Skip to content

Commit

Permalink
nixos/hostapd: Disable insecure TKIP by default
Browse files Browse the repository at this point in the history 
It's possible that setting wpa=2 disables TKIP anyway, but on my machine
I could not get 802.11n to work without setting rsn_pairwise=CCMP.
N.B. rsn_pairwise takes its default from wpa_pairwise.
  • Loading branch information
@gloaming @pull
gloaming authored and pull[bot] committed Oct 31, 2023
1 parent a7b0dc8 commit 3fad672
Showing 1 changed file with 1 addition and 0 deletions.
1 change: 1 addition & 0 deletions nixos/modules/services/networking/hostapd.nix
View file
Expand Up @@ -34,6 +34,7 @@ let
${optionalString cfg.wpa ''
wpa=2
wpa_pairwise=CCMP
wpa_passphrase=${cfg.wpaPassphrase}
''}
${optionalString cfg.noScan "noscan=1"}
Expand Down

0 comments on commit 3fad672

Please sign in to comment.