From: patricio retamales <patricioretamales1%gmail.com@localhost>
To: victor%dornea.nu@localhost
Cc: netbsd-users%netbsd.org@localhost, pkgsrc-users%netbsd.org@localhost
Sent: 29.9.'10, 14:55
2010/9/29 Victor Dorneanu <victor%dornea.nu@localhost>
Hi!
I've been trying to configure my wpa_supplicant client using EAP. Here's
my configuration:
network={
 Âssid="xxx"
 Âkey_mgmt=WPA-EAP
 Âeap=PEAP
 Âidentity="xxxx@xxxxx"
 Âanonymous_identity="xxx@xxxxx"
 Âca_cert="/etc/wpa_supplicant/xxxx.pem"
 Âphase1="peaplabel=0"
 Âphase2="auth=MSCHAPV2"
 Âpriority=2
 Âpassword="secret password"
}
That works fine. Then I found this
(http://hostap.epitest.fi/gitweb/gitweb.cgi?p=hostap.git;a=blob_plain;f=wpa_supplicant/wpa_supplicant.conf):
...
# password: Password string for EAP. This field can include either the
# Â Â Â plaintext password (using ASCII or hex string) or a NtPasswordHash
# Â Â Â (16-byte MD4 hash of password) in hash:<32 hex digits> format.
# Â Â Â NtPasswordHash can only be used when the password is for MSCHAPv2 or
# Â Â Â MSCHAP (EAP-MSCHAPv2, EAP-TTLS/MSCHAPv2, EAP-TTLS/MSCHAP, LEAP).
# Â Â Â EAP-PSK (128-bit PSK), EAP-PAX (128-bit PSK), and EAP-SAKE (256-bit
# Â Â Â PSK) is also configured using this field. For EAP-GPSK, this is a
# Â Â Â variable length PSK.
...
How do I specify a hash password in my configuration? I don't like
plaintext passwords hanging around in configuration files. Any ideas?
Cheers,
Victor
--
Victor Dorneanu
Contact
- Web/Blog: http://dornea.nu
GnuPG information
- KeyID = 0xD20870F4 (pgp.mit.edu)
- Key fingerprint = DD6B 5E09 242F 7410 3F90 492A 4CBA FD13 D208 70F4
Hi, try this
Âwpa_passphrase mywireless "secretpassphrase" >> /etc/wpa_supplicant.conf
before you can modify the options that you want.
Sorry my bad english.