zlacker

[return to "Google restricts Android sideloading"]
1. gbin+Va[view] [source] 2025-06-05 17:38:02
>>fsflov+(OP)
I am the first to be on the "I own my phone let me do whatever the heck I want with it" but recently something hit me.

DJI forces you to side load their app for their Air Units and Drones. And this is scary. It looks like the rule they violate for the play store is that their app can self modify.

Let that sink in ... Any tension or whatever political bull crap happens and you have a state controlled malware on your device that can do anything it wants with your drone.

Millions of people installed this without really understanding what could be the consequences...

◧◩
2. Groxx+Tm[view] [source] 2025-06-05 18:51:19
>>gbin+Va
self-modification doesn't imply much when you can embed v8 in your app, which they take no issue with at all
◧◩◪
3. lblume+DC[view] [source] 2025-06-05 20:42:23
>>Groxx+Tm
The difference is that V8 is sandboxed.
◧◩◪◨
4. Groxx+8N[view] [source] 2025-06-05 22:12:07
>>lblume+DC
then replace "v8" with "arbitrary binaries" because that's true too. embed a lisp and do whatever you like, for example. Golang, C, Rust, Dart, etc are all quite common too, and nobody would call C "sandboxed".

all self-modifying really prevents you from doing is stuff like dynamically changing your permissions. which is a broadly reasonable restriction because it'd complicate the approval UI (and the actual enforcement mechanisms) quite a bit further.

[go to top]