PDA

View Full Version : Any plans to support WEP Open Authentication?



Eugene Wisor
2004-08-05, 05:29
First, thanks for changing the way I enjoy music in my home! Squeezebox is
a great product!

I am unable to get my Squeezebox to connect to my D-Link DI-624 AP (HW Rev
A1) and utilize WEP since the Squeezebox only supports shared key
authentication and the D-Link AP only allows open authentication. The
D-Link guys seem to have added support for both for later hardware
revisions, but have not released a firmware update for A1 hardware that
supports both. Unfortunately, operating with WEP disabled is too risky in
my location.

In addition, open authentication is a more secure mode, so supporting it on
the Squeezebox would allow customers to fully utilize the (limited)
protections that WEP provides. See brief description listed below...

"The 802.11b standard supports two means of client authentication between
the wireless NIC and the AP: open and shared key authentication. Open key
authentication involves supplying the correct SSID. With shared key
authentication, the AP sends the client device a challenge text packet that
the client must then encrypt with the correct WEP key and return to the AP.
If the client has the wrong key or no key, authentication will fail and the
client will not be allowed to associate with the AP. Shared key
authentication is not considered secure, because a hacker who detects both
the clear-text challenge and the same challenge encrypted with a WEP key can
decipher the WEP key.

With open key authentication, even if a client can complete authentication
and associate with an AP, the use of WEP prevents the client from sending
data to and receiving data from the AP, unless the client has the correct
WEP key."


I've updated my Squeezebox firmware regularly over the past 9 months in
hopes this feature would be added, but been disappointed so far. Is there
any chance I'll ever see open authentication support, and if so any idea
when?

Thanks for the great support,

*E

dean
2004-08-05, 13:45
Sorry for the delay on this. Yes, we are planning on adding support
for Open Authentication, but there's no announced timeframe...


On Aug 5, 2004, at 5:29 AM, Eugene Wisor wrote:

> First, thanks for changing the way I enjoy music in my home!
> Squeezebox is
> a great product!
>
> I am unable to get my Squeezebox to connect to my D-Link DI-624 AP (HW
> Rev
> A1) and utilize WEP since the Squeezebox only supports shared key
> authentication and the D-Link AP only allows open authentication. The
> D-Link guys seem to have added support for both for later hardware
> revisions, but have not released a firmware update for A1 hardware that
> supports both. Unfortunately, operating with WEP disabled is too
> risky in
> my location.
>
> In addition, open authentication is a more secure mode, so supporting
> it on
> the Squeezebox would allow customers to fully utilize the (limited)
> protections that WEP provides. See brief description listed below...
>
> "The 802.11b standard supports two means of client authentication
> between
> the wireless NIC and the AP: open and shared key authentication. Open
> key
> authentication involves supplying the correct SSID. With shared key
> authentication, the AP sends the client device a challenge text packet
> that
> the client must then encrypt with the correct WEP key and return to
> the AP.
> If the client has the wrong key or no key, authentication will fail
> and the
> client will not be allowed to associate with the AP. Shared key
> authentication is not considered secure, because a hacker who detects
> both
> the clear-text challenge and the same challenge encrypted with a WEP
> key can
> decipher the WEP key.
>
> With open key authentication, even if a client can complete
> authentication
> and associate with an AP, the use of WEP prevents the client from
> sending
> data to and receiving data from the AP, unless the client has the
> correct
> WEP key."
>
>
> I've updated my Squeezebox firmware regularly over the past 9 months in
> hopes this feature would be added, but been disappointed so far. Is
> there
> any chance I'll ever see open authentication support, and if so any
> idea
> when?
>
> Thanks for the great support,
>
> *E
>

Brooks Davis
2004-08-05, 16:48
FYI, you've got most of the support. There's just no way to turn off
shared mode. The funny thing is that the moment you get an IP on the
wired interface, the wireless interface associates with the AP.

-- Brooks

On Thu, Aug 05, 2004 at 01:45:06PM -0700, dean blackketter wrote:
> Sorry for the delay on this. Yes, we are planning on adding support
> for Open Authentication, but there's no announced timeframe...
>
>
> On Aug 5, 2004, at 5:29 AM, Eugene Wisor wrote:
>
> >First, thanks for changing the way I enjoy music in my home!
> >Squeezebox is
> >a great product!
> >
> >I am unable to get my Squeezebox to connect to my D-Link DI-624 AP (HW
> >Rev
> >A1) and utilize WEP since the Squeezebox only supports shared key
> >authentication and the D-Link AP only allows open authentication. The
> >D-Link guys seem to have added support for both for later hardware
> >revisions, but have not released a firmware update for A1 hardware that
> >supports both. Unfortunately, operating with WEP disabled is too
> >risky in
> >my location.
> >
> >In addition, open authentication is a more secure mode, so supporting
> >it on
> >the Squeezebox would allow customers to fully utilize the (limited)
> >protections that WEP provides. See brief description listed below...
> >
> >"The 802.11b standard supports two means of client authentication
> >between
> >the wireless NIC and the AP: open and shared key authentication. Open
> >key
> >authentication involves supplying the correct SSID. With shared key
> >authentication, the AP sends the client device a challenge text packet
> >that
> >the client must then encrypt with the correct WEP key and return to
> >the AP.
> >If the client has the wrong key or no key, authentication will fail
> >and the
> >client will not be allowed to associate with the AP. Shared key
> >authentication is not considered secure, because a hacker who detects
> >both
> >the clear-text challenge and the same challenge encrypted with a WEP
> >key can
> >decipher the WEP key.
> >
> >With open key authentication, even if a client can complete
> >authentication
> >and associate with an AP, the use of WEP prevents the client from
> >sending
> >data to and receiving data from the AP, unless the client has the
> >correct
> >WEP key."
> >
> >
> >I've updated my Squeezebox firmware regularly over the past 9 months in
> >hopes this feature would be added, but been disappointed so far. Is
> >there
> >any chance I'll ever see open authentication support, and if so any
> >idea
> >when?
> >
> >Thanks for the great support,
> >
> >*E
> >