Comment by plst

3 months ago

> And they believe it.

Two reasons: they are not educated about devices they use, desktop operating systems are still awful at security (exe from a mail attachment can have a pdf looking thumbnail, executed with two clicks, even if accidental, immediately gets access to all user files... the whole concept of antivirus software...). It has nothing to do with side loading, especially on Android, where sideloading is a very explicit action already, and then you need to allow the application to do harm.

> Giving them the power to run any software they want, also means giving everyone else the power to make them run any software they can be tricked into installing.

You are taking away people's agency. Either you get to control your bank account risking that you get scammed, or someone will control it for you.

4 comments

plst

Reply
craftkiller  3 months ago

> very explicit action already, and then you need to allow the application to do harm.

So the email they get which tells them about the 3 viruses also contains a phone number where a "nice tech support person" will walk them through the steps of side-loading the "anti-virus app". You'd be surprised at what warnings/permission boxes people will blindly accept when they think they're talking to someone from Microsoft or Google's tech support.

> You are taking away people's agency.

Agency they don't want and never use. It's taking away agency from people like us but for the average user, Google is taking away nothing they've ever cared about.

> Either you get to control your bank account risking that you get scammed, or someone will control it for you.

I was just saying a couple of days ago that we need a service for old people where any transaction above a certain configurable threshold (for example, $500 in a day) has to be approved by an employee of this service who serves as a neutral 3rd party whose sole function is to try to prevent scams. That way the old folks would still have their agency so they can go out and buy all the hot-rods and transistor radios they want but if they're about to wire money to "Microsoft" then the anti-scam-company would step in and prevent that transaction (or at least require the old person have a discussion about why its an obvious scam first before eventually allowing the transaction through depending on the client).

Whether this change actually takes control away from us remains to be seen. For example, I don't see anything in the article that suggests we wouldn't be able to install a custom ROM with the signature check removed. Personally, I already run GrapheneOS so I expect I actually won't be impacted by this at all.

  • plst  3 months ago

    > You'd be surprised at what warnings/permission boxes people will blindly accept when they think they're talking to someone from Microsoft or Google's tech support.

    But I know they do, I've seen this first hand. It's lack of education (except for extreme cases of people who cannot take care of themselves. but that's not the majority)

    > Agency they don't want and never use. It's taking away agency from people like us but for the average user, Google is taking away nothing they've ever cared about.

    It's agency they don't know they want, until it suddenly becomes useful. I'm not expecting everyone to use side-loaded, unapproved apps every day, it's about keeping OS vendors in check, about limiting their power over devices they don't own. If they act against users, there should be a way to circumvent them. Such ideas take that away.

    > I was just saying a couple of days ago that we need a service for old people where any transaction above a certain configurable threshold (for example, $500 in a day) has to be approved by an employee of this service who serves as a neutral 3rd party whose sole function is to try to prevent scams.

    Enabling such a service is a choice they would have to make. The default is control. The situation with all side loading restrictions is opposite - you don't get to choose.

    Unless you are suggesting that such service should be forced on people that match some vague "old" criteria. Our disagreement goes far besides technology in that case.

    • craftkiller  3 months ago

      > It's lack of education

      Saying "the users need to be educated" doesn't solve anything. Google could start an education campaign tomorrow and it would be ignored by most of the people that need it. If they were interested in learning then we wouldn't have this problem.

      > If they act against users, there should be a way to circumvent them

      Then install a custom rom. All the power you want is already available, just no longer on the official android builds. Seems silly to demand Google screw over the majority of their customers because you don't want to install a custom rom.

      > The situation with all side loading restrictions is opposite - you don't get to choose.

      On the contrary, you choose when you purchase your phone. If you don't like it, purchase a phone that caters to users like us. There's the librem5 which I sadly own but that phone is a joke (but tolerable if the android landscape starts looking too much like Apple). I've heard good things about the pinephone but personally I'm never touching anything that comes out of pine64 again after the disastrous pinebook pro. I love the idea behind the FairPhone but the security on that device is a joke. I'm hoping the GrapheneOS people launch a decent phone.

      1 reply →