From owner-freebsd-ports@FreeBSD.ORG Wed Feb 16 16:35:59 2005 Return-Path: Delivered-To: freebsd-ports@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id B35DA16A4CE for ; Wed, 16 Feb 2005 16:35:59 +0000 (GMT) Received: from odin.ac.hmc.edu (Odin.AC.HMC.Edu [134.173.32.75]) by mx1.FreeBSD.org (Postfix) with ESMTP id 6018C43D1D for ; Wed, 16 Feb 2005 16:35:59 +0000 (GMT) (envelope-from brdavis@odin.ac.hmc.edu) Received: from odin.ac.hmc.edu (localhost.localdomain [127.0.0.1]) by odin.ac.hmc.edu (8.13.0/8.13.0) with ESMTP id j1GGadWD031283; Wed, 16 Feb 2005 08:36:39 -0800 Received: (from brdavis@localhost) by odin.ac.hmc.edu (8.13.0/8.13.0/Submit) id j1GGacbP031282; Wed, 16 Feb 2005 08:36:38 -0800 Date: Wed, 16 Feb 2005 08:36:38 -0800 From: Brooks Davis To: Yamamoto Shigeru Message-ID: <20050216163638.GA29910@odin.ac.hmc.edu> References: <20050216.115303.39149829.shigeru@iij.ad.jp> <20050216071340.GB18826@odin.ac.hmc.edu> <20050216.195034.21935248.shigeru@iij.ad.jp> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="tThc/1wpZn/ma/RB" Content-Disposition: inline In-Reply-To: <20050216.195034.21935248.shigeru@iij.ad.jp> User-Agent: Mutt/1.4.1i X-Virus-Scanned: by amavisd-new X-Spam-Status: No, hits=0.0 required=8.0 tests=none autolearn=no version=2.63 X-Spam-Checker-Version: SpamAssassin 2.63 (2004-01-11) on odin.ac.hmc.edu cc: brooks@one-eyed-alien.net cc: ports@freebsd.org Subject: Re: update patch of security/wpa_supplicant, from 0.3.0 to 0.3.8 X-BeenThere: freebsd-ports@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Porting software to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 16 Feb 2005 16:35:59 -0000 --tThc/1wpZn/ma/RB Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Wed, Feb 16, 2005 at 07:50:34PM +0900, Yamamoto Shigeru wrote: >=20 > >>>>> "Brooks" =3D=3D Brooks Davis writes: > Brooks> Thanks for you submission. I've committed these parts along with > Brooks> some fixes. >=20 > Thank you. >=20 > >> - install start/stop script > Brooks> I did not commit this because I believe this is the wrong way to > Brooks> integrate wpa_supplication. The integration needs to take place = in > Brooks> /etc/rc.d/netif so wpa supplicant is started on interfaces when t= hey > Brooks> arrive, not at boot since they may not exist until arbitrarily > Brooks> later. >=20 > I think it is better to separate wpa_supplicant start/stop script from ne= tif > script. > Because, we sometimes need to restart wpa_supplicant when changing WEP ke= y. >=20 > In our company, in which we can't use WPA, WEP key is sometimes changed to > be more secure. > In this case, we need restarting wpa_supplicant to change WEP key. >=20 > I think it is populer to change WEP key frequently in none-WPA/802.11i > environment. > So, it is useful to separate wpa_supplicant start/stop script from netif > script. OK that makes sense. However, the script needs to be in /etc/rc.d and run before dhclient to keep things happy at startup. Want to give this a shot, probably using a script similar to /etc/rc.d/dhclient? The ability to specify interfaces to take action on at the command line of the script is very useful. If you write one that allows the path to wpa_supplicant and any config files (and I do believe we should support one per interface) to be specified we can point the default to /usr/local for now and then change them when we bring wpa_supplicant in to the tree. I'd be happy to get rc support in before wpa_supplicant so we can do more testing before doing an import. -- Brooks --=20 Any statement of the form "X is the one, true Y" is FALSE. PGP fingerprint 655D 519C 26A7 82E7 2529 9BF0 5D8E 8BE9 F238 1AD4 --tThc/1wpZn/ma/RB Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.1 (GNU/Linux) iD8DBQFCE3aWXY6L6fI4GtQRAlk8AJ45hfs+h9nMMzdqsH+ijbJbutRCsACePaPI xtzTqLkRLM+43gWCeDQAJZE= =AdCg -----END PGP SIGNATURE----- --tThc/1wpZn/ma/RB--