wpa_supplicant/NM fallback to WPA?

Johannes Berg johannes at sipsolutions.net
Tue May 6 17:33:00 EDT 2008


On Tue, 2008-05-06 at 23:16 +0200, Johannes Berg wrote:
> > Yeah.. The problem here is that this AP is broken in a way that could
> > lead to compromised security since supplicant will not be able to verify
> > that the advertised RSN IE matches with the signed one.. In theory, one
> > could try to use WPA in this type of case, but I don't really like the
> > extra complexity that this would bring into AP selection.
> 
> Yeah, true. I guess we'll just have to make NM do the fallback ;)

Except... wpa_supplicant can make a much more informed choice here.
Doesn't matter too much to me personally, really. I'd like to see my
N810 work with it but that doesn't use wpa_supplicant anyway.

johannes
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 828 bytes
Desc: This is a digitally signed message part
Url : http://lists.shmoo.com/pipermail/hostap/attachments/20080506/2ddfe38c/attachment.pgp 


More information about the HostAP mailing list