From: Jim Thompson (jim_at_netgate.com)
Date: 2002-09-23 20:38:41 UTC
On Monday, September 23, 2002, at 12:35 PM, Glenn.Durfee_at_parc.com wrote:
> We have it working using the hostap_pci driver + xsupplicant on the
> client, with a commercial RADIUS server and a commercial access point
> (Orinoco). The driver required slight modifications (see my message
> to this list on Sept. 19). The client device is an IBM High Rate
> Wireless LAN MiniPCI (built-in 802.11b in the IBM Thinkpad.)
Thats interesting, since the Orinoco APs don't support per-STA keying. The Cisco's do, and it should be possible to make hostap do per-STA keying with a small bit of software.
> My understanding is that the AP maintains per-client WEP keys which
> are generated once per 1x auth (and regenerated after some period of
> time, e.g. 1 hr) and a broadcast WEP key which is the same across
> clients (also regenerated after some period of time.)
That is the preferred method, yes.
> Glenn
>
> -----Original Message-----
> From: Vladimir Ivaschenko [mailto:hazard_at_hazard.maks.net]
> Sent: Saturday, September 21, 2002 9:10 AM
> To: hostap_at_lists.ssh.com
> Subject: 802.1x and dynamic WEP keying
>
>
> Hi,
>
> I'm trying to find information on wheter dynamic WEP keying actually
> works with xsupplicant-based client + hostap(d) + FreeRADIUS, but
> didn't find any direct references so far.
>
> Did anyone check that? What cards did you use for the client? Is the
> session key generated once per session, or is regenerated after some
> period of time?
>
> I'm running a fixed outdoor wireless network and mainly interested in
> a solution which would provide facilities to periodically generate and
> distribute new WEP keys to all stations.
>
> --
> Best Regards
> Vladimir Ivaschenko
> http://www.hazard.maks.net/
>