If this can happen, is it possible that once mandatory developer verification comes into effect, all 3rd party apps will be uninstalled at first and require a re-install?
On one of my phones I do this plus delete/disable everything from google, except play services and play services framework (with everything disabled in there, only cloud messaging enabled). For apps on the play store I just download from aurora store.
The only thing I needed the play store for was to register 2FA for the government app on that phone. On the rest, it didn’t make a difference.
On another phone I use microg and it works fine too. I think attestation (safetynet) and disabled root and dev tools will make everything work fine, I put my hosts file using adb in recovery mode and no application has noticed. No banking app, nothing noticed.
I didn’t know that Android would block installs from “unauthorized sources” using play protect, I thought it would be hardcoded into play services or even on the android images.
Edit: for such a “secure” implementation, etc, it seems very weak, ngl
You are not logged in. However you can subscribe from another Fediverse account, for example Lemmy or Mastodon. To do this, paste the following into the search field of your instance: [email protected]
DROID DOES
Welcome to the Android community on Lemmy. Here you can participate in amazing discussions and events relating to all things Android.
5. Engage respectfully: Harassment, flamebaiting, bad faith engagement, or agenda posting will result in your posts being removed. Excessive violations will result in temporary or permanent ban, depending on severity.
6. Memes are not allowed to be posts, but are allowed in the comments.
7. Posts from clickbait sources are heavily discouraged. Please de-clickbait titles if it needs to be submitted.
8. Submission statements of any length composed of your own thoughts inside the post text field are mandatory for any microblog posts, and are optional but recommended for article/image/video posts.
On one of my phones I do this plus delete/disable everything from google, except play services and play services framework (with everything disabled in there, only cloud messaging enabled). For apps on the play store I just download from aurora store.
The only thing I needed the play store for was to register 2FA for the government app on that phone. On the rest, it didn’t make a difference.
On another phone I use microg and it works fine too. I think attestation (safetynet) and disabled root and dev tools will make everything work fine, I put my hosts file using adb in recovery mode and no application has noticed. No banking app, nothing noticed.
I didn’t know that Android would block installs from “unauthorized sources” using play protect, I thought it would be hardcoded into play services or even on the android images.
Edit: for such a “secure” implementation, etc, it seems very weak, ngl
That is because it is security theater.