From 619d792cf7ad7c0fd3ee308ad0e8e8f5f22b38c0 Mon Sep 17 00:00:00 2001 From: Wonderfall Date: Fri, 25 Feb 2022 03:13:31 +0100 Subject: [PATCH] clarify --- content/posts/fdroid-issues.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/content/posts/fdroid-issues.md b/content/posts/fdroid-issues.md index 5d1552f..744fa65 100644 --- a/content/posts/fdroid-issues.md +++ b/content/posts/fdroid-issues.md @@ -134,7 +134,7 @@ If downloading APKs from GitHub, you can use `apksigner` to validate the authent apksigner verify --print-certs --verbose myCoolApp.apk ``` -Also, as written above: the OS pins the app signature for all profiles upon installation, and enforces it for app updates. +Also, as written above: the OS pins the app signature for all profiles upon installation, and enforces it for app updates. In practice, this means the source doesn't matter as much after the initial installation. > Should I really care?