Ticket #798 (closed Feature Request: invalid)

Opened 7 years ago

Last modified 7 years ago

Auth-server RADIUS and the wireless access point

Reported by: ausrasul@… Owned by: RPD
Priority: normal Milestone: WifiDog Auth Server 2.0
Component: Auth server, Authentication, permissions and access control Version: Gateway 20090925
Keywords: RADIUS encryption authentication security Cc:

Description

Hi, I'm about to deploy a few wireless access points, my concern is the user sercurity and data encription.

How does RADIUS helps in that matter? is it only for user access management?

Does the auth-server RADIUS works directly with the accesspoint authentication? or does it work with the user account at the captive portal?

if it work directly with the accesspoint, how does the user have a chance to create an account?

If it works with captive portal, after the authentication, does the user have any sort of encryption? assume he's browsing a plaintext http.

A tip or link to more documentation about how the authentication and security works with WIFIDOG is greatley appreciated.

/Aus

Change History

Changed 7 years ago by gbastien

  • status changed from new to closed
  • resolution set to invalid

The wifidog auth server is not developed anymore. I invite you to check out authpuppy auth server for wifidog networks(  http://www.authpuppy.org) where most of the development effort has now turned.

It doesn't yet have RADIUS support though so stay with wifidog if you need it. I cannot say much about RADIUS, I don't know it at all and never tried it, but all authentication requests pass through the auth server (wifidog or authpuppy) and the auth server then identifies the user on the specified backend.

Neither RADIUS nor any authentication method provide encryption on what the user is doing, so if your access points are public (no security), no auth method will encrypt his browsing in plain http on the wireless network. The auth server authentication is only to allow the user to access the internet on this access point. To have wireless encryption, you'll need WPA or WEP encryption and those keys are on the router, not on the auth-server, if I understood your question correctly...

For more support, please use the wifidog mailing list.

Note: See TracTickets for help on using tickets.