I think, for the tech-savvy, the latter is more accurate and I think it is very important to be able to crack open these sandboxes and tinker with processes. Be it to inject ad blockers, automate them, modify their appearance, etc. It should be a right of a user to be able to do these things.

For a few months all the UK banks I have accounts in send the list of all apps to the mothership.

I noticed it first when suddenly Revolut refused to start up because I had an app installed, Natwest and Nationwide at least inform prior to the data collection, but weren't concerned.

It ended up with the long overdue confinement of all the banking apps in their dedicated profile, but I'd love to be able to confine them further.

Google addressed similar isolation concerns (without breaking a tonne of APIs in incompatible ways) with Private Space and Work Profile: https://source.android.com/docs/security/features/private-sp...

Use Circle to Search? Native capability that works on every single app, and is close to perfect (with the exception of handling text at the very bottom/top of your screen that's covered by your navbar/Google logo).

These are more like byproduct of the fact that web apps are built on the stack not suited for modern UI apps. It's literally a text typesetting engine pretending to be a rendering engine for high-performance UI.

So, it can also be framed as:

- everything is selectable, even what shouldn't be - buttons, drawers, video players, etc - content is zoomable, which most of the time just breaks UX in hilariuous ways. Developers have to do extra-work to either disable zoom or make hacks/workarounds.

"Everything is selectable" and "everything is zoomable" makes total sense if it's a blog post. If it's a UI for the modern app, it does not.

But mainly don't expect any good web app integration on mobile, because it would hit the store 30% tax.

In the past, occasionally there would be an error message in a message box dialog that I wanted to copy and paste. And then I discovered that despite it not looking selectable, it actually was.

I don't want to accidentally select the text of my menu bar, or of a text box label, or a dialog tab title.

I've had enough browser apps try that on my phone. Usually they start to lag out and become unbearably slow due to the framework bloat, compared to native apps that have no such issues.

Real question here, what are you trying to do when you "swipe back"?

Only if you're stuck on a depreciated platform like Linux. If you are on Mac, native applications – real applications – are much more powerful and usable than any web wrapper on Linux.

I've noticed Linux users have taken a habit of proposing their broken way of using a computer through the browser for other platforms as well. But on other platforms we are already spoiled with quality software.

Here are some of the frustrations I had with PWA's.

There are massive differences between browsers and Android/iOS when it comes to storage, access to local files, and size limitations. Proper backup/sync of large files using IndexedDB, Cache API, or localStorage is not as straightforward as native storage.

Service workers aren’t designed for complex or long-running computations, But they’re more like lightweight assistants, and you would have a HUGE pain trying to accommodate all the different browser/OS limitations if you need predictable background sync/backup. This seems maybe to be better going forward due to frameworks like Ionic/Capacitor or Workbox.js tho.

PWAs are tethered to the web’s security model, which means they’re generally restricted to HTTP and HTTPS for communication. This limits direct access to protocols like SMTP (email) and FTP (file transfer). You’re stuck with web-friendly options like WebSockets or WebRTC, or you’ll need a server to act as a middleman. Building a torrent client would be really annoying due to the limited protocol access. The WebTorrent JavaScript framework, which can run in the browser, does not fully support traditional TCP/UDP torrent protocols directly but instead relies on WebRTC data channels. Therefore, your app will only connect to peers supporting WebRTC, which significantly reduces available torrents and peer counts. Also, there often is an added level of restriction to background processes on mobile.

There are also limits to access of the devices APIs: - NFC (partial Web NFC support in Android Chrome) - Bluetooth (Web Bluetooth limited to Chrome Android, absent in iOS) - Native contacts, SMS inbox, telephony, or system-wide calendars. - Some system-level sensors (barometer, precise accelerometer data).

Also: Web apps often perform slower on heavy graphics or computation than native apps due to lack of direct GPU access. I have not tested this myself, but I know this has gotten better.

Onwards: - PWAs can't directly register as the default handler for specific file types or URL schemes across the OS. - PWAs cannot reliably run background tasks (like precise location tracking, audio playback, VoIP callbacks, or continuous data monitoring) when inactive. - WebAuthn supports biometrics, but native biometric APIs (like Face ID/Touch ID) offer deeper integration for specific app functionality. This is a HUGE need for our firm, as we rely on it for easy authentication for our app, and customers love it over other authentication methods. - PWAs can't easily embed widgets into the OS home screen or system-level UI components like control center integration.

YES, PWAs are much more capable than some people think and could, in many instances, work just as well as a native app. (I use GeForce Now on iOS with not many problems.)

And this is not even touching on how much easier it is to use Android/iOS SDKs to put together an application, and user expectations (which might be WRONG when they think PWAs are lesser or more insecure, but these attitudes are still reality).

All that said, I prefer PWA over native myself due to publication freedom, but I get annoyed when you talk down to people, and you seem to be the one that doesn't understand that there are actual limitations.

I do most things on my desktop for the reasons you say but on a phone multiple tabs etc is a pain.

>

> You are currently using a webapp that doesn't do this. It's called Hacker News, and it never asks me to login every time on my phone.

Every time I visit Hacker News on my iPad I'm logged out. Apple has decided that if you don't visit a website often enough it will expire all your cookies for the site.

In practice that means I can log in to HN while I'm at the cafe one weekend and be logged out by the time I visit the next weekend.

GPs comment is something that people in politics would called sensational. Extreme rhetoric is great for upvotes because it stirs emotions but it’s not rational.

While apps are spying etc, making them is usually a no-brainer compared to churning and leaky web stacks. And probably not a single time a webapp loaded for me when I tried it outside standing in the wind trying to figure something out. It was always an app that started and helped and didn't ever scroll horizontally while doing so.

The disadvantage of native is barrier to install. Once that's done, the experience to the user is simply superior. True native experience, fast and predictable. As a developer it's easier to build those types of apps as well.

People who haven't used iOS might not understand this though as they've never seen "how things should be".

You cant slap a plain text field and assume that emulates the actual experience in any way.

Find a more niche subreddit like /r/<city_name>running (although location subreddits fall into a similar trap) or /r/longdistancerunning and you'd probably find them to be more interesting simply because moderators are beholden to a smaller community and their job is more about making things interesting for their niche and cultivating a community rather than just dealing with slurs, bots, and spam.

You seem to think Reddit Inc wants anything but control over the users. They are not at all interested in discussion or being a social network. If they could achieve their real goal without all the annoying comments, they would shut those off instantly.

Reddit is a narrative pushing machine first and foremost. The money they make on advertising - IS NOT - from the one of two ads you see per page.

The Reddit stock price is not at all reflective of their tech. It’s based on ability to push thoughts to users.

There is fundementally a social contract between Reddit and its moderators. Moderators get autonomy and control, and reddit gets content that keeps users around. As long as Reddit does not pay moderators, autonomy and control is all they can give moderators. I'm investing a lot of effort, and I'd like to retain some control. IMO creating a community is more like starting an open source project on Github with a lot of community contributions.

If you take away autonomy and control from moderators, what is in it for the moderator? Imagine if github started seizing projects wholesale, taking them over and installing new maintainers. People would move off the platform.

Some people say that moderators are unpaid employees, but IMO that is only to the degree that moderators are required to carry out Reddit's agenda and priorities. We don't call OS maintainers github employees. I don't mind if Reddit benefits from my communities, as long as I can run it the way I want. If you take away autonomy and control, moderators absolutely become unpaid employees.

If Reddit didn't like my policies and took my subreddits, I would take that as a strong signal that Reddit is not the place to build my communities. The API debacle, protests, and mod removals caused me to decentralize my community more. I spam a linktree in my subreddit that links to Discord and other resources, exactly to protect against community seizeure by Reddit.

I think you touch on some real issues. One is of namespacing; folks can sit on valuable portions of the namespace and basically extract rent. We have the same issues for domains, and haven't solved it there. Some places like github semi-solve it by putting repo's in organizations, but that shifts the namespace issue to the organizational level.

The other problem is second generation moderators. Most moderators are terrible at succession planning, and so generally chose terrible successors. Many second generation moderators don't understand the original decisions that shaped the community, and what makes the original community successfully. Reddit should do more to encourage succession planning, and teach moderators how to do it.

Even better understands might be pushing it. “Better tolerates”

The reason is that Apple demands that the UPN (the account ID) and the email address are the same. For us this is not the case (our UPN is our employee number as an email address, whereas our email address is just our name). And obviously we're not going to change this for ten thousand users because Apple wants to (most of which don't have Apple devices because we're a European company). Also, you have to manually decide what happens to each user that has already created an account with their corporate email address and what to do with the content they purchased on it. This is not feasible for a large corp. We have commented this to our Apple account manager for years and years but they simply don't care. If you work in this realm you probably know that Apple doesn't really care about things that matter for their corporate customers anyway. The consumer is their main client and it shows (unlike with Microsoft where it's the opposite).

So the whole account-driven enrolment (User Enrolment) as well as everything else depending on managed Apple IDs like DEP for Macs is completely out of the window.

The problem in my opinion is that I as an admin can simply query for example all the employees that have something like Grindr installed. Considering the current political climate in the US (or worse, the middle east where this can lead to a death sentence in some cases) it's obvious why this is super bad. And really, why should we be able to do this at all?

Fun fact from the MDM implementation - the most private way (at least to the company policies) to have a company-connected device is to buy a separate phone and install company's MDM on it. On company provided devices, the company may locate company's assets at any time but doing so on a personal device is a privacy breach.

Account driven MDM enrolment pushes the Pareto front when it comes to privacy/conveniency compromises from my point of view. I will ask my IT if they have already looked at it.

Android has this really well worked out with their work profile. It's like having a company VM on your phone. Really great separation.

But on Apple we can't use a similar option which I admit does exist, but there's too many strings attached (see the discussion above).

You don’t have WhatsApp then.

iOS added fine-grained (at the contact level) access to contacts data last year.

https://lifehacker.com/tech/you-can-control-which-contacts-a...

Same with storage scopes: one directory and that's it.

JFC. Are they disabled if you ask for the desktop site?

I suppose a more appropriate term of phrase would've been "I'd heard anecdotally...", but I agree I was lazy with my original reply. I appreciate the feedback.

I snorted when I got to the self-important haughtiness about reddit.

Why?

- You immediately recognized what they meant.

- They weren't advancing a claim, they were indicating a basis for their interrogative, likely to avoid seeming naive when claiming it out of nowhere.

- The article we're commenting on describes the same mechanism you claim differentiates iOS. ("register in advance...which applications...intends to query, and the list needs to be very short and motivated.")

- I've worked heavily on iOS and Android since 2009. As close to a graybeard as you can get in mobile. I'm searching, reaching, grasping for any sign you've done anything other than Google and link the first article you saw, and I can't find _any_. At all. But I don't think that's wrong. You're trying. Why is it wrong for the person you asked to try too?

- There's strong signs you didn't read the article we're commenting on.

- If you had, it is unlikely you would have said iOS was differentiated, then laid out the exact same mechanism described in the article.

- There's strong signs you didn't read the article you linked.

- On iOS you can register URL schemes in a plist, these aren't "external applications you intend to query" and the list does not have to be "very short and motivated"

I get cranky too, but, I am grateful I recognize it is very reddit to cry Reddit and edit it out, or delete.

Because this architecture predates the existence of the current privacy nightmare.

In fact it predates the general availability of the internet. How could a program you would install from a floppy/compact disk bought on a store behave maliciously if you didn’t or barely had access to the internet ?

And then it stayed like this because Windows is heavily marketed as being retro compatible.

From an API point of view, only one process is elevated. From a security point of view, if one process is elevated they all are, due to a lack of any effective mechanism that actually stops them.

Oh, and the UAC confirmations to elevate your apps permissions to root? People will gleefully confirm them without reading what needs access anyway, so you’re golden to do whatever you want.

The security model of Windows doesn’t exist.

Can’t tell if serious or not [1]. Also any program can read any saved password out of Windows Credential Manager.

https://en.wikipedia.org/wiki/Mimikatz

not that windows is keeping passwords in plaintext, but that it's not immediately obvious that un-sandboxed apps that run on your windows/linux/mac desktop have virtually unlimited other avenues to capture passwords given they can read the entire state of other windows at the very least.

I dunno maybe macos is slightly better, and wayland definitely has some things which are better about this, but desktop os and $locally_installed_app means $locally_installed_app basically has root, there is just an exploding amount of vectors.

I'd like to see a linux based distrubution use some of the sandboxing in Android, it would be a order of magnitude improvement over what is going on now.

PIN codes = postal codes.

For a serious answer then: Rather than segregating phone calling vs the rest, if you want to go to the hassle of maintaining multiple phones, I would put sensitive apps (i.e. bank apps) separated from the rest.

But ultimately it depends on which threat model you are trying to mitigate. Most people would worry about protecting their financial information. If you are worried about possible backslash from a fascist state, you shouldn't use normal phone calls at all and switch to a privacy app.

OTOH, a dedicated phone just to make phone calls makes sense if your threat model is your significant other.

> Third, f-droid apps are curated like a very rigorous linux repo.

Yes, I know. My question is is this one of the things they're screening for?

I suppose they must be too busy ticking off "anti-features" like "can communicate with non-Free services" to notice that sort of thing.

(No, really. F-Droid will tag applications like a Mastodon client as having "anti-feature: Non-Free Network Services", presumably because it can be configured to connect to servers running non-free software?)

On FreeBSD I can build a full copy from source (in fact I have to, there is no binary package). The only issue seems to be licensing, not source availability. Personally I don't care about licensing (I completely ignore it all anyway) and it doesn't stop you from inspecting the source code.

I think Obsidian is a really great package, I just happened to have moved over from OneNote which is horrible Microsoft mediocrity and doesn't even have a Linux app. And the web version is really useless, it needs to refresh every day and it can only search within the same tab, not a whole notebook. Such a mess. Obsidian is so quick and efficient <3 And there is full self-hosted syncing available, which I also use.