Remix.run Logo
Remix clone Hacker News
new | show | ask | jobsGithub
eloox 4 hours ago

That may be, but I think you are missing the point of the outrage: this solution is not good.

izacus 4 hours ago | parent [-]

So let's discuss a good solution instead of this boring repetitive outrage.

vanviegen 2 hours ago | parent | next [-]

Look at the attack vectors that are actually being used, and address them specifically, with minimally invasive measures.

If the problem is apps that allow remote control of your device, that people can be socially engineered into installing, put up barriers to gaining just that permissions. That approach would actually help motivate the problem (as scammers can now just use Google-approved apps for such things).

If the problem is ads that are pushing scams, Google could start with eradicating them from their own network. They seem to be the primary source. And, god forbid, perhaps even offer an ad blocker integrated in Android. (Yeah, I know.)

If the problem is scammers pretending to be a friend or family member in need of help though social apps, Google could force these apps to help users identify these cases (using local privacy friendly heuristics is course) for inclusion in the Play Store. And no, they wouldn't be able to demand the same from apps installed from elsewhere, but that should be firmly outside of their sphere of responsibility. And casual users would be extremely like to stick with the default app store anyhow.

Note that all three of these proposals provide a measure of safety from the problems they are addressing much larger than what Google is attempting by banning all non-Google-authorized applications.

Taterr 2 hours ago | parent [-]

I am quite genuinely curious what you think the best solution to prevent someone instructing a tech illiterate person over the phone to click through every permission warning about a malicious app they're installing is? No amount of scary menus will work. I feel like they only have 2 options, which is to limit some permissions without any exceptions (making their platform more closed), or make it harder to install apps as a whole.

Do you have a better idea?

elwebmaster 2 hours ago | parent | prev | next [-]

First we need to understand what the root cause of the problem really is then we can discuss solutions. All we've been told is that "Android users are getting scammed, we are going to make side loading impossible". There is no clear cause and effect established, no data shared with the public on what percent of scams were caused by sideloaded apps and how the scams actually operate for us to be able to accept the solution.

realusername an hour ago | parent [-]

> no data shared with the public on what percent of scams were caused by sideloaded apps and how the scams actually operate for us to be able to accept the solution.

They will not share the data because the data goes against their public stance.

Apks are already very annoying to install for your average user. The scams will target the web, the playstore and then as a very last resort, direct installs

TuringTest 3 hours ago | parent | prev [-]

The problem with that thought is that Goole isn't creating a good solution, it's creating this specific one.