Why isn't it possible for a bad actor to immitate a Wi-Fi point and get the password the user enters?

I don't know a lot about how Wi-Fi works and I know even less about hacking. However, I am curious why a person can't create a Wi-Fi AP that pretends it is WPA2 secured and then grabs the user's password when they try to connect to the AP?

What measures are there to prevent this and would it theoretically be possible for someone to circumvent them?

submitted by /u/Skratymir
[link] [comments]

from hacking: security in practice https://ift.tt/ghwdKbk