Re: WPA authentication instead of Open/WEP

From: Dan Williams <dcbw redhat com>
To: Darren Albers <dalbers gmail com>
Cc: networkmanager-list gnome org
Subject: Re: WPA authentication instead of Open/WEP
Date: Fri, 06 Oct 2006 23:55:06 -0400

On Fri, 2006-10-06 at 17:10 -0400, Darren Albers wrote:
> It looks like you are running 802.1x with dynamic 64bit wep keys.  The
> iwlist you posted earlier indicates this as well:
> dev1804289383  Scan completed :
>          Cell 01 - Address: 00:0D:54:FD:43:07
>                    ESSID:"RohitsOffice"
>                    Protocol:IEEE 802.11bg
>                    Mode:Master
>                    Channel:6
>                    Encryption key:on
>                    Bit Rates:54 Mb/s
>                    Extra: Rates (Mb/s): 1 2 5.5 9 11 6 12 18 24 36 48 54
>                    Quality=100/100  Signal level=-145 dBm
>                    IE: WPA Version 1
>                        Group Cipher : WEP-40
>                        Pairwise Ciphers (1) : TKIP
>                        Authentication Suites (1) : 802.1X
> 
> 
> Unfortunately it doesn't look like NM supports this configuration but
> you can create a wpa_supplicant connection manually if you know the
> eap type (I am guessing EAP-TLS)

We probably need to detect the AP's allowed cipher combinations from the
WPA/RSN IE and set those appropriately in wpa_supplicant.  I think we
already need to do this to work correctly with certain access points
(Netgear wgr614).

That said, using WEP-40 as the group cipher is really, really wierd and
probably completely insecure, defeating the purpose of WPA in the first
place...

dan

> 
> 
> 
> On 10/6/06, Rohit Kumbhar <rohit kumbhar gmail com> wrote:
> > -----BEGIN PGP SIGNED MESSAGE-----
> > Hash: SHA1
> >
> > Stefan Schmidt wrote:
> > > Hello.
> > >
> > > On Thu, 2006-10-05 at 15:51, Rohit Kumbhar wrote:
> > >
> > > [...]
> > >
> > > Do you have the chance to reconfigure the AP using WEP _or_ WPA?
> > All right, I got a chance to look at the Wireless configuration here.
> > The details are:
> >
> > Security - 802.11g
> > Authentication - Open System
> > Encryption: Enabled
> > Cipher Mode: WEP
> > Key Size: 64 bit Alphanumeric
> > WPA Key Management: WPA authentication over 802.1x   (Requires 802.1x
> > Setup configured to Supported or Required)
> > [On a different page]802.1x Setup : Disabled, 802.1x authentications
> > not allowed
> >
> > Seems pretty normal stuff except the WPA Key Management part. We are
> > using 3Com Wireless LAN Enterprise Access Point.
> >
> > Anything not normal?
> >
> > Regards
> > Rohit
> >
> >
> > -----BEGIN PGP SIGNATURE-----
> > Version: GnuPG v1.4.5 (MingW32)
> > Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
> >
> > iD8DBQFFJsD+LZ2RlobdCNwRAhuJAKC+7LcXTbjZoyI3D9szXmmoCISUPwCfYnCq
> > RLB3A+WRAjEYkKvqLtMKEl0=
> > =4ImX
> > -----END PGP SIGNATURE-----
> >
> > _______________________________________________
> > NetworkManager-list mailing list
> > NetworkManager-list gnome org
> > http://mail.gnome.org/mailman/listinfo/networkmanager-list
> >
> _______________________________________________
> NetworkManager-list mailing list
> NetworkManager-list gnome org
> http://mail.gnome.org/mailman/listinfo/networkmanager-list

References:
- WPA authentication instead of Open/WEP
  - From: Rohit Kumbhar
- Re: WPA authentication instead of Open/WEP
  - From: Dan Williams
- Re: WPA authentication instead of Open/WEP
  - From: Rohit Kumbhar
- Re: WPA authentication instead of Open/WEP
  - From: Stefan Schmidt
- Re: WPA authentication instead of Open/WEP
  - From: Rohit Kumbhar
- Re: WPA authentication instead of Open/WEP
  - From: Darren Albers

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]