Re: which X11 app can show wifi info

To: debian-user@lists.debian.org
Subject: Re: which X11 app can show wifi info
From: Brian <ad44@cityscape.co.uk>
Date: Wed, 15 Jun 2022 10:28:44 +0100
Message-id: <[🔎] 15062022093858.4819f0b79aa8@desktop.copernicus.org.uk>
In-reply-to: <[🔎] E1o1Mkp-0002Gb-U2@enotuniq.net>
References: <[🔎] a48133a7-531c-b8b0-afa7-5e1f8e9a65e9@sina.com> <[🔎] 11062022094844.9a50333b8743@desktop.copernicus.org.uk> <[🔎] ff65c837-ca12-d7fa-170d-f9e20ccc2c83@sina.com> <[🔎] 11062022115453.b2a13a0ef21d@desktop.copernicus.org.uk> <[🔎] 039a56d9-a9f6-63a4-ee90-ee0ae09b862e@sina.com> <[🔎] 20220614111556.GB1182871@zira.vinc17.org> <[🔎] 14062022154123.0c75615ee3ea@desktop.copernicus.org.uk> <[🔎] 20220615013053.GC1182871@zira.vinc17.org> <[🔎] E1o1Mkp-0002Gb-U2@enotuniq.net>

On Wed 15 Jun 2022 at 09:43:50 +0300, Reco wrote:

> 	Hi.
> 
> On Wed, Jun 15, 2022 at 03:30:53AM +0200, Vincent Lefevre wrote:
> > On 2022-06-14 15:43:40 +0100, Brian wrote:
> > > On Tue 14 Jun 2022 at 13:15:56 +0200, Vincent Lefevre wrote:
> > > > No issues with iwlist and nmcli.
> > > 
> > > /usr/sbin/wpa_gui and /sbin/wpa_cli should both give sensible outputs
> > > when run as root.
> > 
> > For security reasons, I don't want to run them as root.
> 
> First example they provide in wpa_supplicant.conf(5) shows the way to
> use wpa_cli sensibly without being root.

The wpasupplicant documentation also provides a useful README.Debian.

> One just needs to define a group for wpa_supplicant's control socket, like this:
> 
> ctrl_interface=DIR=/run/wpa_supplicant GROUP=netdev
> 
> Add a user to a netdev group and you're set.

That is the first step but is not quite sufficient. The supplicant
needs to be made aware that the user is in the netdev group. Un my
/e/n/i:

  # The id_str.
  iface home inet dhcp

  # The id_str. 
  # iface home inet static
  #      address 192.168.7.55/24
  #      gateway 192.168.7.1

  allow-hotplug wlx74ea3a93adab
        iface wlx74ea3a93adab inet manual
        wpa-roam /etc/wpa_supplicant/wpasupplicant.conf

In /etc/wpa_supplicant/wpasupplicant.conf:

  ctrl_interface=DIR=/run/wpa_supplicant GROUP=netdev

  network={
  ssid="MI5_Listening_Station_#666"
  psk="Secure"
  proto=WPA
  id_str="home"
  } 
  
> > The iwlist and nmcli utilities don't need root to work correctly.
> 
> I don't know about iwlist, but nmcli uses dbus to communicate with
> NetworkManager. From the security standpoint, such approach clearly
> loses to the simple unix socket communication restricted by natural
> POSIX permissions.

The wpa_supplicant daemon runs with dbus capability.

-- 
Brian.

Reply to:

References:
- which X11 app can show wifi info
  - From: lou <loushanguan2015@sina.com>
- Re: which X11 app can show wifi info
  - From: Brian <ad44@cityscape.co.uk>
- Re: which X11 app can show wifi info
  - From: lou <loushanguan2015@sina.com>
- Re: which X11 app can show wifi info
  - From: Brian <ad44@cityscape.co.uk>
- Re: which X11 app can show wifi info
  - From: lou <loushanguan2015@sina.com>
- Re: which X11 app can show wifi info
  - From: Vincent Lefevre <vincent@vinc17.net>
- Re: which X11 app can show wifi info
  - From: Brian <ad44@cityscape.co.uk>
- Re: which X11 app can show wifi info
  - From: Vincent Lefevre <vincent@vinc17.net>
- Re: which X11 app can show wifi info
  - From: Reco <recoverym4n@enotuniq.net>

Prev by Date: Re: which X11 app can show wifi info
Next by Date: Re: which X11 app can show wifi info
Previous by thread: Re: which X11 app can show wifi info
Next by thread: Re: which X11 app can show wifi info
Index(es):
- Date
- Thread