Securely storing EAP passwords

Stefan Winter stefan.winter at restena.lu
Wed Jan 10 05:29:47 PST 2018


Hello,

> I was wondering why MD4 is (seeemingly) the only available hashing
> mechanism for the `password` field? Is this a relic of EAP or PEAP?

It's a relic of MSCHAPv2, which is what is used inside PEAP.

Greetings,

Stefan Winter

> If MD4 _is_ the only option, then why doesn't `wpa_supplicant.conf`
> support subshells so that the password (or hash) may be retrieved via
> another program (e.g., `pass`)?
> 
> Are there merely some features of `wpa_supplicant.conf` that I haven't
> discovered yet?
> 
> 
> 
> _______________________________________________
> Hostap mailing list
> Hostap at lists.infradead.org
> http://lists.infradead.org/mailman/listinfo/hostap
> 


-- 
Stefan WINTER
Ingenieur de Recherche
Fondation RESTENA - Réseau Téléinformatique de l'Education Nationale et
de la Recherche
2, avenue de l'Université
L-4365 Esch-sur-Alzette

Tel: +352 424409 1
Fax: +352 422473

PGP key updated to 4096 Bit RSA - I will encrypt all mails if the
recipient's key is known to me

http://pgp.mit.edu:11371/pks/lookup?op=get&search=0xC0DE6A358A39DC66
-------------- next part --------------
A non-text attachment was scrubbed...
Name: 0x8A39DC66.asc
Type: application/pgp-keys
Size: 3226 bytes
Desc: not available
URL: <http://lists.infradead.org/pipermail/hostap/attachments/20180110/4da2d68f/attachment.bin>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 819 bytes
Desc: OpenPGP digital signature
URL: <http://lists.infradead.org/pipermail/hostap/attachments/20180110/4da2d68f/attachment.sig>


More information about the Hostap mailing list