Google: 'Your $1000 phone needs our permission to install apps now'". Android users are screwed - Louis Rossmann
Technology
514
Beiträge
261
Kommentatoren
135
Aufrufe
-
I don't have Google services, nor do I ever plan to install them. I'm perfectly happy with F-Droid, Aurora Store and NeoStore.
Soon aurora store may stop working.
They could add some crap to the apks in the play store that checks whether the phone has google services. So either the devs put their apks somewhere available (like on fdroid, which most wont do), or theyll just put their binaries on the play store, which will just be a useless blob for those that dont have play services. Then we get another shitty cat an mouse game about spoofing play services, them catching up, on repeat. -
Get a Pixel to use in China and a Xiaomi to use in America.
Lol. Which do I use in Vietnam? Serbia? If I'm in Canada and Trump threatens to invade, should I switch to the pixel for a week?
-
If you are American, you should buy Chinese tech because the Chinese government is more interested in spying on and controlling its own people than you.
If you are Chinese, you should buy American tech because the American government is more interested in spying on and controlling its own people than you.
Im sure the us uses its tech dominance to sway political opinions one way or another in my country (brazil). And spying on people is a requirement for that. It seems like an attitude in line with the history of the relations between the us and brazil (and countless other countries). China probably tries that too, although i dont have a strong historical evidence for that disposition from china.
-
I agree, that’s why I have a Fairphone. It’s a way to minimize that impact.
Unfortunately a Fairphone is not a secure device.
-
Apple now allows sideloading of apps and Google is trying to get rid of sideloading.
What... the Fuck?
Yea but Apple got sued into allowing that
-
It's time to start self hosting your own services people!
Yeah, but that doesn't help if you can't make apps that support the hosted services. Google is trying to have complete ownership of what runs on your phone.
-
If they only cared about thwarting malware they could have just relied on code signing via public certificate authorities, like with binaries on Windows.
The point is so that most people can't or won't figure it out or get discouraged.
So that in time, google's "unwanted" software will be starved of attention and funds to continue being developped and these "weeds" in their garden slowly wither and die -
I find it very strange how many people in the comments here think the solution is to buy an iPhone. Maybe you are all just rich and can afford to spend $1000+ based on vibes, but considering the Android market still has a massive value advantage I'm not really sure what the point of switching is. This all feels very similar to how some Westerners decided Chinese tech and even the Chinese government were suddenly problem-free just because Americans elected Trump for a second time.
The upgrade cycle on iphones is longer than that on android. $1200 flagship samsung phone turns to shit after 2 years. $1100 iphone keeps chugging for 4-5. The android rot is real. Apple is far from perfect but the phones last way longer on average and end up having a lower cost overtime. That is if youre not buying bottom of the barrel budget phones to compare against.
-
This is the risk of "trusted computing" architectures. Who is governing the "trusted" part of that.
These cryptographic signatures are not as much of a death knell for Android as some would have you believe. The trick is to get a common code signing cert into your device, that is then used to sign any third party APK you want to run. You can avoid the Google tax this way. I assume that's how most sideloading sites and apps are going to handle this.
The question is, how do you add that certificate? Is it easy and straight forward (with plenty of scary warnings), as a user? Or is it going to be a developer options deal? Or will I need root to add the cert?
I'm not sure what that answer is right now.
I just want to finish this post with a few words about trusted computing models. Plainly: Apple has been doing this for years ... That's why you download basically everything from an app store with Apple. Whether on your Mac OS device, your iPhone, iPad or whatever iDevice.... Whether the devs need to sign it, or the app gets signed when it lands on the store, there's a signature to ensure that the app hasn't been tampered with and that Apple has given the app it's security blessings, that it is safe to run. Microsoft and Google have both been climbing towards the same forever. Apple embedded their root of trust in their own proprietary TPM which has been included with every Mac, and iDevice for a long ass time. Google also has a TPM, the Titan security module, I believe that was introduced around pixel 3? Or 4?... Microsoft made huge waves requiring it for Windows 11, and we all know what that discussion looks like. Apple requires a TPM (which they supply, so nobody noticed), Google has been adding a TPM and TPM functionality to their phones for years, and now Windows is the same. None of this is a bad thing. Trusted computing can eliminate much of the need for antivirus software, among other things. I digress. We've been going this way for a long time. Google is just more or less, doing what Apple has already done, and what Microsoft will very likely do very soon, making it a requirement. Battlefield 6 I think, was one of the first to require trusted computing on Windows and it will, for damned sure, not be the last that does. The only real hurdle here is managing what is trusted. So far, each vendor has kept the keys to their own kingdoms, but this is contrary to computing concepts. Like the Internet, it should be able to be done without needing trust from a specific provider. That's how SSL works, that's how the Internet works, that's how trusted computing should work. The only thing that should be secret is the private signing keys. What Google, Apple, and Microsoft should be doing, is issuing intermediary keys that can sign code signing certs. So trusted institutions that create apps, like... Idk, valve as an example, can create a signature key for steam and sign Steam with it, so the trust goes from MS root to intermediary key for valve, to steam code signing key, and suddenly you have an app that's trusted. Valve can then use their key to sign software on their store that may not have a coffee signing key of it's own. This is just one example based on Windows. And above all of this, the user should be able to import a trusted code signing cert, or an intermediary cert signing cert, to their service as trusted.
Anyways, thanks for coming to my Ted talk.
-
So yeah we'll do a decentralized Linux phone of sorts, if Google is going full 3rd Reich with Android we'll move to a Linux based OS phone.
Simple as that.
Who is we? what group of people has the dev funding and time to produce FOSS hardware and software to compete with the average android phone?
-
I don't see how the DMA would cause this other than Google preemptively setting themselves up for malicious compliance. The whole point of the DMA seems to be to give users choice not take it away.
I think you're on point with the malicious compliance. Google doesn't want to give up power and control. Requiring all installations to run through them seems to be their workaround.
-
This was the main reason I have a spare android phone to install whatever I want on it and just factory reset if there’s an issue. Android / Google is really shooting itself in the foot cause there isn’t a point in owning an android after this imo
-
The upgrade cycle on iphones is longer than that on android. $1200 flagship samsung phone turns to shit after 2 years. $1100 iphone keeps chugging for 4-5. The android rot is real. Apple is far from perfect but the phones last way longer on average and end up having a lower cost overtime. That is if youre not buying bottom of the barrel budget phones to compare against.
All of my old phones work fine as the last time they were updated. My 10 year old Sony xperia z3c would be fine except for security updates and it's only 3g, and the storage on it is quite measly. I still use it everyday for playing music, though.
Most of the speed issues are google bloat. Play services are absolute hogs, and anything that needs them will not work on this phone, but everything that doesn't is perfectly fine. So I'm basically stuck with f-droid apps. Which is fine, because it's a glorified iPod at this point
-
When it comes to the current final frontier, Linux phones, what brands/models would be the best option? Or are you all really recommending iPhones?
I'm looking at Fairphone 6. EU based, has an option called /e/os which is basically degoogled Android, and it also has full support for Ubuntu Touch (Linux phone).
-
Waydroid works really well to run
Android apps on mobile Linux, even for games. Doesn't help for banking apps though as they'll usually lock you out due to not passing Google safety checks.Isn't Waydroid shady?
-
Wait, Linux phones are a thing? How do they get the market share to compete with the big tech?
That't the neat part, they don't. They're still very niche
-
They provide the OS, what makes you think that kind of tracking isn't already happening?
App stores provide the apks but then you'll use your phone's installer to actually, well, install the apks.There are some alternatives to the default apk installers
-
I trust in independent reviews, reproducible tests and hard numbers, not in brand cultivated images and subjective choices.
I don't care if it comes for Audeze, Sony, or a Chinese Knockoff, numbers doesn't lie.did... did you just call sennheiser a chinese knockoff? dude, know when to bow out
-
The only answer is money at that point. I don't know how much phones are these days, but aren't iPhones like $1400, but Android is like $900?
I may be wrong though. Last time I bought a phone was 2018, and it was $600. Still using it.
The regular iPhone and S25 are exactly the same price.
The S25 ultra is $100 MORE expensive than the iPhone 16 pro max.
Buy Galaxy S25 Ultra 256GB | Titanium Black Smartphone | Price & Deals | Samsung US
Buy the Galaxy S25 Ultra. Save on trade-ins and shop the latest S Series smartphone at Samsung.
Samsung US (www.samsung.com)
Buy iPhone 16 Pro and iPhone 16 Pro Max
Get $45 - $600 off iPhone 16 Pro or iPhone 16 Pro Max when you trade in an iPhone 8 or newer. 0% financing available. Buy now with free shipping.
Apple (www.apple.com)
-
Im sure the us uses its tech dominance to sway political opinions one way or another in my country (brazil). And spying on people is a requirement for that. It seems like an attitude in line with the history of the relations between the us and brazil (and countless other countries). China probably tries that too, although i dont have a strong historical evidence for that disposition from china.
not disagreeing in any way, but just sharing reputable sources on that statement before anyone says it is a "conspiracy":
Wikileaks: US 'routinely spied' on Brazil
Wikileaks says it has evidence that the United States has routinely spied on senior Brazilian government officials since 2011 or earlier.
BBC News (www.bbc.com)
US ‘spied on Brazilian president and top officials’
Whistle-blowing website WikiLeaks publishes NSA list of 29 phone numbers of top officials that were bugged.
Al Jazeera (www.aljazeera.com)
Also, given that we are almost 10 years afte this article, I'm pretty sure any sane person (by that I mean someone who is not bolsonarist) can see where the (predictive) article agrees or disagrees with reality (past brazilian news and even memory of events):
