Wireless Provisioning Service Protocol
Artur Hecker
hecker at wave-storm.com
Fri Oct 7 19:40:09 CEST 2005
hi Josh
i know it's a bit OT but i think that it might still be interesting
for some of us.
> I'll try and keep this brief, because it's a bit OT. WPS doesn't
> seem to offer anything particularly novel, besides a proprietary
> mechanism for configuring the Windows supplicant.
imho it's as proprietary as PEAP is proprietary. or TTLS. or any
other EAP method which is not (yet?) an RFC. and it does offer new
possibilites.
> A much more sane approach, IMHO, is simple authentication-by-proxy
> as implemented by several roaming consortia.
are we still talking about L2 security? if yes, can you provide some
references on this? i don't know anything about it.
> Microsoft should put more effort into fixing their terribly broken
> supplicant, and stop trying to invent wheels...
that's where we almost agree :-) MS really could and should improve
their supplicant a lot, both in terms of correctness and in terms of
usability. it's still a pain in the ass to use. the supported EAP
methods are scarce. the API has changed several times since XP and
the newest one is difficult to decipher... (greetings to Tom).
however, i do expect from somebody as big as microsoft to do
research, to invent stuff and to specify new things. btw, that's what
the community was always critisizing MS before. they did hire some of
the best scientists (look at their R&D stuff), so why shouldn't they
invent new things now?
ciao
artur
More information about the Freeradius-Users
mailing list