this post was submitted on 24 Mar 2026
143 points (96.7% liked)

Android

33684 readers
424 users here now

DROID DOES

Welcome to the Android community on Lemmy. Here you can participate in amazing discussions and events relating to all things Android.

The rules for posting and commenting, besides the rules defined here for lemmy.world, are as follows:

Rules

1. All posts must be relevant to Android devices/operating system.

2. Posts cannot be illegal or NSFW material.

3. No spam, self promotion, or upvote farming. Sources engaging in these behavior will be added to the Blacklist.

4. Non-whitelisted bots will be banned.

5. Engage respectfully: Harassment, flamebaiting, bad faith engagement, or agenda posting will result in your posts being removed. Excessive violations will result in temporary or permanent ban, depending on severity.

6. Memes are not allowed to be posts, but are allowed in the comments.

7. Posts from clickbait sources are heavily discouraged. Please de-clickbait titles if it needs to be submitted.

8. Submission statements of any length composed of your own thoughts inside the post text field are mandatory for any microblog posts, and are optional but recommended for article/image/video posts.

Community Resources:

founded 2 years ago
MODERATORS
Rooki@lemmy.world
L3s@lemmy.world
L4s@lemmy.world
143
Android is making it harder to install unverified APKs (infosec.pub)
submitted 7 hours ago by kamayatu24@lemmy.world to c/android@lemmy.world
35 comments fedilink hide all child comments
 

Starting in August, installing APKs from unverified developers will require a new procedure called Advanced Flow. It involves enabling developer mode, rebooting the device, and waiting 24 hours with biometric verification.

After that, you choose: allow the APK installation for 7 days or indefinitely. The procedure is a one-time process and applies to all versions of Android.

Will the 24-hour wait stop you from installing APKs outside the store?

you are viewing a single comment's thread
view the rest of the comments
[–] naeap@sopuli.xyz 8 points 5 hours ago* (last edited 5 hours ago) (2 children)

Do you have to go through this procedure for every APK or just once?
If it's for every side loaded app, does this include updates of already installed APKs?
That would make the system actual more insecure

[–] kamayatu24@lemmy.world 5 points 4 hours ago (2 children)

As far as I understand, this is done for every application installed. Every time. And it seems that the certificates are not unlimited and they will have to be renewed.

A similar system is already present on iOS.

[–] greencoil@lemmy.frozeninferno.xyz 5 points 3 hours ago

Wanna give a source for that? Everything I read said that after the 24 hour scare screen, you could optionally enable third party installation permanently. Literally nothing about certificates expiring. Where are you even getting this from?

[–] naeap@sopuli.xyz 3 points 3 hours ago

That's what I'm actually afraid of
Hopefully Linux can soon step up and fill the gap.

On a site note:
I've pre-ordered the new jolla phone in hopes to have pretty much a Linux phone with Android app compatibility layer.
But since my pre-order I haven't heard anything about it anymore and I can't find a blog/news page providing any information about progress or something.
Maybe people in this thread are similarly inclined to Linux phones and have a link for me...?
I've already sent a mail to Jolla about that - but just today...

[–] frongt@lemmy.zip 1 points 4 hours ago (1 children)

If it's like existing hurdles, once, like enabling developer mode. I don't think updates or subsequent apps will require more hoops.

[–] naeap@sopuli.xyz 2 points 3 hours ago

I don't think so either, but at the current level off stupidity all around, I would like to have something at face value