Date: Sat, 11 Jan 2025 22:02:31 +0100 From: "Dave Cottlehuber" <dch@skunkwerks.at> To: "Graham Perrin" <grahamperrin@gmail.com>, freebsd-desktop@freebsd.org, freebsd-enterprisewg@freebsd.org Subject: Re: [EWG] [LDWG] [FBSD_LDWG] (272902) Laptop Project: Wi-Fi privacy/security: clear-text passwords for WPA-EAP e.g. eduroam Message-ID: <e358eafa-a90f-41a9-a5be-cfb60d6361a3@app.fastmail.com> In-Reply-To: <07e6179b-00de-4eeb-8282-527b477fdccc@gmail.com> References: <07e6179b-00de-4eeb-8282-527b477fdccc@gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sat, 11 Jan 2025, at 17:14, Graham Perrin wrote: > I'd like the Foundation to have an issue (story) for this in its Lapto= p=20 > Project, <https://github.com/orgs/FreeBSDFoundation/projects/1/>. > > In=20 > <https://man.freebsd.org/cgi/man.cgi?query=3Dwpa_supplicant.conf&sekti= on=3D5&manpath=3Dfreebsd-release>=20 > for wpa_supplicant.conf(5), the example for eduroam uses a clear text=20 > password. > > I'm not aware of a method to have the password saved without clear tex= t. It looks like it=E2=80=99s supported since a while. https://w1.fi/cgit/hostap/plain/wpa_supplicant/wpa_supplicant.conf # mem_only _psk : Whether to keep PSK/passphrase only in memory # 0 =3D allow psk/passphrase to be stored to the configuration file # 1 =3D do not store psk/passphrase to the configuration file #mem_only _psk =3D0 See if https://www.freshports.org/net/wpa_gui/ helps make this a bit eas= ier, or if wpa_cli is available maybe this can be lightly scripted. Dave
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?e358eafa-a90f-41a9-a5be-cfb60d6361a3>