First look: Xiaomi Smart Band 8

Yesterday I bought a fitness tracker. My wife and daughter both have one since long, and I started counting my steps when I first got an iPhone from the company, and later the used Google Pixel 4a from my wife. And while counting steps with a phone is good, and all that most people would probably need, I still also wanted those steps when I do *not* carry my phone, plus having a look at some other statistics like sleep tracking and so on.

Both Mitchie and Zuleikha (or Aki, which she prefers) are using FitBit devices. Mitchie lost her Charge 4 last year and got the Charge 5 soon afterwards, Aki has her Inspire 2 since about that time (or a bit earlier). But I didn’t want to go the Google route, and here’s why. Mike Kuketz, a German security consultant once mentioned an open source tracker software which doesn’t send every measurement to the big clouds for their analysis, so I was interested in that program called “Gadgetbridge” since a while. The best supported devices are those from Huami (aka Amazfit) and Xiaomi which use Huami’s “Zepp” app, but since the last update to Gadgetbridge, even some newer devices which use different protocols are supported – see here.

So my initial plan was to get a Xiaomi Smart Band 7 or an Amazfit Band 7, both of which originally use that Zepp app, and both being able to be used with Gadgetbridge instead. However, at our local electronics chain store, only the newer Xiaomi Smart Band 8 was offered, so I took that one instead. And to make matters short (or TL;DR in “modern” speech): no, I haven’t got it running with Gadgetbridge yet (support *is* still experimental), but I’m still glad I got this one, even tho it feels a bit strange to have a secure system like GrapheneOS, and then to install Xiaomi’s Mi Fitness software onto it – but in the long run, this will most probably change.

So what is it like? Well it counts my steps (and less than the free and open source “Paseo” software on the phone before, but it’s said to be pretty accurate), it also tracks my sleep, counts my heart beats, blood oxygen, and all that stuff – what most of these devices do. The Xiaomi software is pretty colourful, as are the hundreds of watch faces you can install with a single click. Here are some screenshots of the software running on my phone:

In case you want a comparison of some of these devices, here is a German one from FitForFun, and the guys from Heise’s Techstage had an almost similar result. But of course they don’t even think about using said devices with free and open source software, so choose wisely. Of the older generation (compatible with Zepp apps and such with Gadgetbridge, except the Huawei device), there’s also a nice video, also in German, here.

I will report more later, since I have the device more or less since a single day only, and this is my first one (although I can compare it to those FitBits, and to be honest, Aki was a bit jealous about that Goose watchface you could choose for mine)… 😉

Like always, thanks for reading.

Update, later on the same day:

Got Gadgetbridge working by now on the Pixel 6a (had tried it on the 3a before). And I’m still exploring it of course, but here’s a first screenshot from the phone:

Gadgetbridge working with the Xiaomi Smart Band 8 on the Google Pixel 6a running GrapheneOS

So for the moment I’ll have deactivated Xiaomi’s app and this one active instead. Switched the battery usage from ‘Unrestricted’ to ‘Optimised’, because this doesn’t have to be active when I don’t want it to. So let’s see how this develops. But I’m glad that I’ve been successful.

And again, thanks for reading.

The Wind-Up Bird Chronicle

Recently a friend an I were talking about Haruki Murakami‘s books, and when we asked each other’s favourites, my friend’s answer was “Killing Commendatore”, while my first reaction and answer to this was “1Q84”.

And while both are brilliant, by re-reading first “Kafka On The Shore”, and after that, “The Wind-Up Bird Chronicle”, my mind has changed (at least for now; I began re-reading “Killing Commendatore” but after a few pages interrupted that to read the ones mentioned above first).

Like probably every author, Murakami has recurring themes, topics, and sometimes even characters – the “hollow man” being a figure in “The Wind-Up Bird Chronicle”, and “hollow men” being a concept in “Kafka On the Shore”, or Ushikawa being both present in “The Wind-Up Bird Chronicle”, but having a much more prominent role in the third book of “1Q84”.

I think now that “The Wind-Up Bird Chronicle” was probably the best I’ve read so far of Murakami’s, it’s also a very sad one at times, and the described cruelty (and the nonsense of war) is frightening. The most frightening figure of all is “Boris the manskinner”, a Russian who was elsewhere compared to Vladimir Putin, and let me cite from the English translation why I had the same thoughts:

My own country is hopeless. It was almost better under the czars. At least the czar didn’t have to strain his empty head over a lot of theory. Lenin took whatever he could understand of Marx’s theory and used it to his own advantage, and Stalin took whatever he could understand of Lenin’s theory (which wasn’t much) and used it to his own advantage. The narrower a man’s intellectual grasp, the more power he is able to grab in this country.

Brilliant, isn’t it? And to have “Boris the manskinner” aka Vlad being the ones who took whatever they could understand of Stalin (less than Lenin, much less than Marx), but both equally brutal, yes that seemed to fit. If you can stand it, read it.

More about Haruki Murakami here. And as always, thanks for reading.

One of the few reasons to start Windows…

… are updates when I read about them in online media. And today I’ve got their 23H2 version of Windows 11 (because I selected to not download and install as soon as possible):

As you can see, I’m using a local account, and that’s also the reason that their news aren’t personalised (and even if, they’re not that interesting anyway):

In fact, I mostly start Windows for these updates, and from time to time because I want to convert a raw photo from my camera with the OM System Workspace – and I probably should try that under Wine on Linux again. But OTOH, I also added another local account on my machine for our daughter, so she could try Genshin Impact on it. And although we only have the integrated graphics from our AMD Ryzen 7 5700G processors, seeing that on my Eizo Monitor with its 1920×1200 resolution is beautiful, and a much more immersive experience than having it on a phone, according to Zuleikha. So for the moment, Windows stays on my SSD, together with Debian (my main OS) and Arch Linux (for experiments).

Like always, thanks for reading.

P.S.: why I don’t download and install software as soon as it’s available? Because I like software when it’s ready, like the Debian Release team says: quando paratus est. For a rolling release and the latest and greatest, I have Arch, which I like a lot more than Fedora. (This article was written on it.)

Strategic (and thus, management) errors

I really like Asus, the Taiwanese manufacturer of fine mainboards. Although they’re too much intended for gamers in my humble opinion, and what I don’t like so much are the boot screens of my wife’s (µATX) mainboard with the “Tough Gaming” or mine with the “Republic of Gamers” hints – we’re not gamers at all, and using AMDs Ryzen 5700G processors, we instead built energy-efficient “work” machines.

But this is about phones, and the Asus Zenfone line could be the optimal Android phones – they’re small, very capable with their latest Qualcomm Snapdragon chips, and they even still have 3,5mm headset jacks, so bravo to all of that. Okay, starting at around the 800€ mark here in Europe, they’re a bit expensive, so they have to compete to Google’s newest Pixel 8 – and that fight, they lose on several points:

First, the Asus phones only have support for two years and Android version upgrades, while Google’s newest offer 7 years. Second, they lack the Titan M security chip of Google’s devices which even allow alternate boot ROMs to be re-locked and verified with cryptographic keys, and third, the latest Zenfone 9 and 10 (and now also 7) lines don’t even offer to unlock their bootloaders anymore, which means that after those meager two years of support, you’re left in the cold and rain – and those phones will go to landfills much too early.

Read this report at Android Authority, or the XDA Developers’ forae about this if you wish, or write to Asus if you really care (I did). But as a recommendation for good phones, read this one from Privacy Guides.

Also, in case you’re from Germany and read “best buy” lists like this one, please reconsider: I’ve got a Google Pixel 6a beginning of this year, when they were at 319€, and everything on Privacy Guides still applies for it. So I wrote to that author as well, mentioning that we still get monthly updates (from DivestOS) for ten year old Google Nexus tablets or their Pixel 3a. No e-waste, no landfills, still (with some restrictions) usable.

And like always, thanks for reading.

Nothing to Hide

If you’re reading this blog regularly, you might have asked yourselves why all the thoughts about security, privacy, freedom, and so on lately? And you might be one of those who say “I have nothing to hide”. Well…

This one is a must see. It helps if you understand English, French, and German at least a bit, but even if you don’t, watch it to the end:

This comes from the PeerTube, and it promotes those free and decentralised services, and for good reason as you will hear. So please do yourself and us all a favour and stop using Facebook, Whatsapp, and all of that – and replace it with something like Signal or even better, XMPP. We will all profit from it.

Oh, and in case you have an old Android phone which isn’t supported with regular updates anymore, try DivestOS. And if you have a new one from Google, try GrapheneOS (or else, DivestOS again). Sure you can’t live without that intrusive Play Store? Have a look at F-Droid instead. Or are you using Apple instead? Maybe think again… and please start encrypting. You can at least do that even if you stay with a standard Google or Samsung or Apple device.

As always, thanks for reading, and for viewing.

Qotd, from Bill Beebe

He wrote it yesterday according to his blog post entry date, but I’ve found it today. And because it’s just four lines in my browser, instead of citing him here, I’ll give you Bill’s link to what I consider the quote of the day for today…

Beautiful. Thanks Bill.

Some security and privacy related links

A musician friend recently mentioned the German-speaking site of Mike Kuketz, and indeed that is a good one, if you speak German you could have a look at/into his “Empfehlungsecke“, which I really recommend.

And a photographer friend recently mentioned that he had switched his old mobile phone to DivestOS, and they also have a great list of applications and services which they recommend. In fact, Mike Kuketz also recommended DivestOS, although with the slight caveat that this is a one-man show. And that man (from DivestOS) recommends for new phones to get GrapheneOS if it can be installed on them (currently only available for Google Pixel devices).

And like GrapheneOS is the most secure operating system for mobile phones at the moment, Qubes OS is the one for desktop PCs.

But who am I, don’t believe just me – go and visit Privacy Guides, and have a look around. Their overviews of Android, Linux, and Qubes should tell you more, and their recommendations for Android or Linux are also worth a look, same as the ones for all kinds of programs/applications. Even if I prefer Debian and they prefer Arch, we still both agree to the fact that the latter is probably not the best for beginners (but better than its derivates, even if these are way easier to install).

Anyway, here you’ve got some links with very good info, so go and read – and I hope that these will be helpful. Like always, thanks for reading.

There is that word again…

When scanning the news, I stumbled upon an article in Wired with the title “The Reddit Blackout Is Breaking Reddit“, itself being based upon another article in EFF titled “What Reddit Got Wrong“. And both of these articles cite (but link to different places in the web) a third article by Cory Doctorov titled “Tiktok’s enshittification“.

And there is it, that word. Enshittification. To cite Cory a bit more, just with his TL;DR “executive summary”, he explains it as follows:

Here is how platforms die: first, they are good to their users; then they abuse their users to make things better for their business customers; finally, they abuse those business customers to claw back all the value for themselves. Then, they die.

Cory Doctorov, on his own Pluralistic.Net website

Well it didn’t start with TikTok of course, and not with Twitter, nor will it end with Reddit. But what all these sites don’t seem to understand is that no one gave them the “right” to live and prosper by content which was created by others – namely, their users, moderators, and third-party programmers. And the fact that this is happening before Reddit even “went public” (meaning to the stock market with probably millions or billions of investment) shows what was also described quite nicely with the following analogy from EFF’s Rory Mir:

“You can’t inflate the balloon forever. It will pop at some point.”

Rory Mir of the Electronic Frontier Foundation

That describes capitalism as good as it gets imho. The EFF has btw a very nice tool to check which infos your browsers are leaking, see their “Cover Your Tracks” page and tool.

And to see Cory Doctorov’s famous article cited again and again reminds me to check out his books again on his Craphound page, some of which you can download and read for free, some even in German or other translations. In case you don’t know Cory and haven’t read any of his books yet, for starters I’d recommend his “Little Brother“. Then “Homeland“.

And like always, thanks for reading.