The officially official Devuan Forum!

You are not logged in.

#1 2019-12-21 12:42:37

HevyDevy
Member
Registered: 2019-09-06
Posts: 296  

[resolved] wpa_supplicant

Not sure if there is something ive done wrong or wpa_supplicant itself.

Im using latest refracta nox beowulf (now openbox) iso on bare metal.

did the following from the root account,

wpa_passphrase <SSID> <PASS> /etc/wpa_supplicant/wpa_supplicant.conf

/etc/network/interfaces

auto lo
iface lo inet loopback

auto wlan0
iface wlan0 inet dhcp
    wpa-conf /etc/wpa_supplicant/wpa_supplicant.conf

from the user account i can fully see the output of below command, surely this is a security flaw?

~:$ cat /etc/wpa_supplicant/wpa_supplicant.conf 
network={
	ssid="SSID"
	#psk="PASS"
	psk=ddddddddddddddddddddddddddddddddddddddddddddddd
}

Last edited by HevyDevy (2019-12-21 16:32:31)


everyday is a beautiful day

eric the hobo

Offline

#2 2019-12-21 13:09:30

HevyDevy
Member
Registered: 2019-09-06
Posts: 296  

Re: [resolved] wpa_supplicant

seems one needs to remove this line #psk="PASS" in /etc/wpa_supplicant/wpa_supplicant.conf
and then setup /etc/network/interfaces like so..

auto wlan0
iface wlan0 inet dhcp
        wpa-ssid SSID
        wpa-psk w9n2d5930w60fabaaebkodabbf42777069520c3811472bd041e84017d550dl559

Last edited by HevyDevy (2019-12-21 13:10:21)


everyday is a beautiful day

eric the hobo

Offline

#3 2019-12-21 13:33:33

Head_on_a_Stick
Member
From: London
Registered: 2019-03-24
Posts: 843  
Website

Re: [resolved] wpa_supplicant

You don't need /etc/wpa_supplicant/wpa_supplicant.conf if you're calling wpa-ssid & wpa-psk in the interfaces file. The wpa_supplicant.conf file is only needed if you call wpa-conf.

To find out why it didn't work (the commented-out line is irrelevant but should be removed for security reasons) run wpa_supplicant directly to see any errors, but remember to bring the interface down first:

# ifdown wlan0
# wpa_supplicant -i wlan0 -c /etc/wpa_supplicant/wpa_supplicant.conf

Then bring the network back up when you're finished:

# ifup wlan0

Black Lives Matter

Offline

#4 2019-12-21 14:57:41

HevyDevy
Member
Registered: 2019-09-06
Posts: 296  

Re: [resolved] wpa_supplicant

so if calling wpa-ssid and wpa-psk from the interfaces file then /etc/wpa_supplicant/wpa_supplicant.conf can be deleted ?

that seems more secure considering /etc/network/interfaces is set (set myself) to restricted permissions as per https://wiki.debian.org/WiFi/HowToUse#W … d_WPA2-PSK

Last edited by HevyDevy (2019-12-21 15:02:09)


everyday is a beautiful day

eric the hobo

Offline

#5 2019-12-21 16:14:04

Head_on_a_Stick
Member
From: London
Registered: 2019-03-24
Posts: 843  
Website

Re: [resolved] wpa_supplicant

HevyDevy wrote:

so if calling wpa-ssid and wpa-psk from the interfaces file then /etc/wpa_supplicant/wpa_supplicant.conf can be deleted ?

Yes, that's right.

HevyDevy wrote:

that seems more secure

Well the wpa_supplicant.conf file only contains the SSID (which is publicly broadcast) and the hashed password, which is also in the interfaces file, so it's fine as long as the plain-text password is deleted.


Black Lives Matter

Offline

#6 2019-12-21 16:31:07

HevyDevy
Member
Registered: 2019-09-06
Posts: 296  

Re: [resolved] wpa_supplicant

Thanks for your help Head on a stick


everyday is a beautiful day

eric the hobo

Offline

Board footer