From owner-freebsd-current@FreeBSD.ORG Mon May 31 16:17:54 2004 Return-Path: Delivered-To: freebsd-current@freebsd.org Received: from green.homeunix.org (freefall.freebsd.org [216.136.204.21]) by hub.freebsd.org (Postfix) with ESMTP id 6228516A4CE; Mon, 31 May 2004 16:17:54 -0700 (PDT) Received: from green.homeunix.org (green@localhost [127.0.0.1]) by green.homeunix.org (8.12.11/8.12.11) with ESMTP id i4VNHrut016031; Mon, 31 May 2004 19:17:53 -0400 (EDT) (envelope-from green@green.homeunix.org) Received: (from green@localhost) by green.homeunix.org (8.12.11/8.12.11/Submit) id i4VNHrO8016030; Mon, 31 May 2004 19:17:53 -0400 (EDT) (envelope-from green) Date: Mon, 31 May 2004 19:17:52 -0400 From: Brian Feldman To: Doug Rabson Message-ID: <20040531231752.GB15637@green.homeunix.org> References: <20040530190600.5B64916A4CF@hub.freebsd.org> <200405310948.55864.dfr@nlsystems.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <200405310948.55864.dfr@nlsystems.com> User-Agent: Mutt/1.5.6i cc: Bill Paul cc: freebsd-current@FreeBSD.ORG Subject: Re: Project Evil APs X-BeenThere: freebsd-current@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Discussions about the use of FreeBSD-current List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 31 May 2004 23:17:54 -0000 On Mon, May 31, 2004 at 09:48:55AM +0100, Doug Rabson wrote: > On Sunday 30 May 2004 20:06, Bill Paul wrote: > > > > > > > > You want to use ad-hoc mode. You don't want to bother me with > > > > silly questions about hostap mode because it doesn't really let > > > > you do anything you can't do with ad-hoc mode anyway. Use IPSec > > > > with ad-hoc mode and you'll probably get better security than any > > > > access point can give you in the first place. > > > > > > > > > > Probably. Only if I can get this silly little WinME laptop to do > > > ad-hoc as well though. The main reason for doing this is that my AP > > > died and my gf wants to use the laptop in the garden :-). > > > > Did you... read the little booklet that came with the card in your > > gf's computer? Sometimes there's a special control panel snap-in or > > custom utility to configure the card. If not, go to the control > > panel, click "system" and look for the device manager. Select the > > wireless device and check for driver settings. You might be able to > > set ad-hoc mode there. > > I managed to find new drivers for the laptop's card and it works fine > now. Now I just have to put some kind of tunnelling thing together (I > guess pptp is the only option for WinMe) so that the neighbours can't > 'borrow' our service. Doing a Windows-style VPN is pretty darn easy on FreeBSD: 1. Install ports/net/poptop. 2. Set up pptpd.conf (pretty much just the remoteip and localip options). 3. Set up ppp(8) with a "pptp" section, much like the following: pptp: set timeout 0 set log phase chat connect lcp ipcp command enable MSCHAPv2 enable mppe set mppe 128 stateful disable deflate pred1 deny deflate pred1 accept dns enable dns set ifaddr localip range ... 4. After modifying ppp.conf, add appropriate users to ppp.secret. -- Brian Fundakowski Feldman \'[ FreeBSD ]''''''''''\ <> green@FreeBSD.org \ The Power to Serve! \ Opinions expressed are my own. \,,,,,,,,,,,,,,,,,,,,,,\