linux phones can't come soon enough ...
your point about the termn "sideloading" is spot on, though. perverting the language is the first step of manipulation: installing software is "sideloading", sharing files is "piracy", legitimate resistance is "terrorism", genocide is "right to defend oneself" ...
Precisely.
Android itself calls it "install" when you open an APK file, there's not mention of "sideload" in Android at all as far as I can tell.
There is an option in the TWRP recovery tool to sideload any capable .ZIP file.
That last part there is the problem.
"side" refers to the fact that it's not going through the first party app store, and doesn't have any negative connotations beyond that. Maybe if it was called "backloading" you'd have a point, but this whole language thing feels like a kerfuffle over nothing.
You do realise that's been changing right? Slowly of course, there's no single villain that James Bond could take down, or that a charistmatic leader could get elected could change. The oil tanker has been moving in that direction for decades. There are legions defending the right to run your own software, but it's a continual war of attrition.
The vast majority of people on this site (especially those who entered the industry post dot-com crash) ridicule Stallman.
"Dan would eventually find out about the free kernels, even entire free operating systems, that had existed around the turn of the century. But not only were they illegal, like debuggers—you could not install one if you had one, without knowing your computer's root password. And neither the FBI nor Microsoft Support would tell you that."
I recently had a realization: I can name Cathedrals, that are 800 years old, and still standing. I can't name a single Bazaar stall more than 50 years old around any Cathedral that's still standing. The Cathedral's builders no doubt bought countless stone and food from the Bazaar, making the Bazaar very useful for building Cathedrals with, but the Bazaar was historically ephemeral.
The very title of the essay predicts failure. The very metaphor for the philosophy was broken from the start. Or, in a twisted accidentally correct way, it was the perfect metaphor for how open-source ends up as Cathedral supplies.
How many bazaar projects from even 10 years ago are still maintained? Go through GitHub's trending repos from 2015. Most are abandoned. The successes transform - GitLab, Linux, Kubernetes, more Cathedral than Bazaar.
Did BSD defeat Linux? No. Which BSD is even the right one? BSD's biggest success is living on as the foundation of Apple's Cathedral in XNU, and PlayStation's Cathedral in the PS4 and PS5.
Did Linux stay a bazaar vendor? No - 90% of code has been corporate contributed since 2004. Less than 3% of the Linux Foundation budget goes towards kernel development. Linux is a Cathedral, by every definition, and only exists today because Cathedrals invest in it for collective benefit. It's a Cathedral, run as a Cathedral joint venture, to be abandoned if a better thing for the investing Cathedrals ever came along.
GCC? Being clobbered by Clang. Less relevant every year. Same with GNU coreutils, slowly getting killed by uutils.
Firefox? Firefox only still exists because a Cathedral called Google funds it.
LibreOffice, Apache, PHP, Blender? Professional foundations that get very picky about who is allowed to contribute what. They aren't amateurs and they all depend on Cathedral funding. Blender only got good when it started collecting checks from Qualcomm, NVIDIA, AMD, Intel, and Adobe.
Uhh, all the big ones in common use? GNU’s massive portfolio of software, Linux, multiple BSDs, Apache, Firefox, BusyBox, PHP, Perl, the many lineages of StarOffice, LaTeX, Debian, vim, fish, tmux, I mean this barely scratches the surface. Are you kidding me?
How many startups have failed over the last decade? I would argue that the norm is for any project to eventually cease. Only useful things with an active community (whether that community is for-profit or not) tend to last, until they are no longer valued enough to maintain. This goes for things in the physical world just as it does for software.
Windows NT will be with us longer than systemd and flatpak.
However ... the domain of operating systems is subject to weird constraints, and so it's not really appropriate to make some of the observations one might make in other domains. Nevertheless, I thought the point was that we want things to improve via replacement (a "bazaar" model), rather than stand for all time. We don't actually want technology "cathedrals" at all, even if we do appreciate architectural ones.
For me, walking through an old Souq gives me a similar feeling of awe / mortality / insignificance as viewing a cathedral or looking from the Colorado ranch land up to the Rocky Mountains.
Also some cathedrals have remained "Catholic" since their raising, but there are a lot that have changed from Christian to Islamic to Protestant ... both the cathedral and the bazaar's physical buildings are still present from the same era and both are used for their original purpose (marketplace or worship). And both have delibly shaped their regions by being engines of culture, innovation, and power.
I've been in tech and startup culture for over a thousand programmer-years (25-30 normal years). It wasn't dot-com or the crash. It was mobile. The mobile ecosystem has always been user-hostile and built around the exploitation of the customer rather than serving the customer. When the huge mobile wave hit (remember "mobile is the future" being repeated the way political pundits repeat talking points?) the entire industry was bent in that direction.
I'm not sure why this is. It could have been designed and planned, or it could have evolved out of the fact that mobile devices were initially forced to be locked down by cell carriers. I remember how hard it was for Blackberry and Apple to get cell carriers to allow any kind of custom software on a user device. They were desperately terrified of being commoditized the way the Internet has commoditized telcos and cable companies. Maybe the ecosystem, by being forced to start out in a locked-down way, evolved to embrace it. This is known as path-dependence in evolution.
Edit: another factor, I think, is that the Internet had no built in payment system. As a result there was a real scramble to find a way to make it work as a business. I've come to believe that if a business doesn't bake in a viable and honest business model from day zero, it will eventually be forced to adopt a sketchy one. All the companies that have most aggressively followed the "build a giant user base, then monetize" formula have turned to total shit.
The setting to allow unsigned apps could be per appstore tracked by an on-device sqlite database, so a badly-behaving app will be known by its installer.
Then there is both increased protection and accountability.
Of course maybe I'm overthinking it. It's common for people deep in the bowels of an industry to invent pointless jargon, like "deplane" for getting off an airplane. Anyone know where the term "sideload" was coined or by whom?
Murena with e/OS/ [0], Purism with PureOS [1], Volla with Volla OS or Ubuntu Touch [2], and Furei Labs with FuriOS [3].
Those are the companies actually trying to sell a phone versus Pin64 selling a device to tinker with.
Alternative is checking personally managed OSes like postmarketOS [4] and Ubuntu Touch [5].
[0] https://murena.com/ [1] https://puri.sm/ [2] https://volla.online/en/ [3] https://furilabs.com/ [4] https://postmarketos.org/ [5] https://www.ubuntu-touch.io/
Technically Android still allows installation of anything if you use the debugging tool. Maybe that is where we have to draw the line, I'm not sure.
From the mouths of rubes, I guess. The ID check at the airport has zero to do with safety or security and everything to do with the airlines' business model (no secondary market for tickets), enforced by government.
If it's really about protecting "airlines' business model", why did TSA recently start requiring REAL ID to board flights? Were airlines really losing substantial amounts of money through forged drivers licenses that they felt they needed to crack down?
A weird hill to choose to die on given that in practice it's not really a meaningful percentage of people that are using adblockers and the negative PR they get from these oversteps is massive.
If you want to install software on you MacOS machine, the same thing applies. It must come from a verified developer with an apple account, otherwise you get a warning and must jump through hoops to override. As of macos15.1 this is considerably more difficult to override.
If you want to install iOS apps, the apps have to be signed by a verified developer. Theres no exceptions.
I just dont see a future where being able to create and publish an app anonymously is going to be supported.
Becoming a verified developer is a PITA, and can take a while or be impossible (i.e. getting a DUNS number if you're in a sanctioned country might be not at all possible) but at the same time, eliminating the ability of our devices from running any old code it downloads and runs is a huge safety win.
Whenever I try to open an unverified app, this popup comes up saying "[AppName] Not Opened" "Apple could not verify [AppName] is free of malware that may harm your Mac or compromise your privacy." Then there's only two options to either press "Done" or "Move to Trash." - https://old.reddit.com/r/mac/comments/1ekv55h/cant_right_cli...
Your only option is to click on OK button, which won’t open the app. So how do you do it? - http://www.peter-cohen.com/2016/12/how-to-open-a-mac-app-fro...
Apple knowingly falsely claiming unsigned apps are "damaged": https://appletoolbox.com/app-is-damaged-cannot-be-opened-mac...
I won't be using any OS that doesn't allow me to step outside its walled garden, if I have any alternatives at all. With macOS it's quite simple - the second they won't allow apps from unverified/unsigned developers, I'm switching to Linux. On mobile, I might as well switch to iOS, since I'm not really sure what else Android offers anymore that's so compelling, other than being able to install apps directly. And then I'll just wait for a Linux phone or something.
This is strongly needed if surveillance laws like Chat Control are not to be trivially bypassed. This way applications that don't offer governments the required surveillance features can be banned and the developpers can be sued. Not looking forward to that.
No, this is just false. There's numerous, well-documented instances of malware making it past gatekeepers security checks. This move is exclusively about Google asserting control over users and developers and has nothing to do with security or safety.
The only "huge safety win" comes from designing more secure execution models (capabilities, sandboxing, virtual machines) that are a property of the operating system, not manual inspection by some megacorp (or other human organization).
Yeah, check for all the fake sora apps in the play store.
There are better arguments against this that other commenters here have provided (including "my device, my rule") but this isnt a strong argument.
Google have over-reached.
It is unacceptable to software developers to be unable to install software on their own phones, and this will lead to a successor to Android.
It will take time, but it will now happen.
You underestimate how much money & effort it takes to make an operating system.
However, I don't think they haven't measured the number of users installing apps outside of the Play store. May be they just don't care about the small % of total users who are a large % here on HN.
This is a part of a bigger trend, Cory Doctorow spoke about 13 years ago in his "The coming war on general computing": https://www.youtube.com/watch?v=HUEvRyemKSg
And this will creep out to the major desktop systems too, Apple is doing it with their stupid "non-verified app" and Windows looks more likely to do so with their "need Microsoft account to login" to windows.
Maybe they can make a comeback. If anyone at BlackBerry is reading this, just do it, please and thank you.
itg•2h ago
brazukadev•2h ago
You still can do that with PWAs in Android. Let's see for how long.
_imnothere•2h ago
And I wonder when can we stop lying to ourselves pretending "web"-apps are real (native) apps?
llbbdd•1h ago
jadbox•2h ago
detectivestory•1h ago
jadbox•1h ago
andrewl-hn•1h ago
omnimus•1h ago
Googles/Apples argument would have been much stronger if their stores managed to not allow scams/malware/bad apps to their store but this is not the case. They want to have the full control without having the full responsibility. It's just powergrab.
raw_anon_1111•7m ago
Scam apps are rife in the iOS App Store. But what they can’t do easily install viruses that affect anything out of its sandbox, keyloggers, etc
close04•1h ago
I think they’re just going to track down a random person in a random country who put their name down in exchange for a modest sum of money. That’s if there’s even a real person at the other end. Do you really think that malware creators will stumble on this?
This has to be about controlling apps that are inconvenient to Google. Those that are used to bypass Google’s control and hits their ad revenue or data collection efforts.
blaze33•1h ago
gjsman-1000•1h ago
Do that + identity check = bans for virus makers are not easily evaded, regardless of where they live.
voxl•20m ago
msh•46m ago
pkulak•35m ago
AdmiralAsshat•10m ago
Given that Google both owns Android/Google Play Store and YouTube: what do you think they would do with the developer information of someone who makes an app that skirts their ad-model for YouTube?
63stack•2h ago
Aachen•57m ago
pkulak•30m ago
The iPhone 17 is the same price as the Pixel 10
> better
But the iPhone 17 has better hardware features, like UWB, better cameras, and a _far_ faster CPU.
> open source
Only if you install Graphene, and then never install anything that requires Google Play Services, which is basically every commercial app.
blackbear_•9m ago
array_key_first•6m ago
2. I think it's better, I like the UX but that's subjective.
3. Not open source. AOSP is open source. Android is not open source.
wiether•1h ago
gumby271•1h ago
gdulli•1h ago