Whats the go to method for installing apps? Aurora? F-Droid? Wouldn't mind getting thoughts on this or even his preferred way of installing apps.
Conversation
Replying to
If the developer provides a self-updating mechanism for their app, it makes a lot of sense to get it directly from them.
F-Droid has serious issues with the security of their infrastructure and the app. Updates are often very delayed and they make undocumented changes to apps.
3
1
7
Lots of people recommend F-Droid but it has some serious flaws and they're completely not open to acknowledging or addressing them. We expect many users are going to end up getting compromised when the poorly maintained/secured F-Droid infrastructure ends up compromised...
1
1
2
Aurora Store is an alternate frontend to the Play Store. It's possible to use the Play Store itself too. Either way, the Play Store requires an account.
Aurora Store automatically obtains a shared throwaway account by default for convenience and as a form of privacy feature.
1
2
The shared throwaway accounts used by Aurora may be problematic, since someone could log into the account and change settings. Aurora also doesn't provide the same security checks as the official Play Store client. It's up to you which one you want to use.
Apps increasingly depend on Play Asset Delivery and Play Feature Delivery which require the official Play Store client instead of legacy OBBs which are deprecated and forbidden for new apps. In-app purchases and other Play Store services also require the official Play Store.
3
Other than the apks being hosted on their site which is questionable, is there an issue with sites like apkpure?
1
They're third party services with highly questionable security practices. It's better to obtain apps directly from the Play Store using either Aurora Store or the Play Store itself (which works via sandboxed Google Play) rather than involving a third party site in it.
1
2
Show replies