{"id":181,"date":"2010-01-26T17:23:48","date_gmt":"2010-01-26T16:23:48","guid":{"rendered":"\/Blog\/?p=181"},"modified":"2011-03-15T13:55:34","modified_gmt":"2011-03-15T12:55:34","slug":"hostapd-with-psk-file","status":"publish","type":"post","link":"https:\/\/seegras.discordia.ch\/Blog\/hostapd-with-psk-file\/","title":{"rendered":"hostapd with psk-file"},"content":{"rendered":"<p>I tried to make hostapd use a separate psk-file, with a different PSK per MAC-address. On Debian the file is called \/etc\/hostapd\/wpa_psk and according to \/etc\/hostapd\/hostapd.conf: <\/p>\n<blockquote><p># Optionally, WPA PSKs can be read from a separate text file (containing list<br \/>\n# of (PSK,MAC address) pairs. This allows more than one PSK to be configured.<\/p><\/blockquote>\n<p>This is fucking <strong>WRONG<\/strong>. The file-format is not documented anywhere else, and the above is utter bogus. The file has to look like this:<br \/>\n<code>00:00:00:00:00:00 somepskstring<\/code><\/p>\n<p>The 00:00:00:00:00:00 of course would have to be replaced by a real MAC-address. The MAC-address all zeroed out might signify a wildcard, but then, this isn&#8217;t documented either. <\/p>\n<p>By the way, if you do not want it bloody bridged, you need to set up the interface just like normal in \/etc\/network\/interfaces, and take care that it&#8217;s served by dhcp and has appropriate firewall-rules. <\/p>\n","protected":false},"excerpt":{"rendered":"<p>I tried to make hostapd use a separate psk-file, with a different PSK per MAC-address. On Debian the file is called \/etc\/hostapd\/wpa_psk and according to \/etc\/hostapd\/hostapd.conf: # Optionally, WPA PSKs can be read from a separate text file (containing list # of (PSK,MAC address) pairs. This allows more than one PSK to be configured. This [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[2,93],"tags":[71,75,74,72,73],"class_list":["post-181","post","type-post","status-publish","format-standard","hentry","category-computers","category-terminal","tag-hotapd","tag-mac","tag-psk","tag-wpa","tag-wpa_psk"],"_links":{"self":[{"href":"https:\/\/seegras.discordia.ch\/Blog\/wp-json\/wp\/v2\/posts\/181","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/seegras.discordia.ch\/Blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/seegras.discordia.ch\/Blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/seegras.discordia.ch\/Blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/seegras.discordia.ch\/Blog\/wp-json\/wp\/v2\/comments?post=181"}],"version-history":[{"count":4,"href":"https:\/\/seegras.discordia.ch\/Blog\/wp-json\/wp\/v2\/posts\/181\/revisions"}],"predecessor-version":[{"id":362,"href":"https:\/\/seegras.discordia.ch\/Blog\/wp-json\/wp\/v2\/posts\/181\/revisions\/362"}],"wp:attachment":[{"href":"https:\/\/seegras.discordia.ch\/Blog\/wp-json\/wp\/v2\/media?parent=181"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/seegras.discordia.ch\/Blog\/wp-json\/wp\/v2\/categories?post=181"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/seegras.discordia.ch\/Blog\/wp-json\/wp\/v2\/tags?post=181"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}