Active Topics
-
Not clickbait "NOKIA STILL MAKING PHONES, BUT FOR INDUSTRIAL USES" (0)
to Competitors by deutch1976 - 3 hrs, 11 mins ago -
Phone Camera Competition April 2021: "Funny & Foolish" (34)
to General by nonsuch - 12 hrs, 33 mins ago -
What's the best Handheld gnu/linux machine for 20XX? (78)
to Competitors by clort - 1 day, 11 hrs ago -
Unofficial Storage for camera phone competition... (62)
to General by catbus - 1 day, 19 hrs ago -
Maemo-Leste pre-alpha announcement (512)
to Maemo 7 / Leste by nonsuch - 2 days, 21 hrs ago -
The Intel RealSense Smartphone prototype (0)
to Competitors by n950 - 2 days, 23 hrs ago -
Maemo Leste Playground (57)
to Maemo 7 / Leste by clort - 3 days, 20 hrs ago -
A Palm OS thread ... and a thank you to the community (23)
to Alternatives by bradvesp - 4 days, 20 hrs ago - more...
|
2010-01-31
, 04:37
|
|
Posts: 1,427 |
Thanked: 2,077 times |
Joined on Aug 2009
@ Sydney
|
#2
|
Nokia said they are not adding support for WPA2-LEAP. See below:
https://bugs.maemo.org/show_bug.cgi?id=3655
There is also a thread on this. Basically, N900 won't get the support.
http://talk.maemo.org/showthread.php?t=37140
https://bugs.maemo.org/show_bug.cgi?id=3655
There is also a thread on this. Basically, N900 won't get the support.
http://talk.maemo.org/showthread.php?t=37140
|
|
2010-01-31
, 12:05
|
|
Posts: 376 |
Thanked: 56 times |
Joined on Jan 2010
|
#4
|
Its a security compromise AFAIK
|
|
2010-01-31
, 12:10
|
|
Posts: 7 |
Thanked: 0 times |
Joined on Jan 2010
|
#5
|
Is there any alternatives?
What are the security compromise??
What are the security compromise??
|
|
2010-01-31
, 12:20
|
|
Posts: 376 |
Thanked: 56 times |
Joined on Jan 2010
|
#6
|
LEAP is fundamentally weak because it provides zero resistance to offline dictionary attacks. This is because it solely relies on MS-CHAPv2 (Microsoft Challenge Handshake Authentication Protocol version 2) to protect the user credentials used for Wireless LAN authentication. MS-CHAPv2 is notoriously weak because it does not use a SALT in its NT hashes, uses a weak 2 byte DES key, and sends usernames in clear text. Because of this, offline dictionary and brute force attacks can be made several orders of magnitude more efficient by a very large (4 gigabytes) database of likely passwords with pre-calculated hashes. What was once thought to be a strong password just became pathetically weak and breakable within minutes.
| The Following User Says Thank You to *Sonic* For This Useful Post: | ||
 |
|
2010-01-31
, 14:35
|
|
Administrator |
Posts: 1,036 |
Thanked: 2,018 times |
Joined on Sep 2009
@ Germany
|
#7
|
Originally Posted by firechaos
PEAP, EAP-TTLS a.o.
Is there any alternatives?
Edited title and text, moved to Maemo5
__________________
useful links for newcomers: New members say hello, New users start here, Community subforum, Beginners' wiki page, Maemo5 101, FAQ
useful links for newcomers: New members say hello, New users start here, Community subforum, Beginners' wiki page, Maemo5 101, FAQ
|
|
2010-04-27
, 11:17
|
|
Posts: 1 |
Thanked: 0 times |
Joined on Apr 2010
@ Germany
|
#8
|
Hi,
I am a bit fed up with the answers on this issue.
I think it is quite easy to state that LEAP is insecure. Even though this is true (although with a strict password policy it is still difficult to hack) the reality is that as of today a lot of companies still use it...
So how can Nokia neglect this?
Unfortunately I am not wise enough to even think about programming a tool that could do this. No one out there who is capable of doing so? I cannot imagine this is a h/w issue, a driver should do, no?
Looks like there are enough people around who would welcome this feature...
- gaspode
I am a bit fed up with the answers on this issue.
I think it is quite easy to state that LEAP is insecure. Even though this is true (although with a strict password policy it is still difficult to hack) the reality is that as of today a lot of companies still use it...
So how can Nokia neglect this?
Unfortunately I am not wise enough to even think about programming a tool that could do this. No one out there who is capable of doing so? I cannot imagine this is a h/w issue, a driver should do, no?
Looks like there are enough people around who would welcome this feature...
- gaspode
|
|
2010-04-27
, 11:49
|
|
Posts: 20 |
Thanked: 6 times |
Joined on Apr 2010
|
#9
|
Originally Posted by firechaos
I managed to connect to cisco leap
I suggest Maemo5 should have support for EAP-LEAP. All S60 symbian phones have WPA2 EAP-LEAP, N900 should not be an exception. IF its main feature is on the internet usage of it. There should be EAP-LEAP! It is also very important for me, I hope to see it coming to the N900 soon.
I've used wpa_supplicant
|
|
2010-04-27
, 11:59
|
|
Posts: 20 |
Thanked: 6 times |
Joined on Apr 2010
|
#10
|
if you need here's the configuration file:
ctrl_interface=/var/run/wpa_supplicant
# 1 - here, 0=driver, 2=driver++
ap_scan=1
#ctrl_interface_group=wheel
# may need to be 1
eapol_version=1
fast_reauth=1
network={
scan_ssid=1
mode=0
ssid="my-ssid"
proto=WPA
key_mgmt=WPA-EAP
pairwise=TKIP
group=TKIP
eap=LEAP
priority=2
auth_alg=LEAP
eapol_flags=0
identity="myusername"
password="mypass"
}
ctrl_interface=/var/run/wpa_supplicant
# 1 - here, 0=driver, 2=driver++
ap_scan=1
#ctrl_interface_group=wheel
# may need to be 1
eapol_version=1
fast_reauth=1
network={
scan_ssid=1
mode=0
ssid="my-ssid"
proto=WPA
key_mgmt=WPA-EAP
pairwise=TKIP
group=TKIP
eap=LEAP
priority=2
auth_alg=LEAP
eapol_flags=0
identity="myusername"
password="mypass"
}
| The Following 2 Users Say Thank You to marilynm85 For This Useful Post: | ||
Last edited by chemist; 2010-01-31 at 14:35. Reason: status + proposal text