enhanced security patch for if_wi
The MiP RvL
the_mip_rvl at myrealbox.com
Wed Dec 24 16:07:29 PST 2003
Hello
This is a patch for which a couple of wi-fi fans have been waiting to get :) And now it's there, just before Christmas ;)
This patch is against FreeBSD 5.1, I didn't have current installed and 5.0 doesn't work in hostap mode with 1.7.4 firmware.
http://wleiden.webweaving.org:8080/svn/node-config/other/enh-sec-patch/
For the enhsec option to work you need a prism 2,2.5,3 with firmware 1.6.3 or higher.
To give a small explaination:
It uses a firmware feature: 0xFC43
# wicontrol -i iface -E 0|1|2|3
This sets the WI_RID_CNFENHSECURITY flag.
0 = "disabled"
1 = hide SSID in beacon frames
2 = ignore clients with a "ANY" SSID
3 = 1 and 2 combined
It blocks clients with a "" or "ANY" ssid
And disables ssid broadcasting.
I checked it today, and it worked,
but please do acknowledge the fact that I haven't been
able to test this function on a real network, with real data going over the link.
I haven't had the time yet to make it work with ifconfig, so until then, use wicontrol.
Regards,
Roland van Laar
More information about the freebsd-hackers
mailing list