Changeset 2350


Ignore:
Timestamp:
Dec 10, 2013, 2:23:41 PM (5 years ago)
Author:
matthijs
Message:

Backport r2346: ra_wifi: Re-enable WPS enrollee role

This was disabled in r2328 to prevent a vulnerability related to WPS
Pin. However, it turned out that Windows clients starts an external
registrar - enrollee transaction, presumably to find out details about
the WPS support in the access point. If this transaction does not work,
it does not consider the access point WPS capable. Effectively, this
meant that r2328 prevented WPS PBC (button) from working with Windows
clients.

Re-enabling the enrollee role fixes the WPS PBC again, but also
re-introduces the vulnerability (which will be fixed again next). Note
that the proxy role is kept disabled, since the Fonera firmware doesn't
have the needed configuration to support proxying to an external
registrar anyway.

File:
1 edited

Legend:

Unmodified
Added
Removed
  • branches/2.3.7/fon/ra_wifi/files/lib/wifi/rt3052.sh

    r2338 r2350  
    237237                                        iwpriv $ifname set "SSID=${ssid}"
    238238                                        if [ "$wps" == "1" ]; then
    239                                                 iwpriv $ifname set WscConfMode=4
     239                                                iwpriv $ifname set WscConfMode=5
    240240                                        else
    241241                                                iwpriv $ifname set WscConfMode=0
Note: See TracChangeset for help on using the changeset viewer.