Reverse engineered the WiFi pairing of my "Max Hauri MaxSMART 2.0" smart plug yesterday evening. Turns out it uses this great protocol called EasyLink. EasyLink is used to tell a device that isn't in a WiFi the WiFi credentials by sending some UDP packets on the WiFi. Sounds pretty neat, and must be very secure. The thing is, it can be secure, it'd support encryption of the credentials with a key shared by the sender and receiver. However Max Hauri didn't opt to do that.
EasyLink also has an evil twin, SmartLink, which sends two bytes per packet, stored in the target IP of the packet, another great way to leak your WiFi credentials.
chaos.social - because anarchy is much more fun with friends.
chaos.social is a small Mastodon instance for and by the Chaos community surrounding the Chaos Computer Club. We provide a small community space - Be excellent to each other, and have a look at what that means around here.
Follow @ordnung for low-traffic instance-related updates.
The primary instance languages are German and English.