this post was submitted on 15 Jan 2024
466 points (98.5% liked)
Technology
59466 readers
3287 users here now
This is a most excellent place for technology news and articles.
Our Rules
- Follow the lemmy.world rules.
- Only tech related content.
- Be excellent to each another!
- Mod approved content bots can post up to 10 articles per day.
- Threads asking for personal tech support may be deleted.
- Politics threads may be removed.
- No memes allowed as posts, OK to post as comments.
- Only approved bots from the list below, to ask if your bot can be added please contact us.
- Check for duplicates before posting, duplicates may be removed
Approved Bots
founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
I definitely like my computers (including my phone) being open to me, and I love having f-droid on Android.
Even so, I think there's a genuine case for security of a walled garden, even though I prefer the alternative.
Having the option to install 3rd party is another attack surface, and gives a chance for the market - or authoritarian control - to to veer towards not being vetted by that walled garden.
I.e. if a popular enough developer chooses not to publish through the app store, you either accept their personal guarantees or refuse to use that software. If your job or school decides not to... then what can you do, even if your school is not competent to keep up to date the security of their lowest-bidder bespoke app store?
But if you can't side-load, there is no option, which makes them use Apple's one with its protection.
I agree, that hasn't turned out that way on Android... except for phones that don't support Google Play. I hope it never does...
That would mean there's no malware on closed stores, which is simply not true. Besides, you can allow more than one store and still have high security. More to the point Apple doesn't care about protecting your rights, but their margins. More stores means lost profit and that's the only thing Apple cares about.
Also, assuming big companies are more capable of doing proper security is just flawed way of thinking. Just look at Sony whose hacking and leaking credit card numbers is approaching annual levels. If anything I'd say some security nut will do a significantly better job than Apple, because no company does something if they really don't have to, especially Apple who will opt to glue piece of shoe rubber to push on GPU chip instead of losing a penny on changing soldering paste. And it's not an isolated case either, on iPhone Max series they removed a single drop of adhesive which made sure chips were strengthened when phone bent slightly. They saved pennies there but that caused user's phones to lose touch on displays.
Just repeating their PR statement doesn't mean that's the correct way to go.
Fair point, but,
Well, Apple and Google have a pretty good track record on that, as records go. Sure, a security nutjob might do better; and the FOSS community has done some amazing and well-trusted things, but not every contender is the same.
As a bit of a oblique example, I have games in Epic store. Now they (Epic) want to install kernel-level drivers, which I'm not sure I'm willing to accept. If they simply weren't able, they'd simply do without. I'd rather have Microsoft's malware than Microsoft's plus Epic's. (Side note, apparently I can use an alternative FOSS launcher so that's great!)
And still, I prefer it this way - I'd like to have kernel level control on my computer than for Microsoft to 'protect' me by disallowing it. But my non-techie friends? I'm not always sure. Especially those in more hostile environments.
(As another aside, anything that matters on my computer is in Linux and encrypted; but the recent exploit using a bios splash image opens up interesting new inter-platform vulnerabilities.)
Track record is all that matters. Not a guarantee but a good indicator. Still, Apple is opposing this not because of security but greed.
Authoritarians are always going to be prefer authoritarian app stores where any app that threatens them can be swifty removed.
Authoritarians rule in part via suppression of information. All governments can mandate that specific things be or not be installed on devices, it's typically only authoritarians that are afraid of unknown things being installed on devices.
You're forgetting that authorities don't always work together. Authority sometimes threatens authority.
It's true that Apple can swing their weight around in some markets. However, in places where the government is able to govern as they wish, e.g. China, the CCP gets their way every time in the end... And that's pretty much how it goes with private companies vs governments. You either play by their rules or you seize to be a business in their jurisdiction.
I wish I could simply tell you that you are ignorant and you would think for a moment and recognize it. It's not my crusade to educate you, and people don't like realizing they are wrong, but now it's out there for you to see, perhaps there is hope.