[isf-wifidog] Multiple SSIDs - WPA support for Wifidog on the
WRT54g
François Proulx
fproulx at edito.qc.ca
Sam 18 Mar 13:52:27 EST 2006
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
There is most certainly a need to provide such a service, since it's
not every ISPs that provide POP / IMAP over SSL. And most people
don't know about security stuff, it's our job to *at least* protect
them over the air since anybody can eavesdrop ... We're geeks, we all
use TLS/SSL, SSH etc... but the average people has no idea what that
means.
On 18-Mar-2006, at 7:55 , Max Horváth wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> Multiple SSIDs won't be included in OpenWrt WhiteRussian - this
> feature has been added to Kamikaze, but is broken at the moment.
> And it is a low priority for the OpenWrt developers ...
>
> But I don't see much need for this feature ... any private data
> should be running on an encrypted protocol ...
>
> Cheers, Max!
>
> Am 18.03.2006 um 09:05 schrieb Francois Proulx:
>
>> Hi everybody,
>>
>> I've started investigating on WPA (Radius) in TKIP/AES mode
>> lately. I got
>> my WRT54g to authenticate users through a 802.1X / WPA scheme
>> against my
>> OpenLDAP (OS X 10.4 Server users database). I works really nicely and
>> provides per-user / per-connection encryption.
>>
>> What's even more interesting is that I read that the Broadcom chip
>> inside
>> the WRT54g can do multiple SSIDs (although all on the same
>> channel, but
>> it's not that bad in our case). DD-WRT will implement the feature
>> in its
>> next build. The feature has been requested on OpenWRT's Trac so it's
>> coming in the next few months.
>>
>> What this all means is that we could provide in-the-air encryption
>> for
>> user connected to our hotspots. One SSID would be in the clear (no
>> WEP or
>> WPA) letting new users create a free account. The second SSID would
>> provide a 802.1X scheme authenticating against a central RADIUS
>> server.
>> Wifidog would have to be modified to greet users already
>> authenticated and
>> redirecting them straight to the portal page.
>>
>> I know it's a low priority feature, but it's something that we've
>> been
>> talking about for a long time without any real solution since we
>> thought
>> we could not do multiple SSIDs.
>>
>> See ya
>>
>> _______________________________________________
>> WiFiDog mailing list
>> WiFiDog at listes.ilesansfil.org
>> http://listes.ilesansfil.org/cgi-bin/mailman/listinfo/wifidog
>>
>
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.4.1 (Darwin)
>
> iD8DBQFEHAM6+BKgC+eQ3ooRAtPDAJ0b2OangYkUouuaZBuEGpSL4sE9rQCeN79h
> zUcIKoRKFucJ/cLN+nQWzGA=
> =2xqB
> -----END PGP SIGNATURE-----
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (Darwin)
iD8DBQFEHFbrZVsK6AijBKARAshuAJ9bxu2EmJgXMYaTplqUFPaFCK2lxQCfcA9Z
+zuiYB8L/K9Md43sD798OfE=
=JFOa
-----END PGP SIGNATURE-----
More information about the WiFiDog
mailing list