Are routers with tomatousb vulnerable to reaver? Supposedly it can pull the WPS pin off just about any router pretty quick. It looks like the article in arstechnica used a wrt54g2 with stock linksys firmware. and even if the WPS function was turned off it was still actually on.
Can wps be removed from tomatousb entirely to close this hole?