this post was submitted on 19 Nov 2023
3 points (100.0% liked)

Apple

69 readers
1 users here now

A place for Apple news, rumors, and discussions.

founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 1 points 1 year ago (8 children)

I’ll be honest, as much as I agree with the freedom of choice on that matter. He is not wrong to say that if you can only download apps from the App Store, that closes a massive security hole. I’m not looking forward to having to troubleshoot grandmas iPhone because she downloaded the wrong thing looking for a recipe but it’ll be nice to not be confined to the rules of the corporate overlords. Pros and cons.

[–] [email protected] 1 points 1 year ago (1 children)

It's not like an everyday user tires to sidoade apps. It's 0.1% of the population.

[–] [email protected] 1 points 1 year ago

Exactly, and now 99.9% of us will have to deal with the decreased security just because those 0.1% couldn’t just go buy a fucking Android

[–] [email protected] 1 points 1 year ago

Just makes me think of my coworker whose samsung phone had so much random crap on it that every other tap on the screen would trigger a 30 second ad, sometimes followed by a second or third ad. Took forever just to get to the Settings app. Ended up having to boot into safe mode and removing a good chunk of apps for him.

[–] [email protected] 1 points 1 year ago (1 children)

No matter how you do it, opening another channel of app installation will always make a device „less secure“. It’s in the very nature. Users have to be more careful with sideloaded apps and the OS has to tighten security.

I‘m not worried though, mostly because of one thing: Even on Android I hardly know anybody who actually sideloaded apps. And I guess iOS will do more than its fair share of warning users not to do it.

I mostly look forward to it for Fortnite and some emulators.

[–] [email protected] 1 points 1 year ago

You’re missing the actual problem, though. Right now the OS is written in such a way that it rejects running any apps not signed by Apple, always.

In the future it won’t.

[–] [email protected] 1 points 1 year ago (1 children)

If your gradma knows how to sideload apps you have bigger security concerns than that.

[–] [email protected] 1 points 1 year ago

“If you know where you’re downloading apps from” a lot of people don’t, and still do it.

[–] [email protected] 1 points 1 year ago (1 children)

But this is a tad ridiculous. Sideloading on Android has always been a thing, the average user has no idea what it is or how to do it.

Yes, it's safer within the app store. No, granny won't accidentally install something, you need to allow installs from the source, accept permissions, clear the "are you sure" security screen, then finally choose between install and cancel, before getting one last security screen, "app was downloaded from the internet".

The concept of security is correct, your anecdote is a false example of it.

[–] [email protected] 1 points 1 year ago

No, granny won't accidentally install something,

Maybe not, but hackers can install apps that aren’t signed by Apple and now they’ll run

[–] [email protected] 1 points 1 year ago

Legit question, is side loading not already offered in some way? I thought sideloading is when you can download an app straight off a web browser. I’ve done that before multiple times for work apps.

Or is it specific to purchases for paid apps?

[–] [email protected] 1 points 1 year ago

Just dont be srupid and you will be fine. And sideloading actually requires turning it on for each app in the settings so you cant do it by accident

[–] [email protected] 1 points 1 year ago

This is my concern too. We already have quite sophisticated scams guiding people to install TeamViewer, AnyDesk, etc on PC’s; you can bet they’ll adapt their techniques to work on iPhones too, guiding grandpa through side loading malicious software.

Hopefully iOS will make a distinction between side loaded and AppStore loaded apps and adjust permissions accordingly (via a VM, container, or some other mechanism).

Obviously not perfect, but security is a never ending game of cat and mouse.