127
Google gives Android users a way to install unverified apps if they worked hard for it(including waiting 24 hours)
(android-developers.googleblog.com)
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
this post was submitted on 19 Mar 2026
127 points (98.5% liked)
Technology
84878 readers
1328 users here now
This is a most excellent place for technology news and articles.
Our Rules
- Follow the lemmy.world rules.
- Only tech related news or articles.
- Be excellent to each other!
- Mod approved content bots can post up to 10 articles per day.
- Threads asking for personal tech support may be deleted.
- Politics threads may be removed.
- No memes allowed as posts, OK to post as comments.
- Only approved bots from the list below, this includes using AI responses and summaries. To ask if your bot can be added please contact a mod.
- Check for duplicates before posting, duplicates may be removed
- Accounts 7 days and younger will have their posts automatically removed.
Approved Bots
founded 2 years ago
MODERATORS
The biometrics part makes no sense, you can disable biometrics. You mean that you have to do a security confirmation however you've set it up.
Is this for all android systems because it is a huge rug pull if so
Pretty sure it's a change to AOSP, the basis for every single Android ROM in existence.
Combined with the news that they're going to start requiring developer age verification even in the alternate app repositories...
I can understand this workflow being created to protect the legions of people who are tricked into installing spyware.
It doesn't remotely affect me because I use GrapheneOS and if this is an issue for you then you're probably someone who should look at installing GOS or Lineage.
I don't think Google should be able to do this and it is likely part of a longer-term strategy to strangle any competition. At the same time, I can understand how this change will save a lot of grandparents from clicking a link in a text from their 'grandchildren' and installing spyware that'll steal all of their bank information.
GrapheneOS is built on AOSP, which is where the change is being made. Graphene and other custom ROMs will need to maintain a fork that cuts out the feature if they want to avoid. Google is also starting to close off Android to make that more difficult, so it'll become a genuine project to maintain the fork well.
As far as I understand the enforcement depends on privileged play services. https://xcancel.com/Metr0pl3x/status/1960329785277571420#m
That's better, at least. GrapheneOS users should be fine at least since there are extensive restrictions on Play. Other Android ROMs may have issues, though. Maybe not if they use MicroG.
I mean... This is kind of why I never let people use my phone.
I have installations from various sources enabled... Like my browser, because I know what I'm doing. But I wouldn't trust anyone as the process is currently effortless....
If someone is trying to install spyware on you (like a partner or parent.) this might offer some notification and prevention.
I don't really see the big deal. You do it once, enable it forever, and wipe up those tears.
I think a better way would just to have maybe like a biometric/pin confirmation upon installation. Simple. Clean.
they want to suppress the developers, not users. By making it so bothersome, so many people will just stop using sources from outside google play. First they do this and at some later time they will add more hoops to it. If they manage to strangle any developers that make stuff, people will have nowhere to turn yet they cant complain either because google will have undeniable monopoly.