AFAIK their application isn't the one that is doing the install. They're using the AndroidMarket to perform the install, which is signed properly to do this. This can be done after some reverse engineering.
-Tim Strazzere On Wed, Nov 2, 2011 at 12:59 PM, Stephen <[email protected]> wrote: > that makes sense. Not sure how http://www.appbrain.com seems to be > doing it. I don't think they are signed with the OEM platform key. > Thanks. > > On Nov 2, 1:33 pm, Tim <[email protected]> wrote: > > Ah, I thought I replied all previously -- guess not. To perform a silent > > install you need to satisfy the following two conditions; > > > > Use the INSTALL_PACKAGES permission and be signed by the PLATFORM signer > of > > the device you want it to work on. > > > > This means you need the OEM's, or whoever signed the platform, to sign > your > > application. The other way would just to gain root and run a "pm install > > package" > > > > -Tim Strazzere > > > > On Wed, Nov 2, 2011 at 10:13 AM, Craig Heath <[email protected] > >wrote: > > > > > > > > > I don't believe this is possible. My understanding is that the silent > > > install capability is a property of the Android Market application; > > > specifically it has the INSTALL_PACKAGES permission that is checked > > > for by the class > > > com.android.packageinstaller.PackageInstallerActivity. > > > > > Nothing you do to the app being installed will stop the user prompts, > > > it depends only on how the install is invoked (i.e. Android Market vs. > > > launching the .apk file). > > > > > On Nov 1, 6:34 pm, Stephen <[email protected]> wrote: > > > > Is there a way to have internal enterprise apps that are stored on > the > > > > company EXTRANET that is accessible by the device to download and > > > > install several apps via a silent download and install? > > > > > > I have built the download and install utility app but when I try to > > > > run on a device the security settings dialog is presented and > > > > employees are able to change these settings. > > > > > > Is there a way to sign the utility app with a trusted source key so > > > > that the OS trusts the lower lever access to the install APIs, so > that > > > > the install can is silent to the employees, with no iteraction > > > > required? > > > > > -- > > > You received this message because you are subscribed to the Google > Groups > > > "Android Security Discussions" group. > > > To post to this group, send email to > > > [email protected]. > > > To unsubscribe from this group, send email to > > > [email protected]. > > > For more options, visit this group at > > >http://groups.google.com/group/android-security-discuss?hl=en.- Hide > quoted text - > > > > - Show quoted text - > > -- > You received this message because you are subscribed to the Google Groups > "Android Security Discussions" group. > To post to this group, send email to > [email protected]. > To unsubscribe from this group, send email to > [email protected]. > For more options, visit this group at > http://groups.google.com/group/android-security-discuss?hl=en. > > -- You received this message because you are subscribed to the Google Groups "Android Security Discussions" group. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/android-security-discuss?hl=en.
