← Back to context

Comment by amavect

1 day ago

One of my friends had his credentials stolen from a trojan infostealer masquerading as a video game, sent from a rando who he mistakenly trusted. If only it had to request user permission to access files outside of its folder. There's a spectrum between full access and full lockdown.

4 comments

amavect

Reply
pocksuppet  1 day ago

If every app requests that permission, no app requests that permission. Also your passwords would be in your user folder so the app that needs the passwords could read them.

  • amavect  1 day ago

    That condition usually doesn't hold in practice. Very few programs have a reason for reading browser history or cookies. Excel has no purpose accessing the Notepad++ appdata folder. Not all-or-nothing.

    • pocksuppet  19 hours ago

      How would your browser read browser history and cookies? It gets its own app data folder? What if I want to export my browser history to another browser - which is currently impossible on Chrome for Android, precisely because no other app is allowed to access Chrome's history file?

      1 reply →