ExternalVendorCode/openwrt
1
0
Fork 0
mirror of https://github.com/openwrt/openwrt.git synced 2024-12-23 15:32:33 +00:00
Code Issues Actions 7 Packages Projects Releases Wiki Activity
8be5b12ea1
openwrt/package/network/services/hostapd/files
History
Timo Sigurdsson 19ebc19f54 hostapd: Expose the tdls_prohibit option to UCI 
wpa_disable_eapol_key_retries can't prevent attacks against the
Tunneled Direct-Link Setup (TDLS) handshake. Jouni Malinen suggested
that the existing hostapd option tdls_prohibit can be used to further
complicate this possibility at the AP side. tdls_prohibit=1 makes
hostapd advertise that use of TDLS is not allowed in the BSS.

Note: If an attacker manages to lure both TDLS peers into a fake
AP, hiding the tdls_prohibit advertisement from them, it might be
possible to bypass this protection.

Make this option configurable via UCI, but disabled by default.

Signed-off-by: Timo Sigurdsson <public_timo.s@silentcreek.de>
(cherry picked from commit 6515887ed9)
2017-12-07 19:42:30 +01:00
..
hostapd-full.config hostapd: enable support for logging wpa_printf messages to syslog 2017-02-05 22:31:02 +01:00
hostapd-mini.config hostapd: enable support for logging wpa_printf messages to syslog 2017-02-05 22:31:02 +01:00
hostapd.sh hostapd: Expose the tdls_prohibit option to UCI 2017-12-07 19:42:30 +01:00
multicall.c packages: sort network related packages into package/network/ 2012-10-10 12:32:29 +00:00
wpa_supplicant-full.config kernel: remove hostap driver 2016-07-31 12:25:24 +02:00
wpa_supplicant-mini.config kernel: remove hostap driver 2016-07-31 12:25:24 +02:00
wpa_supplicant-p2p.config kernel: remove hostap driver 2016-07-31 12:25:24 +02:00
wps-hotplug.sh buttons: make all button handler scripts return 0 2015-07-24 09:11:35 +00:00