Re: AirSnort and Kismet on Red Hat 9 with Orinoco Gold?

["Jim Duggan" <on_a_thousand () hotmail com>]

Oops let me rephrase that last comment, i had this method working with
kismet and airsnort as of last year, but havent played with kismet lately.
just recently i noticed the link to that orinoco driver so i dont know if
the methods the 2 use have changed.  It would seem if airsnort can work fine
in monitor mode so could kismet but i thought i should throw the link in for
good measure, try it out with the manually patched ones first.

-Jason

----- Original Message ----- 
From: "Jim Duggan" <on_a_thousand () hotmail com>
To: "Mark G. Spencer" <mspencer () evidentdata com>;
<pen-test () securityfocus com>
Sent: Friday, September 19, 2003 1:53 PM
Subject: Re: AirSnort and Kismet on Red Hat 9 with Orinoco Gold?


> I have my orinoco gold working with both airsnort and kismet w/ 8.72
> firmware on Slackware.  Even got it to use kismet_monitor correctly.  It
may
> be a bit lengthy but sounds like you should be able to conquer everything,
> here we go.
>
> 1. Go get a the newest kernel source, im using 2.4.22-ac3 but ive
> consistantly gotten it to work on any ive tried since .19.
>
> 2.  Grab the patch for wireless extensions v16 and apply it to your kernel
> http://www.hpl.hp.com/personal/Jean_Tourrilhes/Linux/iw241_we16-6.diff
>
> 3. After you patch up those 4 files go ahead and copy
> /usr/src/linux/include/linux/wireless.h to /usr/include/linux/wireless.h
or
> equivalents (i dunno if this goes against the age old base includes need
to
> match which sources the libraries where built against but its needed to
> compile the most recent wireless tools)
>
> 4. Under general setup in your kernel make sure you have support for hot
> pluggable devices disabled and under network device support -> wireless
LAN
> you just have Wireless LAN enabled, dont choose any drivers as the pcmcia
> package seems to work better.  Recompile your kernel modules lilo reboot
> etc.
>
> 5. Install the most recent wireless tools
http://www.hpl.hp.com/personal/Jean_Tourrilhes/Linux/wireless_tools.26.tar.gz
> if the extensions got placed correctly it should compile and install fine.
>
> 6.  Grab the most recent pcmcia-cs package
> https://sourceforge.net/projects/pcmcia-cs/  (3.2.5 right now) untar it
and
> leave it alone for a sec
>
> 7.  Get the most recent orinoco drivers
> http://ozlabs.org/people/dgibson/dldwd/orinoco-0.13e.tar.gz and patch them
> for monitor mode http://airsnort.shmoo.com/orinoco-0.13e-patch.diff
>
> 8.  Copy *.c and *.h into the pcmcia-cs-3.2.5/wireless dir
>
> 9.  Go ahead and run ./Configure in the pcmcia dir and get that all set
up,
> should be easy enough.  Get the pcmcia service up and running
>
> At this point the card should be found.  man iwconfig should get you from
> here.  I have mine working fine w 128bit encryption the only stipulation
was
> i couldnt get shared key working, i had to use open, if you get anywhere
on
> this id like to know.  I have this working with airsnort but for kismet
you
> need to use a special driver http://airsnort.shmoo.com/orinoco_hopper.c  i
> believe you just replace orinoco.c but i never really tried it.  I didnt
> want to have the hassle of 2 different modules so i just use net stumbler
> under xp to locate networks and airsnort to crack.  Hope this help
>
> -Jason
>
>
>
> ----- Original Message ----- 
> From: "Mark G. Spencer" <mspencer () evidentdata com>
> To: <pen-test () securityfocus com>
> Sent: Friday, September 19, 2003 8:05 AM
> Subject: AirSnort and Kismet on Red Hat 9 with Orinoco Gold?
>
>
> > I'm looking for advice on running AirSnort and Kismet on Red Hat 9 with
an
> > Orinoco Gold.  I tried to flash my firmware down to the 7.52 level as
> > recommended by the AirSnort website, but the firmware utility reports
"no
> > wireless card driver found" on my XP notebook.  So, I'm wondering if
> anyone
> > has used AirSnort and Kismet successfully with a firmware flashed up to
> the
> > 8.72 release?  The AirSnort website mentions 8.10 is likely a problem,
but
> > I'm hoping 8.72 will magically work.  ;)
> >
> > I'll try it later today anyway, but if anyone has advice before I jump
in,
> > it would be much appreciated.  Last time I tried to get AirSnort running
> on
> > a Red Hat 9 notebook I totally killed it somehow after all the driver
> > patching and was never able to get wireless to work on that laptop
again,
> > until a fresh install of the OS.
> >
> > Thanks,
> >
> > Mark
>
> --------------------------------------------------------------------------
> -
> > FREE Trial!
> > New for security consultants and in-house pros: FOUNDSTONE PROFESSIONAL
> > and PROFESSIONAL TL software. Fast, reliable vulnerability assessment
> > technology powered by the award-winning FoundScan engine. Try it free
for
> 21 days at:
http://www.securityfocus.com/sponsor/Foundstone_pen-test_030825
> --------------------------------------------------------------------------
> --
> >


---------------------------------------------------------------------------
----------------------------------------------------------------------------