wpa_supplicant/NM fallback to WPA?
Johannes Berg
johannes
Tue May 6 14:33:00 PDT 2008
On Tue, 2008-05-06 at 23:16 +0200, Johannes Berg wrote:
> > Yeah.. The problem here is that this AP is broken in a way that could
> > lead to compromised security since supplicant will not be able to verify
> > that the advertised RSN IE matches with the signed one.. In theory, one
> > could try to use WPA in this type of case, but I don't really like the
> > extra complexity that this would bring into AP selection.
>
> Yeah, true. I guess we'll just have to make NM do the fallback ;)
Except... wpa_supplicant can make a much more informed choice here.
Doesn't matter too much to me personally, really. I'd like to see my
N810 work with it but that doesn't use wpa_supplicant anyway.
johannes
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 828 bytes
Desc: This is a digitally signed message part
Url : http://lists.shmoo.com/pipermail/hostap/attachments/20080506/2ddfe38c/attachment.pgp
More information about the Hostap
mailing list