Date: Wed, 02 Aug 2023 21:58:12 +0000 From: bugzilla-noreply@freebsd.org To: bugs@FreeBSD.org Subject: [Bug 272902] Security: allow passphrases for WPA-EAP to be saved without using clear text in a world-readable file Message-ID: <bug-272902-227@https.bugs.freebsd.org/bugzilla/>
next in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D272902 Bug ID: 272902 Summary: Security: allow passphrases for WPA-EAP to be saved without using clear text in a world-readable file Product: Base System Version: CURRENT Hardware: Any OS: Any Status: New Severity: Affects Only Me Priority: --- Component: kern Assignee: bugs@FreeBSD.org Reporter: grahamperrin@gmail.com % ls -hln /etc/wpa_supplicant.conf -rwxrw-r-x 1 0 0 1.4K 2 Aug 11:15 /etc/wpa_supplicant.conf %=20 Connection to eduroam works if a clear text password is saved in this world-readable file. wpa_passhrase(8) can generate a 256-bit pre-shared WPA key, for example:=20 wpa_passphrase eduroam If the key (and not the clear text password) is saved in wpa_supplicant.con= f(5) then there will be no connection to eduroam.=20 Keyword: security, however there's no need to obscure this bug report; the clear text issue is well-known.=20 Bug severity: minimal, because this is an enhancement request. --=20 You are receiving this mail because: You are the assignee for the bug.=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-272902-227>