HostAP and Nessus

[Gunter Burchardt]

> I don't think there's any way in the 802.1X protocol per se that allows this. 

This isnt true. 802.1x speaks about a controlled port and a
uncontrolled port. On uncontrolled port a client can connect without
authentication. Some vendor use this to display web-pages to login. 

I think hostapd didn't support an uncontrolled port. This could be a
feature request to Jouni Malinen to add an "uncontrolled" interface for
unauthorised stations. 

regards
gunter