Bug 194122 - add a security caution to wpa_supplicant.conf.5
Summary: add a security caution to wpa_supplicant.conf.5
Status: New
Alias: None
Product: Base System
Classification: Unclassified
Component: wireless (show other bugs)
Version: CURRENT
Hardware: Any Any
: --- Affects Many People
Assignee: freebsd-wireless (Nobody)
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2014-10-03 21:21 UTC by jhs
Modified: 2014-10-03 21:21 UTC (History)
0 users

See Also:


Attachments
patch for wpa_supplicant.conf.5 (1.07 KB, patch)
2014-10-03 21:21 UTC, jhs
no flags Details | Diff

Note You need to log in before you can comment on or make changes to this bug.
Description jhs 2014-10-03 21:21:11 UTC
Created attachment 147946 [details]
patch for wpa_supplicant.conf.5

+ Security Caution, If you assert scan_ssid=1 (Instead of default scan_ssid=0):
+ .in +2
+ Instead of just sending a broadcast Probe Request frame,
+ FreeBSD would also send directed Probe Request frames with specific names.
+ Those network names would be observable to hostile 3rd parties,
+ & could be abused as per
+ http://www.bbc.com/news/technology-28891937
+ http://lists.freebsd.org/pipermail/freebsd-wireless/2014-October/005097.html
+ .in -2