This is a most excellent place for technology news and articles.
remember when people were actually excited about new android releases because they were weird and consumer friendly?
I use GrapheneOS (Lineage OS and CyanogenMod before that) and I'm perfectly happy witn alternative software installation sources.
Perfect time for the Chinese to setup a shell company in Mexico that sells smartphones & devices with AOSP-android-based OS to the US. It'll sell like hot cakes.
It’ll sell like hot cakes.
Nope... lot of apps won't run.
Nobody is buying a phone without Google Play Certification.
Not to mention, some carriers like ATT have a weird whitelist thing.
Also, there might be compatibility issues with provisioning the SIM, since I just had an issue with LineageOS breaking data connection, but restoring factory rom fixes it, then I flash Lineage again and it broke again, so yeah... I expect similar issues with a "Non- Google Play Certified" device.
Biggest thing is: Netflix Widewine defaults back to L3 instead of L1 requited for HD stuff
Before you say "just pirate", most people don't know how to do that. Also somethings can't even get pirated since its so niche.
Weird that they want to do all the verification themselves and not just allow certificate signing using verified CAs. Oh well it's not weird because we all know Google does this to fight back against third party stores and to get developers back to their shitty one and of course to better track them.
I'm guessing what you're suggesting is that Google's proposal is the same as requiring all packages be signed and accompanied by an Extended Validation or Oragnisation Validation X.509 certificate.
While that would technically work, the problem with using the existing PKI is that it's still very expensive to get EV/OV certificates. And the most common of these certs (those for TLS purposes) will soon only last 47 days which is, to put it mildly, would be a pain in the ass to use for package-signing.
My project uses a free one from SignPath. They offer this for opensource projects and require a verifiable GitHub build process. It's not EV certs but it's good enough and free.
I fucking hate that word. It's not 'sideloading' to install on my own device what I want to install, to use the apps I want to use; to not use the apps I don't want to use. I am not 'sideloading' anything when I install programs on my PC. No different on my phone.
Fuck off with all these new bullshit terms that are only used to imply that what we're doing (with our own devices) is somehow outside the norm, to justify the constant enshittifcation and the growing stranglehold these corporations want on our lives. It's infuriating.
@wide_eyed_stupid @Gsus4 “You will own nothing, and if you don’t like it you can talk to the security cyberdog that has you in its sights.”
It's not a "bullshit new term", it's three decades old and means transferring files locally from one device to another, instead of directly downloading or uploading from/to an external server.
The origin goes back to MP3.com and i-drive in late 90's, but the most common sideloading people did was downloading music to their PC using services like iTunes, and transferring them to their mp3 players. As they did often with early PDA and smartphone apps, where the term for Android comes from - get the .apk on your computer, transfer it to your phone, and install it.
Sideloading.
Fair, it's not a new term. I was born in the 80'ies, I'm familiar with the concept.
However, it's now being used with new bullshit meaning (i.e. going outside the Google/Apple app and their own offered selection), and media are normalizing this use.
so you're saying it is the wrong word, because most apks are downloaded from the internet on-device. That is not a local transfer
It is still the same installation method, directly installing the .apk file, from way back when the term for Android usage was defined. So, kinda, but also kinda not. Also, if you do use ADB to do the install from a PC, the command is "ADB sideload filename" which will do the transfer and installation to the memory directly.
Android doesn't use ROMs (Read-only Memory) any more either, because the filesystems are now writable. But Lineage etc are still called custom ROMs, because the end result hasn't changed.
Okay, but Google uses it in a way where directly going to the server they host F-Droid.apk, downloading and installing it counts as sideloading.
If anything, using Google Play is sideloading by that definition, since I can't just download a release from the originators' server, they need to first transfer it into a secondary location, Google's servers, and I can only install it from there.
I'm sure there's something in the EULA about how it's actually their device and we are just licensing it, just like software. I hate this tech feudalism so much.
bullshit! if this is actually what the "new" rule is, the exact same thing was already part of their unacceptable original plans.
To accommodate educational and noncommercial development, Google will introduce a new limited developer account type aimed at students and hobbyists. These accounts will not undergo full identity verification but will instead allow app installations on a restricted number of registered devices.
no to any kind of accounts, to any kind of developer registration, and any kind of install limits! its none of google's business what apps people install outside their store, and so they shouldn't be able to enforce a global installation limit for any apps!
Meanwhile the Play Store is full of scams. This isn't about safety, it making sure they get a cut from the scam apps.
It's a trashpile. If I need an app, I search 'site:reddit android app x' or look in f-droid
The company says it is now developing an “advanced flow that allows experienced users to accept the risks of installing software that isn’t verified.” This installation flow will include safeguards to protect people who are being coerced into installing a dangerous app, or tricked by a scammer, along with “clear warnings to ensure users fully understand the risks involved.”
IIRC we already had to enable a setting and confirm a warning popup. What are they gonna do? Add more popups? A captcha-"puzzle"? Less easy to accept dialogs?
Probably a captcha puzzle, or some other thing that requires you to connect to them and surrender your data for free for their commercial purposes.
Cool story, goog.
I'm just going to keep waiting for a linux/foss phone so that its features and capabilities are actually predictable year to year.
But maybe I'm just too picky about what features and capabilities I want. I admit I've gotten used to some pretty outlandish stuff like... lemme check my notes here... "the device does the things I tell it to do." Real galaxy-brain shit!
There is already postmarketOS if you have an old supported phone somewhere in the drawer... it has still some rough edges, but it works and gives a nice glimpse into that ecosystem.
This framing still sucks. Google is blocking apps THEY don't approve on YOUR phone.
They won't kill side loading (the fact we even call it side loading instead of simply installing software is a problem). They'll just shoot it in the knees a little. No big deal.
They'll be able to stop a group of less technically savvy people, who currently are sideloading, from using their phones the way they choose. Apparently that's good enough for Google.
I'm not worried about sideloading because I use GrapheneOS, but I'm worried that development for various apps might stop...
Billionaires doing what a billionaire does: feign a reason to kneecap a service, force complaints about its ineffectiveness, then use that as an excuse to dismantle it entirely. I am so tired of this.
"side" loading is just normal loading for me. I have one single app from the google app store. (It's cookie clicker 😂)
Even calling it side loading is an attempt to delegitimise the practice. To make it sound like you're doing something dodgy by the side.
It's just installing an app.
Nobody calls installing an app from outside the Microsoft store on their Windows PC "side loading".
Likewise for Macs regarding their app store, or installing an app from outside your distro's repository on Linux.
So about those linux phones....
Aaaaaaany day now..... guys..?
(I have a pinephone and no, it is absolutely nowhere near ready)
Fuck all of this tech bros enshittification surveillance bullshit. I'm going to Radio Shack and buy a Heath Kit! /s
So this sucks obviously. Will this also affects apps from alternate appstores like F-Droid or only APK's? I mean F-Droid already signs the apps, right? I'm a little confused.
A "concession" to use your phone, and you need to give your address, phone number, and ID. Fuck off.
My entire job depends on such an app, so this is a bit of a relief.
It's all about herding people by dictating the path of least resistance.
Boiling the frog
