Mateusz Marzantowicz wrote:
On 20.09.2013 22:23, Björn Persson wrote:
> Anyone can broadcast an SSID. How does FirewallD authenticate the
> network connection?
FirewallD is not responsible for such authentication/AP validation.
Firewall as such is not meant to assure you're connecting to where you
want.
It's FirewallD that introduces the zone concept. FirewallD is therefore
responsible for ensuring that the network has been authenticated before
it switches to a zone that assumes an isolated and friendly network. Of
course FirewallD can delegate the authentication to another program,
but simply stating that FirewallD is not responsible doesn't answer the
question.
--
Björn Persson
Sent from my computer.