I’m probably one of the few people still using a Pebble smart watch (still alive and kicking with Rebble!), and I’ve just gone through the app store and found a few cool apps that still work. Given that you have to give the Pebble android app quite a few permissions to be able to do its thing I’m now wondering if all the third-party apps can also access all those permissions. They’re mostly little FOSS one-person projects so I can probably have a nose through the source myself to check for dodgy behaviour, but does anyone know what the risks are in general?
In the digital age, protecting your personal information might seem like an impossible task. We’re here to help.
This is a community for sharing news about privacy, posting information about cool privacy tools and services, and getting advice about your privacy journey.
You can subscribe to this community from any Kbin or Lemmy instance:
Check out our website at privacyguides.org before asking your questions here. We’ve tried answering the common questions and recommendations there!
Want to get involved? The website is open-source on GitHub, and your help would be appreciated!
This community is the “official” Privacy Guides community on Lemmy, which can be verified here. Other “Privacy Guides” communities on other Lemmy servers are not moderated by this team or associated with the website.
Moderation Rules:
Additional Resources:
This is what I currently use with my pebbles. I’ve never used the pebble app, I just started with the FOSS option and stuck with it. Their wiki is really good https://codeberg.org/Freeyourgadget/Gadgetbridge/wiki/Pebble
EDIT: To answer the actual question from this angle, gadgetbridge is surprisingly security focused even though that’s not really it’s main goal. The developers do not allow it to make outbound connections and do not allow the watches it supports to make connections either (except where this is impossible to prevent, say if they can make their own network connections) which is why it doesn’t support in-app weather.
If I just deny the Pebble/Rebble app network permissions will that achieve a similar result?
Probably? Though I have no experience with the rebble app. I don’t think any of it’s features like searching for apps, weather, etc will work properly and some android apps really misbehave when you take away permissions that they expect to have. Try it and let us know! =]
I can confirm, I’m running Android 13, and whenever I remove notifications permissions to the pebble app, it somehow gets them back by itself and I have that annoyed “connecting” notification opened all the time 🤡
OK, so after a few days of denying the pebble app network privileges everything seems to be working fine! Obviously I can’t access the app store now but I can just temporarily reactivate network if I want to download something new. I don’t really use any apps that need network (in the pebble’s old age I’d rather it take it easy and save battery and let the much newer phone run the things I need to run!) so there’s no real loss for my use case.
Nice, honestly this sounds like the perfect use case for Gadgetbridge which is a much newer and actively developed tool in addition to not requiring network access. But your solution works fine and I’m sure it’s less work if it’s what you were already doing anyway rather than migrating to a new app. Glad it’s working for you.
I tried out gadgetbridge too, seemed largely functional though I did notice the Bluetooth drop. Also it apparently uses old Bluetooth rather then BTLE? I’ll stick with Rebble for now but it’s good to know there’s a decent replacement when it eventually packs in!