path: root/hostapd/hostapd.conf
diff options
authorJouni Malinen <j@w1.fi>2009-01-23 19:57:43 (GMT)
committerJouni Malinen <j@w1.fi>2009-02-08 10:19:22 (GMT)
commit63dd43ac94f4ae2513c17d9a9fbe9bd2b9510d27 (patch)
tree0d7d0c97d73629c60eb980e0299625add9813b28 /hostapd/hostapd.conf
parente51609f083579fb3de4bfb9e6eb9a6f6f8256b51 (diff)
WPS: Lock AP Setup on multiple AP PIN validation failures
If a Registrar tries to configure the AP, but fails to validate the device password (AP PIN), lock the AP setup after four failures. This protects the AP PIN against brute force guessing attacks. (cherry picked from commit 3b2cf800afaaf4eec53a237541ec08bebc4c1a0c)
Diffstat (limited to 'hostapd/hostapd.conf')
1 files changed, 5 insertions, 0 deletions
diff --git a/hostapd/hostapd.conf b/hostapd/hostapd.conf
index 24709ee..9f9d7e3 100644
--- a/hostapd/hostapd.conf
+++ b/hostapd/hostapd.conf
@@ -956,6 +956,11 @@ own_ip_addr=
# to external program(s)
# Note: With wps_cred_processing=1, skip_cred_build should be set to 1 and
# extra_cred be used to provide the Credential data for Enrollees.
+# wps_cred_processing=1 will disabled automatic updates of hostapd.conf file
+# both for Credential processing and for marking AP Setup Locked based on
+# validation failures of AP PIN. An external program is responsible on updating
+# the configuration appropriately in this case.
# AP Settings Attributes for M7