Fincer
/
openntpd-openbsd
mirror of https://github.com/Fincer/openntpd-openbsd
1
0
Fork 0
Code Issues 0 Projects 0 Releases 61 Wiki Activity
Source code pulled from OpenBSD for OpenNTPD. The place to contribute to this code is via the OpenBSD CVS tree.
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
5625 Commits
49 Branches
2.1 GiB
Tree: 00107b2b9e
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '00107b2b9e'
${ noResults }
openntpd-openbsd/src/etc/hostapd.conf

86 lines
2.3 KiB
Raw Normal View History

spaces
17 years ago
some examples with descriptions for hostapd.conf "inspired" by deraadt@
19 years ago
fix indentation and spacing
19 years ago
some examples with descriptions for hostapd.conf "inspired" by deraadt@
19 years ago
consistency, remove a few explanations documented in the manpage. ok reyk@
19 years ago
some examples with descriptions for hostapd.conf "inspired" by deraadt@
19 years ago
consistency, remove a few explanations documented in the manpage. ok reyk@
19 years ago
some examples with descriptions for hostapd.conf "inspired" by deraadt@
19 years ago
spaces
17 years ago
add examples for the optional channel hopper
18 years ago
consistency, remove a few explanations documented in the manpage. ok reyk@
19 years ago
some examples with descriptions for hostapd.conf "inspired" by deraadt@
19 years ago
some IAPP implementations still use the pre-standard port 2313 in broadcast mode (tested with the HP ProCurve 420wl). add a note to the manual page and the example configuration.
18 years ago
some examples with descriptions for hostapd.conf "inspired" by deraadt@
19 years ago
consistency, remove a few explanations documented in the manpage. ok reyk@
19 years ago
some examples with descriptions for hostapd.conf "inspired" by deraadt@
19 years ago
fix indentation and spacing
19 years ago
some examples with descriptions for hostapd.conf "inspired" by deraadt@
19 years ago
consistency, remove a few explanations documented in the manpage. ok reyk@
19 years ago
some examples with descriptions for hostapd.conf "inspired" by deraadt@
19 years ago
implement a way to match IEEE 802.11 flooding. this will help to detect known DoS attacks, like de-auth flooding against wireless networks. an example is provided in the manual page. "or could you just got for it?", deraadt@
19 years ago
some examples with descriptions for hostapd.conf "inspired" by deraadt@
19 years ago
fix indentation and spacing
19 years ago
some examples with descriptions for hostapd.conf "inspired" by deraadt@
19 years ago
implement a way to match IEEE 802.11 flooding. this will help to detect known DoS attacks, like de-auth flooding against wireless networks. an example is provided in the manual page. "or could you just got for it?", deraadt@
19 years ago
some examples with descriptions for hostapd.conf "inspired" by deraadt@
19 years ago
consistency, remove a few explanations documented in the manpage. ok reyk@
19 years ago
 
  1. # $OpenBSD: hostapd.conf,v 1.11 2007/02/27 20:53:45 david Exp $
  2. # sample hostapd configuration file
  3. # see hostapd.conf(5)
  4. 

  5. # "wavelan is a battle field"
  6. 

  7. #
  8. # Macros
  9. #
  10. 

  11. # Define macros for the interfaces to be used by hostapd. The "wlan"
  12. # interface is optional.
  13. wlan="ath0"
  14. wired="sis0"
  15. 

  16. #
  17. # Tables
  18. #
  19. 

  20. # Define the MAC addresses (BSSIDs) for your accesspoints in a table.
  21. table <myess> {
  22. 	00:90:4b:0d:fd:c8,
  23. 	00:02:6f:21:ea:8b
  24. }
  25. 

  26. # Address masks are providing a simple way to match by MAC vendor ID.
  27. #
  28. # table <senao> { 00:02:6f:ff:ff:ff & ff:ff:ff:00:00:00 }
  29. 

  30. #
  31. # Global options
  32. #
  33. 

  34. # Comment this option to run hostapd in passive IAPP logging mode.
  35. set hostap interface $wlan
  36. 

  37. # Use default radiotap mode.
  38. set hostap mode radiotap
  39. 

  40. # Uncomment these options to jump to the next channel every 2 seconds.
  41. #set hostap hopper interface $wlan
  42. #set hostap hopper delay 2000
  43. 

  44. # Use multicast (according to the revised standard).
  45. set iapp interface $wired
  46. set iapp mode multicast
  47. 

  48. # The following mode is compatible to some pre-standard IAPP implementations
  49. #set iapp mode broadcast port 2313
  50. 

  51. #
  52. # Event rules
  53. #
  54. 

  55. # Log probe requests.
  56. hostap handle type management subtype probe request \
  57.     with iapp type radiotap
  58. 

  59. # Log and annoy foreign accesspoints.
  60. #
  61. # This will be logged as well but the important thing is to
  62. # annoy other accesspoints in your wireless territory.
  63. hostap handle type data bssid !<myess> \
  64.     with frame type management subtype deauth reason auth expire \
  65.     from &bssid to ff:ff:ff:ff:ff:ff bssid &bssid
  66. 

  67. # The first de-auth example will not work with some newer stuff, like
  68. # iwi(4)/ipw(4) "centrino", because they ignore management frames to
  69. # the broadcast address as a countermeasure against the "void11"
  70. # attack.
  71. #
  72. # hostap handle type data bssid !<myess> \
  73. #    with frame type management subtype deauth reason auth expire \
  74. #    from &bssid to &from bssid &bssid
  75. 

  76. # Detect flooding of management frames except beacons.
  77. # This will detect some possible Denial of Service attacks
  78. # against the IEEE 802.11 protocol (like "void11").
  79. hostap handle skip type management subtype ! beacon \
  80.     with log \
  81.     rate 100 / 10 sec
  82. 

  83. # Finally log any rogue accesspoints limited to every second.
  84. hostap handle skip type management subtype beacon bssid !<myess> \
  85.     with iapp type radiotap limit 1 sec
  86.