Ask Lemmy

27082 readers

2070 users here now

A Fediverse community for open-ended, thought provoking questions

Please don't post about US Politics. If you need to do this, try [email protected]

Rules: (interactive)

1) Be nice and; have fun

Doxxing, trolling, sealioning, racism, and toxicity are not welcomed in AskLemmy. Remember what your mother said: if you can't say something nice, don't say anything at all. In addition, the site-wide Lemmy.world terms of service also apply here. Please familiarize yourself with them

2) All posts must end with a '?'

This is sort of like Jeopardy. Please phrase all post titles in the form of a proper question ending with ?

3) No spam

Please do not flood the community with nonsense. Actual suspected spammers will be banned on site. No astroturfing.

4) NSFW is okay, within reason

Just remember to tag posts with either a content warning or a [NSFW] tag. Overtly sexual posts are not allowed, please direct them to either [email protected] or [email protected]. NSFW comments should be restricted to posts tagged [NSFW].

5) This is not a support community.

It is not a place for 'how do I?', type questions. If you have any questions regarding the site itself or would like to report a community, please direct them to Lemmy.world Support or email [email protected]. For other questions check our partnered communities list, or use the search function.

Reminder: The terms of service apply here too.

Partnered Communities:

Logo design credit goes to: tubbadu

founded 1 year ago

MODERATORS

Should I be jumping on the F-Droid bandwagon? (self.asklemmy)

submitted 1 year ago by wheresyourshoe to c/asklemmy

16 comments fedilink hide all child comments

Hi. I have just become aware of F-Droid. Is this something I should be looking into or downloading? What are the cons to doing so? Is it bad/dangerous in any way?

you are viewing a single comment's thread
view the rest of the comments

[–] Audalin 5 points 1 year ago (1 children)

I've been using F-Droid for some years. The things you should know:

the main repository hosts free and open source apps, you can see the source code if you're unsure if you can trust this particular app. The packages are compiled on F-Droid's servers from the source code, and are signed with F-Droid's signatures (which makes those apps incompatible with versions distributed in Google Play or directly as apk: if you decide to switch, you'll have to figure out how to backup and restore app data for this particular app);
it also partially protects from developers inserting malware in minor updates;
app updates occasionally take a week or two to get into the main repository, app developers can do nothing about that;
various projects host their own F-Droid repositories, which you can add in settings, to release updates quicker and maybe offer beta/nightly builds for testing, and maybe publish something the main repo wouldn't. Before adding one, ask yourself whether you trust this repo;
F-Droid automatically marks anti-features: ads, tracking code, non-free addons/network services/dependencies/assets, weak signatures, known vulnerabilities. For example, Stealth, a Reddit client, is marked as promoting a non-free network service, Reddit;
while the apps in the main repository might not represent some niches, some are represented very well and the general signal-to-noise ratio is way higher than in Google Play.

TL;DR: it's not bad at all, and not dangerous unless you do something unreasonable like blindly trusting every app and repo without looking at their website at least once. Your responsibility to determine whether something is trustworthy isn't abstracted away from you - but you're given tools to make your choices easier.

[–] wheresyourshoe 1 points 1 year ago

Thank you for the informative reply!