openwrtv4/package
Timo Sigurdsson 6515887ed9 hostapd: Expose the tdls_prohibit option to UCI
wpa_disable_eapol_key_retries can't prevent attacks against the
Tunneled Direct-Link Setup (TDLS) handshake. Jouni Malinen suggested
that the existing hostapd option tdls_prohibit can be used to further
complicate this possibility at the AP side. tdls_prohibit=1 makes
hostapd advertise that use of TDLS is not allowed in the BSS.

Note: If an attacker manages to lure both TDLS peers into a fake
AP, hiding the tdls_prohibit advertisement from them, it might be
possible to bypass this protection.

Make this option configurable via UCI, but disabled by default.

Signed-off-by: Timo Sigurdsson <public_timo.s@silentcreek.de>
2017-12-07 01:57:29 +02:00
..
base-files sysupgrade: don't kill our own parent 2017-11-15 21:11:23 +01:00
boot uboot-sunxi: fix build of HAOYU Electronics Marsboard A10 2017-11-23 21:25:46 +01:00
devel add PKG_CPE_ID ids to package and tools 2017-11-17 02:24:35 +01:00
firmware layerscape: rename firmware packages to avoid name collisions 2017-12-02 10:38:08 -05:00
kernel mt76: update to the latest version, adds stability fixes 2017-12-03 19:06:24 +01:00
libs nghttp2: bump to 1.28.0 2017-11-27 10:12:03 +01:00
network hostapd: Expose the tdls_prohibit option to UCI 2017-12-07 01:57:29 +02:00
system ubus: update to the latest version 2017-11-16 12:54:17 +01:00
utils usbutils: Update usb.ids file to latest 2017-11-22 20:45:07 +01:00
Makefile build: cleanup tmp/ dir of target rootfs 2017-05-02 22:10:50 +08:00