I’m using webmin to update Raspbian on my system, explained here, chapter 4 / section 11.
Since I enabled automatic updates, I received a mail, content:
An update to wpasupplicant from 2.4-1+deb9u2 to 2.6-21~bpo9~rpt1 is needed. This update has been successfully installed.
A second mail indicated:
wpasupplicant (2:2.6-19) unstable; urgency=medium With this release, wpasupplicant no longer respects the system default minimum TLS version, defaulting to TLSv1.0, not TLSv1.2. If you're sure you will never connect to EAP networks requiring anything less than 1.2, add this to your wpasupplicant configuration: tls_disable_tlsv1_0=1 tls_disable_tlsv1_1=1 wpasupplicant also defaults to a security level 1, instead of the system default 2. Should you need to change that, change this setting in your wpasupplicant configuration: openssl_ciphers=DEFAULT@SECLEVEL=2 Unlike wpasupplicant, hostapd still respects system defaults. -- Andrej Shadura <email@example.com> Sat, 15 Dec 2018 14:22:18 +0100
According to wikipedia, this module handles authentication.
Q: what is the impact of
wpasupplicant also defaults to a security level 1, instead of the system default 2