OESF Portables Forum

Everything Else => General Support and Discussion => Zaurus General Forums => Archived Forums => Security and Networking => Topic started by: bjornkeizers on January 29, 2006, 11:42:17 am

Title: Eap-ttls On Zaurus? How-to?
Post by: bjornkeizers on January 29, 2006, 11:42:17 am

Hello all,

My university uses SecureW2 (EAP-TTLS client) to secure the WiFi net. Does anyone have a clue how I can get my Zaurus to work with it? (What software do I need, where to get, how to setup, etc.)

It's probably a silly question, but I'm a total linux noob and I barely understand that kind of networking as it is, so any help would be a appreciated. I'd hate it if I couldn't use my Zaurus to browse at school.

Title: Eap-ttls On Zaurus? How-to?
Post by: Da_Blitz on January 29, 2006, 06:00:49 pm

wpa supplicant, should work. it also handels wep keys and joining wifi networks automatically for you, for that you will probelly need hostap and mabey openssl as well

Title: Eap-ttls On Zaurus? How-to?
Post by: Antikx on January 30, 2006, 12:59:34 am

I am interested in success stories as well. Our University is most likely moving to EAP-TTLS as well.
bjornkeizers... please post back if you get it going.
Thanks.

Title: Eap-ttls On Zaurus? How-to?
Post by: Da_Blitz on February 03, 2006, 06:02:59 am

it isnt complicated once you know how to do it  however it took me alot of reading about wifi and linux in gnereal, the zaurus just compilcates things

what you want/need:
Hostap drivers for you zaurus distro
wpasupplicant
wpasupplicant manual
the tldp.org guides on wifi and other stuff as required (they are good trust me)
to learn all the acronyms, there is ALOT

basically wpa supplicant handels auto connection to wifi hotspots, be they wpa eap wpa2 wep open shared, whatever it is a deamon that does the work for you

hostap is recommended for your own good, its known to work and was written by the same people who did wpa supplicant. it also handels everything you need (such as encryption as there is no hardware support for AES in prisim cards, they only help offload wep), wpa uses same stuff as wep but rotates the keys every 5 seconds i belive (dont quate me on that) wpa2-AES uses AES (encryption recomended for general use by the us) to secure your data

basically if you have hostap drivers and wpa supplicant you should get throgh it  if you understand enoght acronyms or know what you are trying to do, consult the man page and rember the .conf file is HEVILY documented, keep an eye on those permissions as wep/wpa keys are in cleartext (encrypting thrm from withing the program is pointless even if we didnt have the source code  ) if you are really concerned you could have a script to interface to gnupg to ecryptdecrypt before each session after you enter a pass but you would have to watch out for suspending your device *and therefore inserting somthing in an apm script to suspend resume it (offline attack)

Title: Eap-ttls On Zaurus? How-to?
Post by: Hrw on February 03, 2006, 07:28:18 am

you probably need:
- kernel with WE18 (2.4.18/2.4.20 can be patched up to WE18 without problems)
- hostap modules
- wpa_supplicant
- prism2 firmware atleast 1.7.4

Title: Eap-ttls On Zaurus? How-to?
Post by: Hrw on February 08, 2006, 03:29:27 pm

do one thing on your Zaurus:

Code: [Select]

root@collie:~# iwlist wlan0 encryption
wlan0     2 key sizes : 40, 104bits
          4 keys available :
                [1]: off
                [2]: off
                [3]: off
                [4]: off
          Current Transmit Key: [1]
          Authentication capabilities :
                WPA
                WPA2
                CIPHER TKIP
                CIPHER CCMP
if it show WPA then wpa_supplicant should be last needed thing.

PS I have to test WPA one day...