MAC authentication using FreeRadius

jrun darwinskernel at gmail.com
Tue Dec 29 11:51:35 CET 2015


On Tue, Dec 29, 2015 at 02:45:51AM -0500, Max .M wrote:
> Also, security is not an issue for them, also it's just basic guest access
> on a separate network.

then why don't you just make it a hotspot with no security at all? apps
should encrypt end-to-end so you should be in clear legally. you could
probably hide the SSID to keep flies off and your usage low (for hotspot
best is to have unlimited usage though). and _then_ monitor (can be
automated) the MACs and pretty machine names. that should give you a good
gauge of who might be [ab]using the hotspot excessively and make an
educated guess on which one to block. this all can be circumvented of
course but so is user_name/password since it's impossible to install
certificate on every machine of every clientèle.

now someone please correct me if i'm wrong :)



jrun


More information about the Freeradius-Users mailing list