zlacker

[return to "F-Droid Fake Signer PoC"]
1. CountH+37[view] [source] 2025-01-03 23:46:16
>>pabs3+(OP)
Guess I'm immediately uninstalling F-Droid. That chain of events looks really poor for them.
◧◩
2. Larrik+Oc[view] [source] 2025-01-04 00:44:57
>>CountH+37
And using what instead?
◧◩◪
3. CountH+bp[view] [source] 2025-01-04 02:45:17
>>Larrik+Oc
Nothing. I'll sideload what I need to. I didn't find it that useful.
◧◩◪◨
4. wobfan+ZR[view] [source] 2025-01-04 09:23:09
>>CountH+bp
Sideloading sounds like a massively worse option than using F-Droid even with this flaw. Humans are way more likely in making mistakes, and you lose a lot of safeguards in between you and the APK when you sideload. Also, you don’t get updates as fast, which is a whole problem in itself.

So, IMO we should not fall into that trap of immediately removing apps that had a security flaw and falling back to a way worse alternative (which sideloading is) instead.

[go to top]