Evil twin detection

dibdot · May 6, 2026, 7:55am

No problem at all ... I think ... should be a 3-5 lines in shell code ... (I mean the LAA-Bit detection)

The risks of false positives / false negatives is quite high ... a VPN is always the better approach.

Microlaser · May 6, 2026, 12:26pm

I’ve tested this and there is an extremely low chance of false positives and false negatives. The logic itself is sound. If you want you can test it before implementing it. That might be good idea to put the logic to the test before implementing a lighter weight solution like bash.

dibdot · May 6, 2026, 4:39pm

Well you should do more testing ...
Virtual BSSIDs in multi-SSID setups (very common in business/hotel APs), some mesh implementations, and a few consumer brands legitimately use LAA bits on secondary radios.

Travelmate's use case is roaming, where you usually have no trusted baseline anyway. Without a pinned BSSID, the surrounding evil-twin logic has nothing to compare against, and the LAA bit alone tells you essentially nothing — plenty of legitimate APs in the wild have it set.

Anyway I'll add that with the next update and by default this feature will be truned off - the LAA check is a nice-to-have telemetry.

dibdot · May 9, 2026, 7:57pm

Evil twin detection has been added to latest travelmate in master and 25.12. branch, for reference:

github.com/openwrt/packages

travelmate: release 2.4.5-1

committed 07:39PM - 09 May 26 UTC

dibdot

+545 -287

- added opt-in protection against access points with locally-administered (LAA) …BSSIDs - added a special trm_maxretry value '0', enabling unlimited connection retries - removed obsolete connection-tracking functions (too many uci updates/flash wear) - all runtime files now live under a single /var/run/travelmate/ directory - various code cleanups & fixes - LuCI: made the new UCI option 'trm_eviltwin' available - LuCI: more cleanups - readme update Signed-off-by: Dirk Brenken <dev@brenken.org>