Comment

Comment on Android 14 blocks all modification of system certificates, even as root

draughtcyclist@programming.dev ⁨1⁩ ⁨year⁩ ago

If I don’t have the ability to control which CAs I trust, things become useless fast. This is why I fully ditched chomeOS.

source

Sort:hotnew top

Kbin_space_program@kbin.social ⁨1⁩ ⁨year⁩ ago
Google: wants to push their browser based DRM, to which they would inevitably be the ultimate controller of, in the name of "safety".

Also Google: intentionally kneecaps the existing certificate system which is the main safety system of the web.

Gee, I wonder if the two are connected.

source
- IonicFrog@lemmy.sdf.org ⁨1⁩ ⁨year⁩ ago
  I heard this on the radio yesterday. Secretly ruthless is a good way to describe Google.
  
  SHAPIRO: OK. So big picture on this anniversary, 25 years in, if you could describe Google’s legacy in a sentence, what would that be?
  
  PATEL: Secretly ruthless.
  
  SHAPIRO: Oh, that’s rough. Wow. Secretly ruthless - that’s even less than a sentence. Give me a little bit more. Why do you say secretly ruthless?
  
  PATEL: Google has convinced everyone that it is this incredibly sincere and earnest company - that it’s just a bunch of goofballs making cool things. That is true. But I think if we just paid a little more attention to where Google’s money comes from - and it is almost entirely advertising - I think we would be able to see the company and its influence a little bit more clearly. But the truth is, it is an utterly ruthless advertising company that is very, very, very successful at delivering results to its clients.
  
  SHAPIRO: But Nilay, you didn’t mention how cute the Google doodles are.
  
  PATEL: Yeah, the - I understand. They’re very cute.
  
  npr.org/…/the-verges-nilay-patel-talks-googles-le…
  
  source
  - Jumper775@lemmy.world ⁨1⁩ ⁨year⁩ ago
    This is very true, although from what I’ve seen both sides are correct. They give very little guidance to any of the stuff they put out, see killing off stadia or how badly they have been messing up chromeOS and just let their engineers do what they want until they lose their way then it falls off. They just don’t care about that because the ad money keeps coming regardless. It seems almost like a result of the fact that google just hires talent so no one else can have it and then they just let them do whatever they want. It’s almost like there are two googles.
    
    source
    Wooki@lemmy.world ⁨1⁩ ⁨year⁩ ago
    Intellectual Property.
    
    That is it.
    
    You can’t protect a product or service will never reach customers. But you sure can protect a sold and failed product or service.
    
    source
- Sigmatics@lemmy.ca ⁨1⁩ ⁨year⁩ ago
  Honestly the entire certificate system is a fraud. You can see just how vulnerable it is with the recent Microsoft vulnerability
  
  source
  - lemann@lemmy.one ⁨1⁩ ⁨year⁩ ago
    I’m ootl on this one - what happened?
    
    source
    intelati@programming.dev ⁨1⁩ ⁨year⁩ ago
    Microsoft has been signing stuff that is being used maliciously.
    
    Plus they have has their keys stolen to create malicious stuff…
    
    source
    -> View More Comments
  - Kbin_space_program@kbin.social ⁨1⁩ ⁨year⁩ ago
    Never said it wasn't flawed.
    
    But Google itself is flawed. Their search results have been a joke for years now, top results are almost always malware now, no matter what you search for.
    
    source
- ramble81@lemm.ee ⁨1⁩ ⁨year⁩ ago
  And there we go. I was trying to figure out the “why?” beyond “think of the children it’s secure!” and that’s the part that makes it make sense.
  
  source
dashydash@lemmy.world ⁨1⁩ ⁨year⁩ ago
This will also make https filtering that is used by ad blocking apps impossible since you need to trust a certificate in order for it to work

source