Somewhat OT: Captive portal on acess points instead complex supplicant at level end user?

Paul Bartell paul.bartell at
Mon Dec 15 03:48:33 CET 2008

This is exactly what Coova does. It blocks all access to the network,
until a correct username/password combination is made. The downfall to
such a system is 1. No encryption, and 2. Any somewhat-knowing
script-kiddie can spoof a mac address and hijack someone's session.

On Sun, Dec 14, 2008 at 5:54 PM, Sergio Belkin <sebelk at> wrote:
> Hi,
> Currently I'm using:
> *OpenWRT Kamikaze in AP's
> *Freeradius 2.1.2
> End users either use ttls or peap on their notebooks, as I have a LDAP
> server, each use his username and a password.
> Problem with this approach is that is somewhat complex for end users,
> they must either install a software or do a complicated configuration
> (think in end users terms, please). I'd want to have a open wireless
> network and that each user access to captive portal and enter his
> username and password, that captive portal "redirects" request to
> freeradius and freeradius in turn queries to ldap server.
> I'd want to know if CoovaAP (or something similar, what?) can perform
> such task as portal captive installed on APs.
> I'd be glad to read suggestions
> Thanks in advance!!
> --
> --
> Open Kairos
> Watch More TV
> Sergio Belkin -
> -
> List info/subscribe/unsubscribe? See

Random quote of the week/month/whenever i get to updating it:
"Opportunity knocked. My doorman threw him out." - Adrienne Gusoff

"At school you don't get parole, good behavior only brings a longer
sentence." - The History Boys

More information about the Freeradius-Users mailing list