[–] BlameTheAntifa@lemmy.world 9 points 3 months ago

Almost like those systems were designed to be monopolistic and anti-competitive from the very beginning…

[–] sugar_in_your_tea@sh.itjust.works 4 points 3 months ago (1 children)

Is it though? I have three profiles on my phone:

  1. main - all my normal apps; no Google Play whatsoever
  2. work - work apps; Google Play services running
  3. google - Google stuff (like Google Maps and whatnot); Google Play services running

This is on GrapheneOS, and they basically just ship AOSP with some patches on top.

[–] NuXCOM_90Percent@lemmy.zip 2 points 3 months ago* (last edited 3 months ago) (1 children)

Congrats. You just volunteered to teach all the boomers (and the zoomers who can't do anything that isn't google docs) how to set all that up and maintain it

May Erastil have mercy on your soul

Eh, it's not too bad:

  1. Settings
  2. System
  3. Multiple Users -> Allow
  4. Add User

Then to switch, there will be a new icon next to the Settings icon when you swipe down. Tap that and select the profile you want.

I use GrapheneOS, which ships w/o Google Play by default (installation process is a little trickier, but still easy), but most phones won't have an option to uninstall Google Play since it's a default system app. But if have managed to install GrapheneOS, setting up a profile to quarantine your Google Play apps is pretty easy.