Somewhat OT: Captive portal on acess points instead complex supplicant at level end user?

Paul Bartell paul.bartell at gmail.com
Mon Dec 15 03:48:33 CET 2008


This is exactly what Coova does. It blocks all access to the network,
until a correct username/password combination is made. The downfall to
such a system is 1. No encryption, and 2. Any somewhat-knowing
script-kiddie can spoof a mac address and hijack someone's session.

On Sun, Dec 14, 2008 at 5:54 PM, Sergio Belkin <sebelk at gmail.com> wrote:
> Hi,
>
> Currently I'm using:
>
> *OpenWRT Kamikaze in AP's
> *Freeradius 2.1.2
> *LDAP
>
> End users either use ttls or peap on their notebooks, as I have a LDAP
> server, each use his username and a password.
>
> Problem with this approach is that is somewhat complex for end users,
> they must either install a software or do a complicated configuration
> (think in end users terms, please). I'd want to have a open wireless
> network and that each user access to captive portal and enter his
> username and password, that captive portal "redirects" request to
> freeradius and freeradius in turn queries to ldap server.
>
> I'd want to know if CoovaAP (or something similar, what?) can perform
> such task as portal captive installed on APs.
>
> I'd be glad to read suggestions
>
> Thanks in advance!!
>
> --
> --
> Open Kairos http://www.openkairos.com
> Watch More TV http://sebelk.blogspot.com
> Sergio Belkin -
> -
> List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
>



-- 
Random quote of the week/month/whenever i get to updating it:
"Opportunity knocked. My doorman threw him out." - Adrienne Gusoff

"At school you don't get parole, good behavior only brings a longer
sentence." - The History Boys



More information about the Freeradius-Users mailing list