• Matty_r@programming.dev
    link
    fedilink
    English
    arrow-up
    11
    arrow-down
    1
    ·
    11 months ago

    I was curious so had a look at that app. Hasn’t been updated in years and the original author appears unresponsive.

    I would probably advise against that, at least from a security standpoint.

    • BearOfaTime@lemm.ee
      link
      fedilink
      English
      arrow-up
      3
      arrow-down
      2
      ·
      11 months ago

      What’s it going to do, block the wrong call?

      It blocks anyone not in my contact list. The end.

      Just because somethings old doesn’t mean it’s insecure. I swear, I don’t know where people got this crazy idea stuff needs to be constantly updated.

      • Matty_r@programming.dev
        link
        fedilink
        English
        arrow-up
        6
        ·
        11 months ago

        No, youre right - just because its old doesnt mean its insecure. But honestly, it’s very short sighted to think there may not be potential security issues. I haven’t gone through the code, and I’m not going to, but the amount of problems that could crop up due to using an app that is not being maintained are potentially huge.

        Maybe its reaching out to a server to get a block list, and that server has now been exploited and is now distributing malware to your phone?

        Maybe the way it handles blocking calls has a huge flaw which can be exploited by another app to gain higher privileges than its own?

        Just looking at the issues list, a year ago someone even points out that through using a static analyzer they found 23 issues. Who knows the severity of them?

        This is all speculation. But to just wave off a geniune concern is ignorant.