WPA support in NetworkManager

Jamie Jones hentai_yagi at yahoo.com.au
Tue Mar 14 06:48:43 GMT 2006 

On Mon, 2006-03-13 at 11:16 -0700, Ben Aldrich wrote:
> 
> 
> On 3/13/06, Jamie Jones <hentai_yagi at yahoo.com.au> wrote:
>         On Mon, 2006-03-13 at 09:03 -0700, Ben Aldrich wrote:
>         > Almost any company worth anything requires WPA if they use
>         wireless...
>         > I think this is a pretty big issues.
>         
>         I'd think any company worth anything would run a VPN using eg
>         IPSEC over 
>         wireless links, and keep wireless in its own separate dmz,
>         while
>         filtering non-IPSEC traffic at the gateway to the wired
>         network. That
>         would make using WEP, WPA or nothing at all a non-issue.
>         
>         Either way, there are more pressing things to consider for
>         release, eg 
>         testing working input for non-english speakers.
> 
> 
> This is true but it comes at the expense of your employees time to
> login to the vpn every day

That can be automated at login. This seems more like an excuse to not
use a VPN.

>  ** which btw VPN's are another HUGE annoyance in linux **

Not in my experience, I find that they work rather well, and are not
terribly difficult to set up. Things have gotten better since kernel
2.4.x

>   and then you have to waste the money & expenses on running a few VPN
> servers to handle the load of the entire wireless user base.

There are several secure solutions to this that don't involve a)
physical servers or b) wasting money. Of course if you want to be really
secure, and save money, you'd turn off the wireless access. Even WPA can
be broken.

>   Which also means you have to pay someone to watch over the VPN
> servers and keeping everything going.

Most middle to large sized companies already have systems administrators
and/or network engineers, either of which should be capable of
maintaining a VPN. If they can't you have bigger problems, and should
look for more competent staff.

>   The VPN solution is completely not an option for small companies and
> is still a large waste of money for midsized companies. 

I beg to differ. VPN can be successfully deployed for small business
with a minimum of maintenance required. Unless you do it yourself, there
is a small cost of having a consultant deploy it, and train either
yourself or your staff, or you could pay for the consultant to manage it
on your behalf.

Now, this conversation has run it's course. WPA is not likely to get in.
Quite simply it has arrived much to late to get adequate testing and
support from the main Ubuntu staff. As mentioned there are several
options, 1) manually set your WPA not using NetworkManager
(wpasupplicant is in universe), or 2) Use a VPN (which IMNSHO is a more
secure option, and does not need the device to support WEP, WPA, or
802.11i)


Regards
Yagisan
-- 
Jamie Jones
Proprietor
E-Yagi Consulting
ABN: 32 138 593 410
Mob: +61 4 16 025 081
Email: eyagi.consulting at gmail.com
Web: http://www.eyagiconsulting.com

GPG/PGP signed mail preferred. No HTML mail. No MS Word attachments
PGP Key ID 0x4B6E7209
Fingerprint E1FD 9D7E 6BB4 1BD4 AEB9 3091 0027 CEFA 4B6E 7209
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
Url : https://lists.ubuntu.com/archives/ubuntu-devel/attachments/20060314/0d82df55/attachment.pgp

More information about the ubuntu-devel mailing list