← Back to context

Comment by realusername

1 month ago

It hasn't, security isn't just technical features but a social contract.

Even on an iPhone without a sim card, they can download one of the scam casino games from the appstore and give away a lot of money, on Ubuntu they can't do that.

There's more to security than just bytes.

The threats to your average user isn't a bootloader exploit built by some Israeli firm but privacy breaches, social engineering and scams.

9 comments

realusername

Reply
josephg  1 month ago

Sure; but technical features can certainly make security better.

Like, iOS makes most unsafe actions incredibly clear. Apple pay always requires the user to double tap the power button. The OS makes it impossible for an application to charge you money through apple pay without an explicit user action.

Phone apps also can't take control of my entire device, or steal my cookies or cryptolocker my hard drive. Any program you download and run from the internet on a desktop computer can do all of this stuff and more. We shouldn't allow that stuff by default on desktop computers either.

Phones have the right idea. I just don't want Apple and Google to be the only ones who can modify the system at the OS level.

  • realusername  1 month ago

    Double taping to pay is actually making things worse for tech illiterate users. There's a lot of scam games on the appstore and it's way to easy to fall into it if they aren't too careful.

    And then no, it's not clear for me (even as a developer!) how data transfer between apps work, how the advertising id works and how much data Apple and Google really have that they shouldn't. If it's not clear to me as a software engineer, it certainly isn't for your average user.

    The browser is just a much easier mental model, especially that I can install an ad blocker on it to make them safer, which I can't on mobile apps.

    > Phone apps also can't take control of my entire device, or steal my cookies or cryptolocker my hard drive.

    It never happened once with my parents in 15 years of running Ubuntu. Even if that stuff somehow existed, I don't think they would have the tech knowledge to mark the downloaded virus as executable anyways.

    • josephg  1 month ago

      > The browser is just a much easier mental model, especially that I can install an ad blocker on it to make them safer, which I can't on mobile apps.

      I'd like that security model to be the default for desktop apps on my computer as well. Its weird that davinci resolve and spotify and all the rest have full access to look through all my files.

      > It never happened once with my parents in 15 years of running Ubuntu.

      Probably just because so few regular people use ubuntu, scammers & malware authors don't bother targeting it. Still good for your parents though!

      5 replies →

  • fsflover  1 month ago

    > Phones have the right idea. I just don't want Apple and Google to be the only ones who can modify the system at the OS level.

    You may be interested in Qubes OS then.