Lets be real though, currently they already have to blow through 4 other warnings about installing unsigned APK and enabled the browser or file manager to be able to install applications. It’s almost certain if they are that far deep/commited, they are going to call the scammer back if the scammer left a number.
Yes this might allow for a time delay where the scammers number could be disabled if reported by enough people, or someone else to be like “yo this is a scam” if they mentioned it but, I don’t think this is as secure as they are saying it will be. The target audience for this is very unlikely to be thwarted by a time delay. Plus, the scammer will make some excuse about how the warning is just a safety percaucion and doesn’t need to be followed as this is a normal usage of the toggle, and then have them call back after the delay is done.
For clarification: the target audience doesn’t know about the scam, and all they care about is that someone is seemingly willing to assist with an issue or problem they have. Said person knows the solution and they just have to wait for the timer to be done to be able to do said solution. They have no reason of telling others about it (unless they were complaining about googles time delay) as they already got someone who is seemingly able to assist.
Honestly, having to have the user type “I agree that I have verified the application i am trying to install is genuine and not a fraudulent app” or a listbox of checkmarks to toggle in order to enable it would be far more efficient for this case.
Hell take the example image the article on the dev page has and make it into toggles instead and it would work far better than a timer does.
Honestly, having to have the user type “I agree that I have verified the application i am trying to install is genuine and not a fraudulent app”
Ask Other Linus how well that sort of thing (“Yes, do as I say!”) works, LOL!
I agree with you that Google’s anti-competitive time delay BS is likely to be ineffective for its claimed purpose, but frankly, I don’t think any other reasonable (i.e. non-rights-infringing) strategies would be effective either. Honestly, there’s a limit to how much effort you should go through to save idiots from themselves – and how much annoyance you impose on everyone else in the process! – and I think we’ve already hit it.
I have never seen that page before, but that’s hilarious. I somewhat hope that he did that as a demonstration of, hey, someone may do this because it’s hard for me to wrap my head around someone who uses a computer for a living, doing something like that.
Being said, I think that prompt went above and beyond what was needed. At some point you just need to let the user touch the hot stove top… It stated what it was going to do, stated that it was going to be potentially dangerous and unlikely what the user wanted, and then reiterated that it was core essential packages needed for it to run… I don’t know what else they could do there. I would definitely be against adding further restrictions though. If he was willing to type that in, I don’t know what would stop him from doing that, to be honest, Maybe a…" I acknowledge this would break my system…" instead of it being yes-do as I say. But I don’t know.
Being said hard agree there is zero reason that a package like steam should be able to uninstall your desktop., That was definitely a bug or a misconfiguration with the steam package. That was unexcusable. I just think they gave more than enough information of what that would do and he did it anyway.
I firmly agree at some point the ends don’t justify the means and Android has definitely got to that point with unsigned packages prior to making this change., And I don’t think the ends justify the means to implement such a system. And I definitely think there is ulterior motives for implementing it.
I somewhat hope that he did that as a demonstration of, hey, someone may do this because it’s hard for me to wrap my head around someone who uses a computer for a living, doing something like that.
Nope, he genuinely didn’t bother to understand the warning before typing it. He may use computers for a living, but that just means he has a lot of very ingrained Windows bad habits to un-learn.
It was some pretty big Internet drama when it happened and he’s still trying to defend himself from the near-universal lambasting he got for it. Although I included the link just in case, I’m kinda surprised you (being a person tech-savvy enough to be posting on Lemmy) didn’t already hear of it.
He’s actually making a second attempt to switch to Linux right now (four years later), initially picked Pop!_OS again, and had some more problems with it. 🤦 He has a second channel where he posts clips from his podcast, and he keeps whining about how the other people doing it with him are having little to no trouble and he’s just cursed, LOL.
Yeah, I had never heard of it, I generally stray away from video based mediums, but I am a little surprised I didn’t come across articles for it, I can only assume that none of the creators I followed covered it.
Although it was kind of funny to see the beginning of that second video, him still trying to do damage control, it looked for a second like he was going to agree that he had screwed up that install because he said it was 100% his fault and then he Backtracked and said that it wasn’t his fault and I’m like so close lol.
Sadly, there’s truth in everything you say. Scammers are gonna be scammers, and they’ll just find a new technique plus the long standing social engineering to continue their efforts to rip people off of whatever they can.
Still, it’s something in the middleground, to help grandma be less likely to get scammed, while also giving power users an out and way to keep using their devices the way they want.
Honestly, having to have the user type “I agree that I have verified the application i am trying to install is genuine and not a fraudulent app”
Yeah, this would be the most promising approach IMO. Whenever I was forced to write something, I did pay more attention to what that said than if I ticked a box next to it.
Maybe even have them write “I am not instructed to install this app by someone else. I am aware that following instructions to install an app this way often have fraudulent intentions”.
(Also if the language was changed recently, it should ask to write it in all languages that were set within the last 14 days or so. Otherwise the scammer will have them switch the language so they don’t understand what they’re writing)
Lets be real though, currently they already have to blow through 4 other warnings about installing unsigned APK and enabled the browser or file manager to be able to install applications. It’s almost certain if they are that far deep/commited, they are going to call the scammer back if the scammer left a number.
Yes this might allow for a time delay where the scammers number could be disabled if reported by enough people, or someone else to be like “yo this is a scam” if they mentioned it but, I don’t think this is as secure as they are saying it will be. The target audience for this is very unlikely to be thwarted by a time delay. Plus, the scammer will make some excuse about how the warning is just a safety percaucion and doesn’t need to be followed as this is a normal usage of the toggle, and then have them call back after the delay is done.
For clarification: the target audience doesn’t know about the scam, and all they care about is that someone is seemingly willing to assist with an issue or problem they have. Said person knows the solution and they just have to wait for the timer to be done to be able to do said solution. They have no reason of telling others about it (unless they were complaining about googles time delay) as they already got someone who is seemingly able to assist.
Honestly, having to have the user type “I agree that I have verified the application i am trying to install is genuine and not a fraudulent app” or a listbox of checkmarks to toggle in order to enable it would be far more efficient for this case.
Hell take the example image the article on the dev page has and make it into toggles instead and it would work far better than a timer does.
Ask Other Linus how well that sort of thing (“Yes, do as I say!”) works, LOL!
I agree with you that Google’s anti-competitive time delay BS is likely to be ineffective for its claimed purpose, but frankly, I don’t think any other reasonable (i.e. non-rights-infringing) strategies would be effective either. Honestly, there’s a limit to how much effort you should go through to save idiots from themselves – and how much annoyance you impose on everyone else in the process! – and I think we’ve already hit it.
I have never seen that page before, but that’s hilarious. I somewhat hope that he did that as a demonstration of, hey, someone may do this because it’s hard for me to wrap my head around someone who uses a computer for a living, doing something like that.
Being said, I think that prompt went above and beyond what was needed. At some point you just need to let the user touch the hot stove top… It stated what it was going to do, stated that it was going to be potentially dangerous and unlikely what the user wanted, and then reiterated that it was core essential packages needed for it to run… I don’t know what else they could do there. I would definitely be against adding further restrictions though. If he was willing to type that in, I don’t know what would stop him from doing that, to be honest, Maybe a…" I acknowledge this would break my system…" instead of it being yes-do as I say. But I don’t know.
Being said hard agree there is zero reason that a package like steam should be able to uninstall your desktop., That was definitely a bug or a misconfiguration with the steam package. That was unexcusable. I just think they gave more than enough information of what that would do and he did it anyway.
I firmly agree at some point the ends don’t justify the means and Android has definitely got to that point with unsigned packages prior to making this change., And I don’t think the ends justify the means to implement such a system. And I definitely think there is ulterior motives for implementing it.
Nope, he genuinely didn’t bother to understand the warning before typing it. He may use computers for a living, but that just means he has a lot of very ingrained Windows bad habits to un-learn.
It was some pretty big Internet drama when it happened and he’s still trying to defend himself from the near-universal lambasting he got for it. Although I included the link just in case, I’m kinda surprised you (being a person tech-savvy enough to be posting on Lemmy) didn’t already hear of it.
He’s actually making a second attempt to switch to Linux right now (four years later), initially picked Pop!_OS again, and had some more problems with it. 🤦 He has a second channel where he posts clips from his podcast, and he keeps whining about how the other people doing it with him are having little to no trouble and he’s just cursed, LOL.
Yeah, I had never heard of it, I generally stray away from video based mediums, but I am a little surprised I didn’t come across articles for it, I can only assume that none of the creators I followed covered it.
Although it was kind of funny to see the beginning of that second video, him still trying to do damage control, it looked for a second like he was going to agree that he had screwed up that install because he said it was 100% his fault and then he Backtracked and said that it wasn’t his fault and I’m like so close lol.
Sadly, there’s truth in everything you say. Scammers are gonna be scammers, and they’ll just find a new technique plus the long standing social engineering to continue their efforts to rip people off of whatever they can.
Still, it’s something in the middleground, to help grandma be less likely to get scammed, while also giving power users an out and way to keep using their devices the way they want.
I bet they will end up having granny use adb over WebUSB a la GrapheneOS
Yeah, this would be the most promising approach IMO. Whenever I was forced to write something, I did pay more attention to what that said than if I ticked a box next to it.
Maybe even have them write “I am not instructed to install this app by someone else. I am aware that following instructions to install an app this way often have fraudulent intentions”.
(Also if the language was changed recently, it should ask to write it in all languages that were set within the last 14 days or so. Otherwise the scammer will have them switch the language so they don’t understand what they’re writing)