Hacker News new | past | comments | ask | show | jobs | submit login

> since Android v9, apps have to communicate over HTTPS

That isn't true. It is the default but Android lets you override the defaults and use unencrypted traffic both in WebViews and in networking APIs.




It’s not true in iOS either. It’s possible for an app to whitelist specific domains.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: