在 chromecast 设置期间是否有任何 wifi 密码加密？

我在 Mac 上下载了 chromecast 应用程序，以便在初始设置期间检查这一点。

它确实通过未加密的 http 端口 8008 进行通信，但情况并没有那么糟糕。看起来加密是使用私钥/公钥解决方案进行的。

以下是流量转储的部分内容（一些长字符串被截断）：

POST /setup/connect_wifi HTTP/1.1
Host: 192.168.255.249:8008
Content-Type: application/json
Origin: https://www.google.com

{"enc_passwd":"GriLcctBGaDNe7Udohz1x7avTtn2B\...J0QsqpUuUQCKf1xTw2bbZgSOlnzmo\/SgUXkXq0cLqJ4fg7efDQcZQyA7MDqUsbt6LvXJt3htX8sZY0EVV1OPMm3GNgw==","wpa_auth":7,"wpa_cipher":4,"ssid":"mySSID","wpa_id":0,"scan_ssid":0}

GET /setup/eureka_info?options=detail HTTP/1.1
Host: 192.168.255.249:8008
Origin: https://www.google.com

HTTP/1.1 200 OK
Access-Control-Allow-Headers: Content-Type
Cache-Control: no-cache
Access-Control-Allow-Origin: https://www.google.com
Content-Type: application/json
Content-Length: 1224

{"build_version":"15098","connected":false,"detail":{"icon_list":[{"depth":32,"height":55,"mimetype":"image/png","url":"http://192.168.255.249:8008/setup/icon.png","width":98}],"locale":{"display_string":"English (United States)"},"manufacturer":"Google Inc.","model_name":"Eureka Dongle"},"has_update":false,"hdmi_control":true,"hotspot_bssid":"FA:8F:CA:xx:xx:xx","locale":"en-US","location":{"country_code":"NO","latitude":255.0,"longitude":255.0},"mac_address":"6C:AD:F8:xx:xx:xx","name":"Chromecast0000","noise_level":-90,"opt_in":{"crash":true,"device_id":false,"stats":true},"public_key":"MIIBCgKCAQEAuSE...7FP4C55KZcukmaVf6H/jiEYBHdAg53HnpmqSw0hRoY6GcF9uvGBVau...IDAQAB","release_track":"stable-channel","setup_state":20,"signal_level":-52,"ssdp_udn":"97d55d2...","ssid":"mySSID","uma_client_id":"AA97794C-...","uptime":1893.45,"version":4,"wpa_configured":false,"wpa_id":0,"wpa_state":4}

GET /setup/eureka_info?options=detail HTTP/1.1
Host: 192.168.255.249:8008
Origin: https://www.google.com

...

您可以自己快速检查一下！获取Wireshark，开始流量捕获并查看您和 Chromecast 之间发送了哪些数据。实际上这应该只需要 5 分钟。