Python client for the $20 Colmi R02 smart ring

(tahnok.github.io)

353 points tahnok | 1 comments | 14 Oct 24 01:06 UTC | HN request time: 0s | source

Show context

fulafel ◴[14 Oct 24 12:14 UTC] No.41836800[source]▶

So you just scan for devices and then read? There's no authorization involved, these just publish the readings wirelessly for all interested?

replies(2): >>41837113 #>>41837431 #

michaelt ◴[14 Oct 24 13:40 UTC] No.41837431[source]▶

>>41836800 #

The basically-no-authorisation arrangement is somewhat common for modern bluetooth devices.

It's problematic for things like keyboards used for entering passwords - but if my next door neighbour wants to snoop on my living room thermometer or someone wants to snoop on my heart rate strap as I jog past their house? It doesn't seem to be much of a problem, in practice.

In the bad old days of bluetooth, loads of devices without screens would just hard code the pairing code to 000000 anyway. So it wasn't adding much security anyway. Unlike internet-connected devices, it's not exposed to a billion griefers from around the globe at any given moment.

replies(2): >>41837958 #>>41840010 #

1. fulafel ◴[14 Oct 24 14:37 UTC] No.41837958[source]▶

>>41837431 #

Ongoing read of your neighbours, roommates, co-workers etc health data from a distance including recent history is getting your hands on sensitive personal data in addition to health data. You can tell what they are doing, getting drunk or having sex etc.

↑