09-02-2011, 01:31 PM | #46 |
Junior Member
Posts: 4
Karma: 10
Join Date: Sep 2011
Device: Kindle 3
|
Thanks for the helpful replies. I'll find some time this weekend to work on a script and get my home network foolery up and running. Sorry I'm talking so slow, I'm learning dvorak.
Ransom |
09-15-2011, 08:53 AM | #47 |
Junior Member
Posts: 4
Karma: 10
Join Date: Sep 2011
Device: Kindle 3
|
Well after a party hardy weekend I woke up to a broken kindle screen. Since then, I've got a replacement and have been working on getting it broken and submissive.
I've been researching installing an arm-linux build on the kindle for a little less restriction. Any tips would be appreciated as most threads I've seen seem outdated at best. Anyway thanks for the tips and hope to bring some light to new topics soon. Ransom |
Advert | |
|
10-15-2011, 08:46 AM | #48 |
Enthusiast
Posts: 28
Karma: 10
Join Date: Sep 2011
Device: Kindle 3, Kobo Aura H2O
|
Is it possible to add more SSID to one script file ? Over here where I live it goes like this:
1. school 2. city 3. eduroam So basically 3 networks that make use of same .cer and identification method. So is it possible to use the wpa_config.sh I made for ex. 1. option and just add more SSID to it? or is it possible to setup different wpa_config.sh files and include them separately on each network ? Sorry if this is not clear enough, don't quite know how to describe it. Last edited by Kozzi; 11-01-2011 at 03:55 PM. |
10-20-2011, 06:09 PM | #49 | |||
Junior Member
Posts: 1
Karma: 10
Join Date: Oct 2011
Device: Kindle 3 WiFi
|
Quote:
I edited the wpa_supplicant (chmod'ed: +x) as follows: Quote:
Quote:
Thanx, Paddy |
|||
11-15-2011, 11:43 PM | #50 |
Junior Member
Posts: 2
Karma: 10
Join Date: Nov 2011
Device: Kindle 3
|
Kindle 3 WPA2 Enterprise School Network
For some reason I had to disable wifid, dhcp, set the routes and everything. Here's currently what I have...
I turn on wireless and run this script from kiterm (could use launchpad). In the script below, replace username, password, SSID, and IPADDRESS.1 with the appropriate values. IPADDRESS.1 is my lingo for the first three parts of your ip address and then dot 1, because that is most likely to be your gateway address. Code:
#!/bin/sh /etc/init.d/wifid stop id="`wpa_cli add_network | sed -n '2p'`" exec="`wpa_cli << EOF set_network $id ssid \"SSID\" set_network $id scan_ssid 1 set_network $id key_mgmt WPA-EAP set_network $id pairwise TKIP set_network $id group TKIP set_network $id eap PEAP set_network $id identity \"username\" set_network $id password \"password\" set_network $id phase1 \"peaplabel=0\" set_network $id phase2 \"auth=MSCHAPV2\" enable_network $id quit EOF `" echo $exec sleep 5 udhcpc -i wlan0 route add default gw IPADDRESS.1 mntroot rw cp /tmp/resolv.conf /etc/resolv.conf mntroot ro Last edited by tiger12506; 11-15-2011 at 11:50 PM. |
Advert | |
|
11-21-2011, 04:04 AM | #51 | |
Junior Member
Posts: 5
Karma: 10
Join Date: Feb 2011
Device: Kindle 3 Wi-Fi
|
Quote:
|
|
11-28-2011, 04:27 PM | #52 | |
Junior Member
Posts: 1
Karma: 10
Join Date: Nov 2011
Device: Kindle 3 (WiFi)
|
Quote:
I had the same problem as you did. The following script worked for me. I just used TTLS/PAP instead of PEAP/MSCHAPV2 and added an anonymous identity (not strictly speaking necessary, but good for privacy). Code:
#!/bin/sh sleep 6 id="`wpa_cli list_networks | grep eduroam | cut -f1 | sed -n '1p'`" exec="`wpa_cli << EOF set_network $id ssid \"eduroam\" set_network $id scan_ssid 1 set_network $id key_mgmt WPA-EAP set_network $id pairwise TKIP set_network $id group TKIP set_network $id eap TTLS set_network $id identity \"LOGIN\" set_network $id password \"PASSWORD\" set_network $id anonymous_identity \"ANONYMOUS_IDENTITY\" set_network $id phase1 \"peaplabel=0\" set_network $id phase2 \"auth=PAP\" set_network $id ca_cert \"CERTIFICATE\" enable_network $id quit EOF `" echo $exec |
|
01-24-2012, 06:45 PM | #53 | |
hub
Posts: 715
Karma: 2151032
Join Date: Jan 2012
Location: Iranian in Canada
Device: K3G, DXG, Kobo mini
|
Quote:
|
|
01-25-2012, 08:25 AM | #54 |
Wizard
Posts: 1,379
Karma: 2155307
Join Date: Nov 2010
Location: Goettingen, Germany
Device: Kindle Paperwhite, Kobo Mini
|
You should put it in usbnet/bin, as the post clearly tells you :-) Then there's a line you should add to another script (I think it's also in usbnet/bin). If you want to know what ${USBNET_BINDIR} does in that script after you added it, consult documentation on shell variables.
BTW: I think using launchpad is much more preferable than the more error-prone way to change scripts that do very different things... |
01-25-2012, 12:40 PM | #55 | |
hub
Posts: 715
Karma: 2151032
Join Date: Jan 2012
Location: Iranian in Canada
Device: K3G, DXG, Kobo mini
|
Quote:
Also, can you elaborate on the point you mentioned about launchpad please? |
|
01-25-2012, 01:32 PM | #56 |
(offline)
Posts: 2,907
Karma: 6736092
Join Date: Dec 2011
Device: K3, K4, K5, KPW, KPW2
|
Hi,
here's a script that I use for connecting to my WPA-EAP network. (Kindle-Touch 5.0.1) Some variables have been changed to protect the guilty. It works for me (sometimes only on the second attempt, after disabling/re-enabling WiFi), but maybe you want to give a modified version of it a try. Code:
#!/bin/sh CERTIFICATE=/mnt/us/wpa/ca.pem getmonth() { case ${1} in Jan) echo 01 ;; Feb) echo 02 ;; Mar) echo 03 ;; Apr) echo 04 ;; May) echo 05 ;; Jun) echo 06 ;; Jul) echo 07 ;; Aug) echo 08 ;; Sep) echo 09 ;; Oct) echo 10 ;; Nov) echo 11 ;; Dec) echo 12 ;; *) echo 00 ;; esac } CERTIFDATE=$(openssl x509 -in ${CERTIFICATE} -noout -startdate|sed 's/notBefore\=//') #remove this in production! #CERTIFDATE='Jan 01 01:02:03 2017' set -- ${CERTIFDATE} MONTH=$(getmonth ${1}) CERTIFDATE="${4}-${MONTH}-${2} ${3}" CERTIFTIME=$(date +%s -u -d "${CERTIFDATE}") KINDLEDATE=$(date -u +"%F %T") KINDLETIME=$(date +%s -u -d "${KINDLEDATE}") #echo "cert3: " $CERTIFDATE $CERTIFTIME #echo "kindle: " $KINDLEDATE $KINDLETIME if [ ${CERTIFTIME} -gt ${KINDLETIME} ] then echo "Kindle date is earlier than date of certificate!" echo "trying to set to 3 days past $CERTIFDATE" date -u "`date -u -D '%s' -d $((1323988093+60*60*24*3)) +'%F %T'`" sleep 3 fi id="`wpa_cli add_network | sed -n '2p'`" exec="`wpa_cli << EOF set_network $id ssid \"MY_SSID\" set_network $id scan_ssid 1 set_network $id key_mgmt WPA-EAP set_network $id pairwise TKIP set_network $id group TKIP set_network $id eap PEAP set_network $id identity \"MY_USERNAME\" set_network $id password \"MY_PASSWORD\" set_network $id phase1 \"peaplabel=0\" set_network $id phase2 \"auth=MSCHAPV2\" set_network $id ca_cert \"/mnt/us/wpa/ca.pem\" enable_network $id quit EOF `" echo $exec |
01-26-2012, 12:17 AM | #57 | ||
hub
Posts: 715
Karma: 2151032
Join Date: Jan 2012
Location: Iranian in Canada
Device: K3G, DXG, Kobo mini
|
Quote:
Still no luck, I don't have any pem file (ca.pem)! Where should I get it? from admin of my campus? So in hope someone will help I explain what I did: My network is WPA2 Enterprise. I ran the following commands in my KT using ssh... here is output of "wpa_cli get_capability eap": Selected interface 'wlan0' MD5 TLS MSCHAPV2 PEAP TTLS GTC OTP WSC And otput of "wpa_cli get_capability key_mgmt" Selected interface 'wlan0' NONE IEEE8021X Then I put my SSID, username and password. Now, what changes should I make? set_network $id key_mgmt WPA-EAP or set_network $id key_mgmt IEEE8021X When I run your script this is what I get: Quote:
|
||
01-26-2012, 06:30 AM | #58 |
(offline)
Posts: 2,907
Karma: 6736092
Join Date: Dec 2011
Device: K3, K4, K5, KPW, KPW2
|
Yes, you need to get the certificate file of the CA which signed the certificate that the access point is using. The entire point of WPA-EAP is to make use of a PKI infrastructure, so you're definitely not getting anywhere without that ca.pem.(*)
If it's a campus network, there usually is some information around on how to access it. That almost certainly includes the required certs, and possibly other hints concerning exactly which WPA settings you should use. (*) Yes, I know that MacOS and Ubuntu will let you access it while only giving a warning about not trusting the AP. The Kindle is more picky and *requires* the cert. This is also the reason why I have these date checks in the script -- my device sometimes just resets back the time to somewhere in 2008, and consequently the cert is deemed not valid yet and the connection refused. |
01-26-2012, 08:09 AM | #59 |
Wizard
Posts: 1,379
Karma: 2155307
Join Date: Nov 2010
Location: Goettingen, Germany
Device: Kindle Paperwhite, Kobo Mini
|
As a postscriptum: Sorry, I thought you were talking about a Kindle up to version 3. Those had/have a different approach to USB networking and I think launchpad would also be specific for Kindles up to v3 (i.e. those with keyboards).
|
01-26-2012, 12:05 PM | #60 | ||
hub
Posts: 715
Karma: 2151032
Join Date: Jan 2012
Location: Iranian in Canada
Device: K3G, DXG, Kobo mini
|
Quote:
I got the certificate from my univ which is like: -----BEGIN CERTIFICATE----- ...1 LINE OF A VERY LONG STRING OF CODE... -----END CERTIFICATE----- Now I got this error: Quote:
Last edited by thatworkshop; 01-26-2012 at 12:08 PM. |
||
|
Similar Threads | ||||
Thread | Thread Starter | Forum | Replies | Last Post |
I'm assuming Kindle 3 will work with WPA encryption? | AFK_Matrix | Amazon Kindle | 12 | 06-18-2012 12:42 PM |
Copy and Paste Wifi WPA key | mavhc | Kindle Developer's Corner | 0 | 09-20-2010 05:30 PM |
OMG!!! My WPA wireless connection is actually working | Maike13 | iRex | 0 | 12-27-2009 12:46 AM |
WPA fix | thetechnobear | iRex | 53 | 11-24-2008 09:44 AM |
WPA/Tkip not working | DeGodefroi | iRex | 6 | 06-14-2007 04:43 AM |