Hacker News new | ask | show | jobs
by HappyRobot 2895 days ago
I thought Android apps were sandboxed [1]. The "needs access to my file system" is the way for data to transfer into that sandbox.

Android should add the option for temporary data access. I would prefer turning on the access temporarily to send 1 photo, then turning it off a few minutes later.

https://developer.android.com/training/articles/security-tip...
2 comments
amelius 2895 days ago
The problem is that apps want access to my entire filesystem, otherwise they break. So a solution is to make them think they have access, while in reality they only have access to the sandbox filesystem (containing just the files I want to manipulate with that app).
link
trash_panda 2895 days ago
What is the "file system permission" you are referring to?

See: https://developer.android.com/reference/android/Manifest.per...

If you don't mind sharing, what app are you referring to?

The file system itself should be well protected (on a non-rooted phone) as to prevent any unauthorized access to important data. Any app can only do whatever on the SD card if you give it permission to do so, but on the OS file system itself there isn't much they can do (again, on a non-rooted phone).

link
scarface74 2895 days ago
That doesn’t help. No app should need general access to the sd card.
link
trash_panda 2895 days ago
Completely agree.
link
devxpy 2895 days ago
I believe this is what you're looking for?

https://developer.android.com/training/secure-file-sharing/r...

link