For some reason HP hasn't (yet, at least) released a public SDK for print apps. So I did what seemed like a reasonable solution to the problem: ARP-spoof the printer's IP and sniff its traffic in Wireshark, in hopes of developing a proxy to enable custom print apps on a local server. Problem is, the eprint communication seems to be encrypted with SSL.
Wireshark shows two domains it seems to be communicating with: registration.hpeprint.com and reverse-proxy.hpeprint.com. More specifically, it sends DNS queries for some weird domains that are like h20153 and h20151 (I think) .www2.hp.com. These queries return CNAME records for the above two domains. Strangely enough, I didn't see any DNS queries for those domains afterwards. Nevertheless, I enabled SSL on my home Web server with a self signed certificate and set the DNS override on my router to return my server's IP for those requests. I tried touching Apps again, and it gave me an "access denied" error suggesting I upgrade the firmware.
I assumed this was because it didn't find whatever it needed when connecting to the server, but I saw that after receiving the DNS reply from my router, the printer didn't even attempt to connect to my server before giving up with that error. The Apache log confirms this, not showing any connections from my printer's IP.
I'm especially interested in this as connecting to reverse-proxy.hpeprint.com in a browser gives me a username and password prompt. As my printer seems to connect to this server, I'd like to get the username and password as well. After all, my printer seems to be authorized, therefore it stands to reason that as its owner, so am I. But the main reason is for the print apps.
My printer is a CM1415fnw. Does anyone know any tips for how I can disable SSL, intercept the traffic by other means, or develop custom print apps by other means? Thanks in advance.
Wireshark shows two domains it seems to be communicating with: registration.hpeprint.com and reverse-proxy.hpeprint.com. More specifically, it sends DNS queries for some weird domains that are like h20153 and h20151 (I think) .www2.hp.com. These queries return CNAME records for the above two domains. Strangely enough, I didn't see any DNS queries for those domains afterwards. Nevertheless, I enabled SSL on my home Web server with a self signed certificate and set the DNS override on my router to return my server's IP for those requests. I tried touching Apps again, and it gave me an "access denied" error suggesting I upgrade the firmware.
I assumed this was because it didn't find whatever it needed when connecting to the server, but I saw that after receiving the DNS reply from my router, the printer didn't even attempt to connect to my server before giving up with that error. The Apache log confirms this, not showing any connections from my printer's IP.
I'm especially interested in this as connecting to reverse-proxy.hpeprint.com in a browser gives me a username and password prompt. As my printer seems to connect to this server, I'd like to get the username and password as well. After all, my printer seems to be authorized, therefore it stands to reason that as its owner, so am I. But the main reason is for the print apps.
My printer is a CM1415fnw. Does anyone know any tips for how I can disable SSL, intercept the traffic by other means, or develop custom print apps by other means? Thanks in advance.