Comment by mcraiha
9 months ago
I don't really understand why all sideloads are put into same category. Because the APK must be signed, and e.g. you could easily verify Facebook/Microsoft/bigcompany signatures.
9 months ago
I don't really understand why all sideloads are put into same category. Because the APK must be signed, and e.g. you could easily verify Facebook/Microsoft/bigcompany signatures.
I don't want a world where people can only sideload apps from big companies like Facebook and Microsoft.
I think what’s being suggested is that you could install any app but verify if it’s legit via the signature.
Facebook was just caught using loopback networking to completely bypass app sandboxes. If anything, I’d want to block any app that contains a dependency they signed.
1 reply →