Return-Path: <bluez-users-bounces@lists.sourceforge.net>
From: Marcel Holtmann <marcel@holtmann.org>
To: BlueZ users <bluez-users@lists.sourceforge.net>
In-Reply-To: <8c7950360709101256u4a62893dmcd4b342343088a73@mail.gmail.com>
References: <8c7950360709061306w39a081f1od1c372dafabc5072@mail.gmail.com>
	<1189451433.687.59.camel@violet>
	<8c7950360709101256u4a62893dmcd4b342343088a73@mail.gmail.com>
Date: Mon, 10 Sep 2007 22:56:59 +0200
Message-Id: <1189457819.687.89.camel@violet>
Mime-Version: 1.0
Subject: Re: [Bluez-users] devices always connect with out asking for
	PIN	even with pairing enabled!
Reply-To: BlueZ users <bluez-users@lists.sourceforge.net>
List-Id: BlueZ users <bluez-users.lists.sourceforge.net>
List-Unsubscribe: <https://lists.sourceforge.net/lists/listinfo/bluez-users>,
	<mailto:bluez-users-request@lists.sourceforge.net?subject=unsubscribe>
List-Archive: <http://sourceforge.net/mailarchive/forum.php?forum_name=bluez-users>
List-Post: <mailto:bluez-users@lists.sourceforge.net>
List-Help: <mailto:bluez-users-request@lists.sourceforge.net?subject=help>
List-Subscribe: <https://lists.sourceforge.net/lists/listinfo/bluez-users>,
	<mailto:bluez-users-request@lists.sourceforge.net?subject=subscribe>
Content-Type: text/plain; charset="us-ascii"
Sender: bluez-users-bounces@lists.sourceforge.net
Errors-To: bluez-users-bounces@lists.sourceforge.net

Hi Shane,

> I was not trying to do wild guessing with the hci.conf, I have read
> the readme's and MAN files on the hcid.conf.   What I'm trying to
> better understand is performing secure bluetooth however can't find
> documentation on what type of security is available during the initial
> paring process.  It seem to me that at the hci level is the correct
> place to provide security.
> 
> At a minimum I want to provide a unique PIN so that only devices with
> that PIN can pair to my unit but I also don't want someone using
> hcidump to sit by two of my units that are pairing and get the PIN.
> 
> Ideally it would be great to have something similar to ssh were I
> could only allow a certain encrypted key to pair to my device.  Then I
> could distribute that private encrypted key to all devices that I want
> to give connection privilege.   That is what I originally thought the
> Auth/Encryption option was for in the hcid.conf but after reading the
> MAN page I don't believe that is the case.

they have been removed from upstream anyway, because they lead to the
wrong assumptions.

And again, check the manual page for pand or check pand --help for
further information. It will give you all needed information.

Regards

Marcel



-------------------------------------------------------------------------
This SF.net email is sponsored by: Microsoft
Defy all challenges. Microsoft(R) Visual Studio 2005.
http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/
_______________________________________________
Bluez-users mailing list
Bluez-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/bluez-users