You can add 5 layers of "are you sure you want to do this unsafe thing" and it just adds 5 easy steps to the scam where they say "agree to the annoying popup"
You could even make this an installation-time option. If you want to enable the switch afterwards, you have to do a factory reset. Then, the attackers convincing the victims would get nothing.
Or make sideloading available only after 24 hours since enabling it. I would enable it on my new devices and wait 24 hours before installing F-Droid and other apps. Not a problem. Scammers might wait one day too but it decreases the chances of success because friends and family members can interfere.
But I'm afraid that this is security theater and the true goal is to protect revenues by making it hard or impossible to install apps that impact Alfabet bottom line (eg third party YouTube clients.)
That's... brilliant. Enough work to not be able to talk it though over the phone to someone not technical. A sane default for people who don't know about security. And a simple enough procedure for the technically minded and brave.
It solves the 'smartest bear / dumbest human' overlap design concern in this situation.
mormegil|5 days ago
pmontra|5 days ago
But I'm afraid that this is security theater and the true goal is to protect revenues by making it hard or impossible to install apps that impact Alfabet bottom line (eg third party YouTube clients.)
201984|5 days ago
altruios|5 days ago
It solves the 'smartest bear / dumbest human' overlap design concern in this situation.
plst|5 days ago
But I guess not reading the TOS is another wide problem, also fueled by companies like Google.
pas|5 days ago
relatively easy for devs, but hard to scale for scammers
giancarlostoro|5 days ago
yjftsjthsd-h|4 days ago
unknown|5 days ago
[deleted]