Re: questions re WEP keys
Hi Gene, On Tue, 2007-01-23 at 23:53 -0500, Gene Heskett wrote: I have a situation where I would like to generate long keys, 128 bit, and in fact have done so. The lappy is running FC5, recent kernel. But from the messages I see in the logs, and what I see in knetworkmanager, it appears that the only key length supported by knetworkmanager is a puny little 40 bit key. NetworkManager supports both, 64 and 128 bit WEP keys. If you speak about the netto value of bits used for encryption you end up with 40 (104) bit. The missing 24 bits are being used by an initialization vector which is not under the control of the user. KNetworkManager thus uses 40/104 bit for the user interface. And, of course, it does not only support 40 bit WEP keys. Timo ___ NetworkManager-list mailing list NetworkManager-list@gnome.org http://mail.gnome.org/mailman/listinfo/networkmanager-list
Re: questions re WEP keys
On Wednesday 24 January 2007 04:49, Timo Hoenig wrote: Hi Gene, On Tue, 2007-01-23 at 23:53 -0500, Gene Heskett wrote: I have a situation where I would like to generate long keys, 128 bit, and in fact have done so. The lappy is running FC5, recent kernel. But from the messages I see in the logs, and what I see in knetworkmanager, it appears that the only key length supported by knetworkmanager is a puny little 40 bit key. NetworkManager supports both, 64 and 128 bit WEP keys. If you speak about the netto value of bits used for encryption you end up with 40 (104) bit. The missing 24 bits are being used by an initialization vector which is not under the control of the user. 'netto' is a new term to me. Can you elaborate? KNetworkManager thus uses 40/104 bit for the user interface. And, of course, it does not only support 40 bit WEP keys. Timo I just rebooted it again, and turned on the wap11. knetworkmanager showed me the neighbors essid long before it found mine for some reason. But it did eventually show mine, and when I clicked on it, it did connect. WEP is turned off on both ends so there is no security. Now, I've used wap11gui to enter and save the 128 bit keys generated by the windows version, and connectivity is lost. I've edited ifcfg-wlan0 to put the contents of key1 into the previously blank key= line. After a few minutes, I called up knetworkmanager again and the x had been removed from my essid, so I clicked on it again. At that point knetworkmanager crashed and exited. After 2 more passes at running it, it finally showed up in the tray again using the disconnected icon, and a click on it once more displayed the two essid's. Clicking on mine, it immediately opens a requester for a password to the knetworkmanager wallet. I've seen this before and no known password works. They all return an error -9:Read error - possibly incorrect password. I'm running as root, and the root password is rejected. Going to controlcenter-securityprivacy-kdewallet-accesscontrol, I get the wallet dislay window, and when clicking on kdewallet, this same password requester shows up and once again no known password is valid. I think I'll see if I can turn it off. Ahh, that seems to have worked. Ok, now knetworkmanager is showing the wireless network with my essid, and when thats clicked on, is asking for a wep passphrase, or I can select the 40/104 bit key in hex or ascii. Selecting the hex version, I'll now give it the 26 hex chars of key1... This enables the connect button, and I'm connected. I'm confused by the nomenclature, 40 bits is only 5 characters, and 104 is only 13 bytes,...and is the 26 hex chars, I finally figure that part out, big 'duh'. So this works, but half an hours putzing around doesn't seem to show me how to make it automatic the next time. Where is the 'save as' dialog, which should include making a given profile the 'default' profile, and where is the dialog allowing me to select other already saved profiles? I mean this lappy could well be in a motel in upstate MI 3 weeks from now, and that setup is completely different. I know from nothing about the kwallet business, never having seen or used it previously in about 9 months of running FC5 on this lappy. It seems to be something designed to be a PITA, and I have dealt with just enough windows crap trying to keep the neighbors boxes running that the small windows partition on that lappy IS the only windows allowed on the premises that aren't glass. Windows is a PITA I can do without. I have an atheros card in my router which I'm going to enable later this week (I'm using dd-wrt on an old x86 box, booting from a cf card) and I'll need to do this all over again with a new mac address since thats also required I believe. I can just add those to the list so that won't be so difficult other than the time putzing around to find where to do it and doing it. So whats the next 'fix'. How can I save this profile, and then select it later from a list of profiles? -- Cheers, Gene There are four boxes to be used in defense of liberty: soap, ballot, jury, and ammo. Please use in that order. -Ed Howdershelt (Author) Yahoo.com and AOL/TW attorneys please note, additions to the above message by Gene Heskett are: Copyright 2007 by Maurice Eugene Heskett, all rights reserved. ___ NetworkManager-list mailing list NetworkManager-list@gnome.org http://mail.gnome.org/mailman/listinfo/networkmanager-list
Re: questions re WEP keys
On Wed, 2007-01-24 at 08:14 -0500, Gene Heskett wrote: snip 'netto' is a new term to me. Can you elaborate? Oh, sorry for that. I meant 'net'. While we're at it, what the heck is a 'lappy'? :-) Just kidding. snip suspect adventure So this works, but half an hours putzing around doesn't seem to show me how to make it automatic the next time. Where is the 'save as' dialog, which should include making a given profile the 'default' profile, and where is the dialog allowing me to select other already saved profiles? If you've set up KWallet correctly the key is now stored. You may run 'kwalletmanager' to check whether this is the case. The wireless network you have successfully connected is now stored in ~/.kde/share/config/knetworkmanagerrc. Whenever you start KNetworkManager it will now pass the information about the network to NetworkManager. If the wireless network is around, NetworkManager will try to establish a connection (as long as you're not a wired connection). That's the basic way it goes. I have no idea if there are specific bits in FC6 of which I am not aware. And, there is no support for profiles in NetworkManager. Timo ___ NetworkManager-list mailing list NetworkManager-list@gnome.org http://mail.gnome.org/mailman/listinfo/networkmanager-list
Re: questions re WEP keys
On Wednesday 24 January 2007 08:29, Timo Hoenig wrote: On Wed, 2007-01-24 at 08:14 -0500, Gene Heskett wrote: snip 'netto' is a new term to me. Can you elaborate? Oh, sorry for that. I meant 'net'. While we're at it, what the heck is a 'lappy'? :-) Just kidding. snip suspect adventure So this works, but half an hours putzing around doesn't seem to show me how to make it automatic the next time. Where is the 'save as' dialog, which should include making a given profile the 'default' profile, and where is the dialog allowing me to select other already saved profiles? If you've set up KWallet correctly the key is now stored. I turned it off since no known password will access it. Someplace its master password has apparently never been set. Or something like that. How, or where, can this be fixed? You may run 'kwalletmanager' to check whether this is the case. The wireless network you have successfully connected is now stored in ~/.kde/share/config/knetworkmanagerrc. Whenever you start KNetworkManager it will now pass the information about the network to NetworkManager. If the wireless network is around, NetworkManager will try to establish a connection (as long as you're not a wired connection). I can and do use that also when wireless is disabled. That's the basic way it goes. I have no idea if there are specific bits in FC6 of which I am not aware. This is FC5 on the lappy, fc6 on this box. And, there is no support for profiles in NetworkManager. And that is one huge, glaringly blinding error. What the heck good is it if it cannot automate things for a roaming machine? Timo -- Cheers, Gene There are four boxes to be used in defense of liberty: soap, ballot, jury, and ammo. Please use in that order. -Ed Howdershelt (Author) Yahoo.com and AOL/TW attorneys please note, additions to the above message by Gene Heskett are: Copyright 2007 by Maurice Eugene Heskett, all rights reserved. ___ NetworkManager-list mailing list NetworkManager-list@gnome.org http://mail.gnome.org/mailman/listinfo/networkmanager-list
Re: questions re WEP keys
On Wed, 2007-01-24 at 08:38 -0500, Gene Heskett wrote: I turned it off since no known password will access it. Someplace its master password has apparently never been set. Or something like that. How, or where, can this be fixed? I have no idea about details of KWallet, please get in touch with the KDE guys. This is FC5 on the lappy, fc6 on this box. Sorry that I incremented the version by one. In general, I'm not familiar with Fedora. And that is one huge, glaringly blinding error. What the heck good is it if it cannot automate things for a roaming machine? We're always open for patches. Timo ___ NetworkManager-list mailing list NetworkManager-list@gnome.org http://mail.gnome.org/mailman/listinfo/networkmanager-list
Re: questions re WEP keys
On 1/24/07, Gene Heskett [EMAIL PROTECTED] wrote: And that is one huge, glaringly blinding error. What the heck good is it if it cannot automate things for a roaming machine? I think you misunderstand, when he says profiles he means things like static addresses etc and an interface to modify them It does remember your SSID and WEP Keys (Though they are stored in the KDE Wallet so you need to get that fixed) so it can connect automatically for you. I don't use KDE so I can't tell you if this is the way to solve the problem but this is a link that came back from a google search on kde wallet lost password: http://www.cosmopod.com/index.php?option=com_joomlaboardItemid=36func=viewid=591catid=9 ___ NetworkManager-list mailing list NetworkManager-list@gnome.org http://mail.gnome.org/mailman/listinfo/networkmanager-list
Re: questions re WEP keys
On Wednesday 24 January 2007 08:42, Timo Hoenig wrote: On Wed, 2007-01-24 at 08:38 -0500, Gene Heskett wrote: I turned it off since no known password will access it. Someplace its master password has apparently never been set. Or something like that. How, or where, can this be fixed? I have no idea about details of KWallet, please get in touch with the KDE guys. This is FC5 on the lappy, fc6 on this box. Sorry that I incremented the version by one. In general, I'm not familiar with Fedora. And that is one huge, glaringly blinding error. What the heck good is it if it cannot automate things for a roaming machine? We're always open for patches. Timo 20 some years ago I was dreaming in hexidecimal, writing code for 8 bitters like the 1802, Z-80(spit) and the 6x09 stuff, and I would have taken you up on that in a heartbeat. But now I'm 72, and don't seem to be able to get my head around much more than a bash script these days. Sorry. -- Cheers, Gene There are four boxes to be used in defense of liberty: soap, ballot, jury, and ammo. Please use in that order. -Ed Howdershelt (Author) Yahoo.com and AOL/TW attorneys please note, additions to the above message by Gene Heskett are: Copyright 2007 by Maurice Eugene Heskett, all rights reserved. ___ NetworkManager-list mailing list NetworkManager-list@gnome.org http://mail.gnome.org/mailman/listinfo/networkmanager-list
Re: questions re WEP keys
On Wednesday 24 January 2007 09:21, Timo Hoenig wrote: On Wed, 2007-01-24 at 09:11 -0500, Gene Heskett wrote: 20 some years ago I was dreaming in hexidecimal, writing code for 8 bitters like the 1802, Z-80(spit) and the 6x09 stuff, and I would have taken you up on that in a heartbeat. Hey, I'm happy to see the ZX-81 emulator running on my PlayStation Portable, even today :-) But now I'm 72, and don't seem to be able to get my head around much more than a bash script these days. I'm sure that you will see most of your requests being fulfilled as NetworkManager evolves. In general, depending on the support of your distribution, it is already now possible to use profiles. Even with NetworkManager. But, again, I am not able to help much as my experience with Fedora is near zero. If you monitor this list you will see feature requests on a regular basis. You can expect the developers to pick them up if appropriate. Timo I'm sure it is moving at a visible pace there in your camp, but the distro's seem to be picking this up at what I'll be kind and call a glacial pace. At least now, if all the stars align correctly, it works. If you go back in the archives for last spring you'll see that I finally gave it up and killed it, and then I could setup the configs by hand and get it to work. It continued to work, IIRC for the majority of my time in Iron Mountain, until sometime in July (I think) at which point I borrowed one of the motels little d-link radios and plugged it into the cat5 connector. I don't know how many NM updates have come into the pipeline for FC5, and quite a few attempts since then till this morning have always failed, requiring I get out a chunk of cat5 and plug it straight into my 8 port switch if I wanted a net connection. Then this morning I finally made it work again. The question now is, is this mornings results repeatable? No. It still asks kwalletmanager, and when I close that it opens a requestor for the passphase which I change to be the hex key, than cat the keys-wlan0 file and paste the first key into the box and click connect. Then it works. The next question after that one, for when I get a enable key for dd-wrt, is how much trouble is it to convert WEP to WAP(2), which I'm told is considerably more secure? My neighborhood seems to be sprouting 802-11g circuits recently I just as soon not be sharing a connection if I can help it. -- Cheers, Gene There are four boxes to be used in defense of liberty: soap, ballot, jury, and ammo. Please use in that order. -Ed Howdershelt (Author) Yahoo.com and AOL/TW attorneys please note, additions to the above message by Gene Heskett are: Copyright 2007 by Maurice Eugene Heskett, all rights reserved. ___ NetworkManager-list mailing list NetworkManager-list@gnome.org http://mail.gnome.org/mailman/listinfo/networkmanager-list
Re: questions re WEP keys
On Wednesday 24 January 2007 21:15, Darren Albers wrote: [...] Not to sound harsh but it sounds like you are causing your own problems This is NOT intentional by any means, its me, playing blind squirrel looking for the magic nut when things don't work. If you would fix your problems with the KDE Wallet it would store your passphrases for you and you wouldn't have to do anything except unlock the wallet. I'll take my questions to the kde list then, and many thanks for the assistance so far. -- Cheers, Gene There are four boxes to be used in defense of liberty: soap, ballot, jury, and ammo. Please use in that order. -Ed Howdershelt (Author) Yahoo.com and AOL/TW attorneys please note, additions to the above message by Gene Heskett are: Copyright 2007 by Maurice Eugene Heskett, all rights reserved. ___ NetworkManager-list mailing list NetworkManager-list@gnome.org http://mail.gnome.org/mailman/listinfo/networkmanager-list
Re: questions re WEP keys
On 1/24/07, Gene Heskett [EMAIL PROTECTED] wrote: On Wednesday 24 January 2007 21:15, Darren Albers wrote: [...] Not to sound harsh but it sounds like you are causing your own problems This is NOT intentional by any means, its me, playing blind squirrel looking for the magic nut when things don't work. If you would fix your problems with the KDE Wallet it would store your passphrases for you and you wouldn't have to do anything except unlock the wallet. I'll take my questions to the kde list then, and many thanks for the assistance so far. I think you earlier mentioned that you didn't know the wallet password and I googled this link: http://www.cosmopod.com/index.php?option=com_joomlaboardItemid=36func=viewid=591catid=9 If you can reset your wallet password you should be able to use it to store your passphrases and then all you should need to do is unlock the wallet for knetworkmanager to extract the wep key. ___ NetworkManager-list mailing list NetworkManager-list@gnome.org http://mail.gnome.org/mailman/listinfo/networkmanager-list
questions re WEP keys
Greetings; I have a situation where I would like to generate long keys, 128 bit, and in fact have done so. The lappy is running FC5, recent kernel. But from the messages I see in the logs, and what I see in knetworkmanager, it appears that the only key length supported by knetworkmanager is a puny little 40 bit key. The radio in the lappy is a bcm43xx. The access point is an elderly wap11 version 1.0. Ignoring knetworkmanager, I have edited the same keys into both the keys-wlan0 file on the lappy, and in the uploaded keys to the wap11 using the wap11gui. FWIW, this all worked just fine using ndiswrapper rather than the bcm43xx module back in May of last year. But, when I attempt to bring up wlan0, I see the access point being synchronized with by way of agreeing on the mac addresses that can talk to each other. The mac addresses logged are correct. The next step, if the bootproto=dhcp, is the issuance of a quad of DHCPDISCOVER packets over a period of about a minute, none of which are ack'd. These DHCPDISCOVER queries are being issued to 255.255.255.255. Is this correct? The router is enabled to service 50 clients for dhcp, and I would expect such a query to be sent to the gateway address listed in ifcfg-wlan0, which is in the 192.168.x.x range. However, I can set bootproto=none, and setup the stuff in that same ifcfg-wlan0 file, and get virtually the same results except it fusses that the address is already taken, which AFAICS it is not. As I see it, the wap11 is probably filtering the requests with its MASK of 255.255.255.0, but what do I know... Its 'gateway address' in its setup is the same as here, the local address of the router, a 1/18/2007 version of dd-wrt running on an x86 box. What is the next thing to check? Thanks. -- Cheers, Gene There are four boxes to be used in defense of liberty: soap, ballot, jury, and ammo. Please use in that order. -Ed Howdershelt (Author) Yahoo.com and AOL/TW attorneys please note, additions to the above message by Gene Heskett are: Copyright 2007 by Maurice Eugene Heskett, all rights reserved. ___ NetworkManager-list mailing list NetworkManager-list@gnome.org http://mail.gnome.org/mailman/listinfo/networkmanager-list
