802.1x strange phenomenon

Bryan Kadzban bryan at kadzban.is-a-geek.net
Sat Nov 3 22:41:27 EDT 2007


-----BEGIN PGP SIGNED MESSAGE-----
Hash: RIPEMD160

王奕元 wrote:
> EAP: Received EAP-Request id=2 method=4 vendor=0 vendorMethod=0
> EAP: EAP entering state GET_METHOD
> EAP: Initialize selected EAP method: vendor 0 method 4 (MD5)
> CTRL-EVENT-EAP-METHOD EAP vendor 0 method 4 (MD5) selected
> EAP: EAP entering state METHOD
> EAP-MD5: Generating Challenge Response

EAP-MD5 does *not* generate anything for the WPA/WPA2 pairwise keys.
You therefore *can't* use it in any wireless setup that requires dynamic
keys generated at association time (i.e. all of them that would be using
EAP).

Try EAP-PEAP-MSCHAPv2; that seems to be fairly well supported by most
RADIUS servers, and the PEAP part can generate a long random key.  (But
anything that takes a username and password, other than EAP-MD5, should
also work.)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.7 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFHLTFUS5vET1Wea5wRAzPAAJwMlBw0+9qlkhS+pyKtuWKDNCwFMwCgsw1q
X1PKKjOf/hDRPoFcVD9WHnw=
=0pHd
-----END PGP SIGNATURE-----



More information about the HostAP mailing list