Wireless notes: Difference between revisions
From Federal Burro of Information
Jump to navigationJump to search
(Created page with "great article, includes reason codes: * http://etutorials.org/Networking/Wireless+lan+security/Chapter+4.+WLAN+Fundamentals/Basic+Choreography/") |
|||
(22 intermediate revisions by the same user not shown) | |||
Line 1: | Line 1: | ||
== Resources == | |||
great article, includes reason codes: | great article, includes reason codes: | ||
* http://etutorials.org/Networking/Wireless+lan+security/Chapter+4.+WLAN+Fundamentals/Basic+Choreography/ | * http://etutorials.org/Networking/Wireless+lan+security/Chapter+4.+WLAN+Fundamentals/Basic+Choreography/ | ||
List of tools: | |||
* http://sectools.org/wireless.html | |||
== Problems and solutions == | |||
=== Reason 15 === | |||
wpa_supplicant used: | |||
<pre> | |||
Oct 15 16:54:30 ll kernel: [25880.939657] cfg80211: Calling CRDA to update world regulatory domain | |||
Oct 15 16:54:31 ll kernel: [25881.865991] wlan0: authenticate with 00:90:d0:e9:0f:c3 (try 1) | |||
Oct 15 16:54:31 ll kernel: [25881.867507] wlan0: authenticated | |||
Oct 15 16:54:31 ll kernel: [25881.867586] wlan0: associate with 00:90:d0:e9:0f:c3 (try 1) | |||
Oct 15 16:54:31 ll kernel: [25881.870045] wlan0: RX AssocResp from 00:90:d0:e9:0f:c3 (capab=0x411 status=0 aid=2) | |||
Oct 15 16:54:31 ll kernel: [25881.870058] wlan0: associated | |||
Oct 15 16:54:35 ll kernel: [25885.870359] wlan0: deauthenticated from 00:90:d0:e9:0f:c3 (Reason: 15) | |||
</pre> | |||
PSK wrong!!! Typo! d'oh! | |||
Fix the password and success: | |||
<pre> | |||
ct 15 16:54:39 ll kernel: [25889.513681] wlan0: authenticate with 00:90:d0:e9:0f:c3 (try 1) | |||
Oct 15 16:54:39 ll kernel: [25889.518705] wlan0: authenticated | |||
Oct 15 16:54:39 ll kernel: [25889.518787] wlan0: associate with 00:90:d0:e9:0f:c3 (try 1) | |||
Oct 15 16:54:39 ll kernel: [25889.521659] wlan0: RX AssocResp from 00:90:d0:e9:0f:c3 (capab=0x411 status=0 aid=2) | |||
Oct 15 16:54:39 ll kernel: [25889.521672] wlan0: associated | |||
Oct 15 16:54:39 ll kernel: [25889.523503] ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready | |||
Oct 15 16:54:40 ll wpa_cli: interface wlan0 CONNECTED | |||
Oct 15 16:54:40 ll dhcpcd[13828]: version 5.2.12 starting | |||
Oct 15 16:54:41 ll dhcpcd[13828]: wlan0: broadcasting for a lease | |||
Oct 15 16:54:43 ll dhcpcd[13828]: wlan0: offered 192.168.1.71 from 192.168.1.254 | |||
Oct 15 16:54:43 ll dhcpcd[13828]: wlan0: acknowledged 192.168.1.71 from 192.168.1.254 | |||
Oct 15 16:54:43 ll dhcpcd[13828]: wlan0: checking for 192.168.1.71 | |||
Oct 15 16:54:48 ll dhcpcd[13828]: wlan0: leased 192.168.1.71 for 86400 seconds | |||
Oct 15 16:54:48 ll dhcpcd[13828]: forked to background, child pid 13860 | |||
Oct 15 16:54:49 ll kernel: [25899.746195] wlan0: no IPv6 routers present | |||
</pre> | |||
== Hardware == | |||
=== WMP 54g === | |||
http://homesupport.cisco.com/en-us/wireless/lbc/wmp54g | |||
=== NETGEAR WG311T === | |||
168C:0013:4D00:1385 "NETGEAR 108 Mbps Wireless PCI Adapter WG311T" | |||
* atheros | |||
=== AirPlus G DWL-G122 === | |||
D-Link Corp. AirPlus G DWL-G122 Wireless Adapter [Intersil ISL3886] | |||
lsusb: | |||
Bus 001 Device 005: ID 2001:3703 D-Link Corp. AirPlus G DWL-G122 Wireless Adapter [Intersil ISL3886] | |||
Revision A1 firmware 3.2.0 | |||
Possibly use driver: rt73usb | |||
installed on [[Susan]]. | |||
kernel driver in module form. | |||
needs ndiswrapper? | |||
http://www.linuxforums.org/forum/wireless-internet/136534-wireless-usb-key-not-recognized.html | |||
=== NetGear WG311T === | |||
lspci: | |||
04:00.0 Ethernet controller: Atheros Communications Inc. AR5212/AR5213 Wireless Network Adapter (rev 01) | |||
as per http://forums.gentoo.org/viewtopic-t-362203.html | |||
install: | |||
emerge -vp wireless-tools wpa_supplicant madwifi-ng net-wireless/madwifi-ng-tools | |||
== 05:08.0 Network controller: Ralink corp. RT2561/RT61 802.11g PCI == | |||
found in [[Borg]] | |||
== 05:09.0 Network controller: Ralink corp. RT2800 802.11n PCI == | |||
found in [[Borg]] | |||
== Tools == | |||
* net-wireless/aircrack-ng - WLAN tools for breaking 802.11 WEP/WPA keys | |||
* net-wireless/airsnort - 802.11b Wireless Packet Sniffer/WEP Cracker | |||
* net-wireless/airtraf - AirTraf 802.11b Wireless traffic sniffer | |||
== Process == | |||
http://forum.intern0t.org/security-tutorials-guides/3701-cracking-wep-protected-networks.html | |||
airodump-ng -c 6 -w /tmp/dump.`date +%a.%d.%b.%Y` --bssid C8:CD:72:E3:F1:2F mon0 | |||
aireplay-ng -1 0 -a C8:CD:72:E3:F1:2F -h 00:15:E9:74:F9:88 -e BELL849 mon0 | |||
dictionaries: | |||
http://wifi0wn.wordpress.com/wepwpawpa2-cracking-dictionary/ | |||
== See also == | |||
* [[Ll]] | |||
* [[Megatherion]] |
Latest revision as of 18:20, 12 March 2013
Resources
great article, includes reason codes:
List of tools:
Problems and solutions
Reason 15
wpa_supplicant used:
Oct 15 16:54:30 ll kernel: [25880.939657] cfg80211: Calling CRDA to update world regulatory domain Oct 15 16:54:31 ll kernel: [25881.865991] wlan0: authenticate with 00:90:d0:e9:0f:c3 (try 1) Oct 15 16:54:31 ll kernel: [25881.867507] wlan0: authenticated Oct 15 16:54:31 ll kernel: [25881.867586] wlan0: associate with 00:90:d0:e9:0f:c3 (try 1) Oct 15 16:54:31 ll kernel: [25881.870045] wlan0: RX AssocResp from 00:90:d0:e9:0f:c3 (capab=0x411 status=0 aid=2) Oct 15 16:54:31 ll kernel: [25881.870058] wlan0: associated Oct 15 16:54:35 ll kernel: [25885.870359] wlan0: deauthenticated from 00:90:d0:e9:0f:c3 (Reason: 15)
PSK wrong!!! Typo! d'oh!
Fix the password and success:
ct 15 16:54:39 ll kernel: [25889.513681] wlan0: authenticate with 00:90:d0:e9:0f:c3 (try 1) Oct 15 16:54:39 ll kernel: [25889.518705] wlan0: authenticated Oct 15 16:54:39 ll kernel: [25889.518787] wlan0: associate with 00:90:d0:e9:0f:c3 (try 1) Oct 15 16:54:39 ll kernel: [25889.521659] wlan0: RX AssocResp from 00:90:d0:e9:0f:c3 (capab=0x411 status=0 aid=2) Oct 15 16:54:39 ll kernel: [25889.521672] wlan0: associated Oct 15 16:54:39 ll kernel: [25889.523503] ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready Oct 15 16:54:40 ll wpa_cli: interface wlan0 CONNECTED Oct 15 16:54:40 ll dhcpcd[13828]: version 5.2.12 starting Oct 15 16:54:41 ll dhcpcd[13828]: wlan0: broadcasting for a lease Oct 15 16:54:43 ll dhcpcd[13828]: wlan0: offered 192.168.1.71 from 192.168.1.254 Oct 15 16:54:43 ll dhcpcd[13828]: wlan0: acknowledged 192.168.1.71 from 192.168.1.254 Oct 15 16:54:43 ll dhcpcd[13828]: wlan0: checking for 192.168.1.71 Oct 15 16:54:48 ll dhcpcd[13828]: wlan0: leased 192.168.1.71 for 86400 seconds Oct 15 16:54:48 ll dhcpcd[13828]: forked to background, child pid 13860 Oct 15 16:54:49 ll kernel: [25899.746195] wlan0: no IPv6 routers present
Hardware
WMP 54g
http://homesupport.cisco.com/en-us/wireless/lbc/wmp54g
NETGEAR WG311T
168C:0013:4D00:1385 "NETGEAR 108 Mbps Wireless PCI Adapter WG311T"
- atheros
AirPlus G DWL-G122
D-Link Corp. AirPlus G DWL-G122 Wireless Adapter [Intersil ISL3886]
lsusb:
Bus 001 Device 005: ID 2001:3703 D-Link Corp. AirPlus G DWL-G122 Wireless Adapter [Intersil ISL3886]
Revision A1 firmware 3.2.0
Possibly use driver: rt73usb
installed on Susan.
kernel driver in module form.
needs ndiswrapper?
http://www.linuxforums.org/forum/wireless-internet/136534-wireless-usb-key-not-recognized.html
NetGear WG311T
lspci:
04:00.0 Ethernet controller: Atheros Communications Inc. AR5212/AR5213 Wireless Network Adapter (rev 01)
as per http://forums.gentoo.org/viewtopic-t-362203.html
install:
emerge -vp wireless-tools wpa_supplicant madwifi-ng net-wireless/madwifi-ng-tools
05:08.0 Network controller: Ralink corp. RT2561/RT61 802.11g PCI
found in Borg
05:09.0 Network controller: Ralink corp. RT2800 802.11n PCI
found in Borg
Tools
- net-wireless/aircrack-ng - WLAN tools for breaking 802.11 WEP/WPA keys
- net-wireless/airsnort - 802.11b Wireless Packet Sniffer/WEP Cracker
- net-wireless/airtraf - AirTraf 802.11b Wireless traffic sniffer
Process
http://forum.intern0t.org/security-tutorials-guides/3701-cracking-wep-protected-networks.html
airodump-ng -c 6 -w /tmp/dump.`date +%a.%d.%b.%Y` --bssid C8:CD:72:E3:F1:2F mon0
aireplay-ng -1 0 -a C8:CD:72:E3:F1:2F -h 00:15:E9:74:F9:88 -e BELL849 mon0
dictionaries:
http://wifi0wn.wordpress.com/wepwpawpa2-cracking-dictionary/