===================================================================
RCS file: /cvsrepo/anoncvs/cvs/src/etc/Attic/hostapd.conf,v
retrieving revision 1.5
retrieving revision 1.6
diff -c -r1.5 -r1.6
*** src/etc/Attic/hostapd.conf	2005/09/29 23:24:56	1.5
--- src/etc/Attic/hostapd.conf	2005/09/30 16:50:03	1.6
***************
*** 1,4 ****
! # $OpenBSD: hostapd.conf,v 1.5 2005/09/29 23:24:56 reyk Exp $
  # sample hostapd configuration file
  # see hostapd.conf(5)
  
--- 1,4 ----
! # $OpenBSD: hostapd.conf,v 1.6 2005/09/30 16:50:03 reyk Exp $
  # sample hostapd configuration file
  # see hostapd.conf(5)
  
***************
*** 58,64 ****
      with frame type management subtype deauth reason auth expire \
      from &bssid to ff:ff:ff:ff:ff:ff bssid &bssid
  
! # The first deauth example will not work with some newer stuff, like
  # iwi(4)/ipw(4) "centrino", because they ignore management frames to
  # the broadcast address as a countermeasure against the "void11"
  # attack. 
--- 58,64 ----
      with frame type management subtype deauth reason auth expire \
      from &bssid to ff:ff:ff:ff:ff:ff bssid &bssid
  
! # The first de-auth example will not work with some newer stuff, like
  # iwi(4)/ipw(4) "centrino", because they ignore management frames to
  # the broadcast address as a countermeasure against the "void11"
  # attack. 
***************
*** 66,71 ****
--- 66,78 ----
  # hostap handle type data bssid !<myess> \
  #    with frame type management subtype deauth reason auth expire \
  #    from &bssid to &from bssid &bssid
+ 
+ # Detect flooding of management frames except beacons.
+ # This will detect some possible Denial of Service attacks
+ # against the IEEE 802.11 protocol (like "void11").
+ hostap handle skip type management subtype ! beacon \
+     with log \
+     rate 100 / 10 sec
  
  # Finally log any rogue accesspoints limited to every second.
  # The skip keywords instructs hostapd to ignore further IAPP