(no title)
zepto | 4 years ago
You keep making this silly silly argument.
A text message is not like a software application.
If you really thing the two are comparable, you honestly don’t know anything about computer technology.
You also clearly don’t understand security if you think a platform can be free of security flaws.
As for things slipping through app review. Obviously that happens. That proves that the platform isn’t secure, and that App review isn’t perfect.
If app review wasn’t there, even more things would ‘slip through’. What matters is not how many things slip through, but how many are stopped.
The platform security isn’t perfect, and nor is app review. Together they are much better than one would be alone. It isn’t hard to understand this if you want to.
flutas|4 years ago
> A text message is not like a software application.
> If you really thing the two are comparable, you honestly don’t know anything about computer technology.
Ya know, I'm not going to attack you like you seem so set on doing to me. But for reference, I'm a lead SWE working on mobile devices.
As for how a text is comparable. All I'm saying is you claim the platform would be vulnerable with sideload functionality, and what I'm saying is the platform is already vulnerable to the attacks you think this would open the door to. Letting users sideload apps won't make it any more or less vulnerable.
> The platform security isn’t perfect, and nor is app review. Together they are much better than one would be alone. It isn’t hard to understand this if you want to.
I'll say it again, but louder for those in the back. The security is built in to the platform, not app review. If the security was only through the appstore you would see hundreds of viruses in the store a day, controlled by a server side flag. Just like what Uber did to run code differently if the app was being used by reviewers. [1] Why do you think apps need permission to access your sensitive data? That's not the app politely asking while having the ability to get it anyway, that's the _platform_ security.
Now, mind commenting on the part you've ignored twice now? I'll quote it, verbatim, again for you.
"What's the difference between running an app ad-hoc right now (via XCode) vs allowing a user to download and install any app they want. The answer is, there isn't any, except for artificial limitations put in place by apple."
How is the platform so vulnerable and insecure currently? You claim this functionality will cause viruses and adware to run rampant, yet people can do this exact thing right now, with artificial limits (3 max, 7 days max) put in place by apple.
[1]: https://www.theverge.com/2017/4/23/15399438/apple-uber-app-s...
zepto|4 years ago
Then I assume you understand the difference between text and an executable and they they pose very different security risks.
If so, then we have to assume you are simply arguing in bad faith by pretending they are analogous.
> I'll say it again, but louder for those in the back. The security is built in to the platform, not app review.
This statement is completely false. Security is in both. You surely know that.
> If the security was only through the appstore you would see hundreds of viruses in the store a day, controlled by a server side flag.
No, because they could still be removed after detection.
In any case, this is a dishonest argument. Nobody is claiming that it’s only in the App Store. The claim is that the App Store is a way to catch issues that the platform security alone cannot.
Again, you clearly are aware of this.