The content of this topic has been archived on 11 Apr 2018. There are no obvious gaps in this topic, but there may still be some posts missing at the end.
Hi,
I have an Asus WL500gP, with Kamikaze(2.4 kernel) from svn rev. #12984, and nslu2.
In the output of 'ps axfw' the /usr/sbin/nas displays the secret key of the wireless network.
466 ? S 0:00 /usr/sbin/nas -P /var/run/nas.wl0.pid -H 34954 -l br-lan -i wl0 -A -m 4 -w 2 -s KGy -g 3600 -k <secret-key>
How can it be run to hide this information?
Regards
K. Gy.
How can it be run to hide this information?
I don't think there is a way to hide the key from ps.
But since this is an embedded system, where no user logins are allowed, it will be very hard for an attacker to run the ps command.
If you have a web server running with the possibility to excute cgi-scripts, the risk will be higher.
You could switch to a 2.6 kernel with the b43 driver (with hostapd instead of nas), but I don't know if it's stable enough for your configuration.
I noticed that in all my (older) openwrt devices, files in /etc/config are readable by everyone :-O
So you could do a "cat /etc/config/wireless" as well...
OK, you are right.
You mentioned the b43 driver: is it in the current svn version? Is it able to work in AP mode? Last time when i tried to use it only client mode was available.
Thx
The discussion might have continued from here.