airsnort, pcmcia-cs, monitor mode, ibook1

[gen2]

Hi all,

Been searching all over google and this forum for solutions, tore half my hair out over the last few weeks, and now I'm ready for someone to tell me the brutally simple things I've overlooked...

Running 2.4.21-ppc-r2 on an ibook 300 (which I guess could be called an "iBook1") with an airport card. Wireless connectivity is working fine on the benh-2.4.20-r9 ONLY, go figure.

First, have I completely overlooked the comprehensive "make airsnort and kismet work on ibook1" how-to (yes, I saw airport.shmoo.com)? All I see is cryptic and incomplete info everywhere, yet I'm sure I can't be the only one in the dark (or so I hope!).

2nd, does anyone know the EXACT procedure, completely describing how to get kismet and airsnort running on ibooks, in monitor AND/OR scan modes? I tried the patches on the airsnort site, and patch only partially succeeded, and airport did not work at all. Re-downloaded several different kernels, but nothing wants to recognize the airport card other than benh 2.4.20r9. Always I get SIOCSIFADDR: No such Device. Yes, the kernel driver modules are set, and modprobed. Orinoco module does load, but no card recognition happens.

3rd, should not the airsnort or kismet ebuild script handle everything, so it all "just works", or at least give explicit instructions to complete the installation?

4th, how does pcmcia-cs fit into all this? Or does it fit in at all on PPC? Do ibooks even HAVE pcmcia needs?

5th, should I be using linux-wlan-ng?

6th, would it be really great if all these questions were answered so no-one will have to ask them again in this forum? Then they could be folded into the Docs section, perhaps, because warwalking is so darn cool?

ACK!

Giant Thanks!

[zojas]

I have an ibook2, so I can only help you somewhat.

on mine at least, I don't use pcmcia at all.

at the site in my sig, I have my kismet config file.

you must have a slightly different airport chipset than me. the patches have always worked fine on my kernels. and the latest stable ppc sources doesn't require any patching for me.
_________________
http://www.desertsol.com/~kevin/ppc

[gen2]

[zojas]

wireless-tools is the package containing iwconfig but I don't think that will help you until you get orinoco modprobed.

on my ibook2 these are the modules I have loaded right now:

[jbc42]

1 - In my setup (iBook 2.2) it works fine with the latest stable ppc-sources kernel (which it looks like you're using too). That has all the monitor mode patches integrated. I have no idea why your drivers aren't working - you are modprobing airport and not orinoco? You haven't enabled wavelan drivers? If you have the right drivers "iwpriv eth1" should have the "monitor" keyword in the output.

2 - Edit kismet.conf to config your install to run on the airport card (config as orinoco). Run kismet_monitor to put in monitor mode. Run kismet_hopper to get it to hop channels. Airsnort is relatively easy to get working if you have kismet working, although my gets a bit flaky after a few thousand packets

3 - No neither of these tools is setup for someone new to this - you should hit the kismetwireless.net site for the docs.

4 - it doesn't... ibooks don't have pcmcia slots

5 - no, airport is a modified orinoco card

6 - yes it would wouldn't it ?

On a side note, my personal favourite is actually kismac on osx with the integrated cracking and speech for discovered ssids
_________________
Glutton for punishment... gentoo on i386, sparc and powerpc

[gen2]

1 - Thanks to Zojas, I discovered the weasle gnawing on my face was indeed ye olde modprobing of AIRPORT, not just orinoco. DOH!

2 - Yah, dey be krankin now.

3 - Kismet conf turns out to be pretty easy after all...my frustrations were originating from the lack of modular joy...

4 - kewl. I still wonder about what bus this card inhabits, and why lspci is unaware of it...could it be a usb dev? Guess I'll check that...or maybe it's some wacky Apple novelty-bus...

*************************************************
* New And Exciting Issue Of the Moment:
*************************************************

Using wireless-tools-27_pre2, I enter

# iwconfig eth1 essid "testing123"

and sure enough, the change is visible with

# ifconfig eth1

BUT

if I enter

# ifconfig eth1 channel 01

I get this:

Error for wireless request "Set Frequency" (8B04) :
SET failed on device eth1; Operation not supported

Puh.

Which face-gnawing rodent am I unable to identify today?

[cselkirk]

[gen2]

Okay, well now that everyone knows I'm on crack...

s/ifconfig/iwconfig
and
s/crack/rehab

Trying again to convey my prollem:

iif I enter

# iwconfig eth1 channel 01

I get this:

Error for wireless request "Set Frequency" (8B04) :
SET failed on device eth1; Operation not supported

(ifconfig couldnt have produced that error message after all, anyway )

thanks!

[cselkirk]

[gen2]

That sounds like a very interesting bit of info, but I've managed to find a way for it NOT to work!

So I'm running on the airport net, everything is beautiful:
# iwconfig eth1
eth1 IEEE 802.11-DS ESSID:"testing" Nickname:"HERMES I"
Mode:Managed Frequency:2.422GHz Access Point: XX:XX:XXwhatever
Bit Rate:11Mb/s Tx-Power=15 dBm Sensitivity:1/3
Retry limit:4 RTS thr:off Fragment thr:off
Encryption key:off
Power Management:off
Link Quality:47/92 Signal level:-46 dBm Noise level:-93 dBm
Rx invalid nwid:0 Rx invalid crypt:0 Rx invalid frag:0
Tx excessive retries:0 Invalid misc:0 Missed beacon:0

Then I run this:

# iwpriv eth1 monitor 2 1

then this happens

# iwconfig eth1
eth1 IEEE 802.11-DS ESSID:"non-specified SSID !!" Nickname:"HERMES I"
Mode:Managed Frequency:2.412GHz Access Point: 00:00:00:00:00
Bit Rate:11Mb/s Tx-Power=15 dBm Sensitivity:1/3
Retry limit:4 RTS thr:off Fragment thr:off
Encryption key:off
Power Management:off
Link Quality:0/92 Signal level:134/153 Noise level:134/153
Rx invalid nwid:0 Rx invalid crypt:0 Rx invalid frag:0
Tx excessive retries:0 Invalid misc:0 Missed beacon:0

The ESSID value is weird (to me), the access point value is very strange (yeah, it's really 00's), the frequency changed(???), Link Quality is weird relative to previous state, SigLev and NoiseLev are descibed in new terms, too. The processor is getting slammed, however, which seems to indicate monitor mode "happened", but I'm still in managed mode?? Verry confusing...

So then I do this:

# iwconfig eth1 channel 1
or even
#iwconfig eth1 channel 01

and get this again:

Error for wireless request "Set Frequency" (8B04) :
SET failed on device eth1; Operation not supported

I'm assuming that kismet_hopper (kismet and airsnort do work, btw) has control over this channel switching deal, so I'm baffled as to why I can't do it. This is an iBook2-500 at the moment...I aim to get it rolling here 1st then migrate whatever to the iBook1, then post a link to a boneheads' how-to based on what we acheive here...

THANKS FOR YOUR PATIENCE!

[cselkirk]

[gen2]

Thanks, but kismet does work, and airsnort -- that whole deal is nailed, thank you all very much.
I can even get back out of monitor mode, reset my eth1 action, do normal surfing after a kismet session; all is well.

Regarding the previous message and channel changing, it certainly appears as though I WAS in monitor mode (2nd instance of iwconfig eth1 in the Aug29,10.18am message), and you're basically telling me I was indeed because the access point value was 00:00:etc. That's great but why does iwconfig eth1 still say "Mode:Managed"? That's exactly the kind of thing that sends me back to the hot pipe.
Shouldn't the Mode: value be Monitor?

I may be drifting offtopic by a slice, but what I was trying to do is manually change channels, so that after I find an open AP with kismet (and after exiting kismet and resetting the interface) I'd be able to switch to that channel and get some access. I'm bracing myself for another dispensation of "the obvious" that I've overlooked yet again...but this is great stuff for my boneheads' how-NOT-to doc...

So I'm still stuck at trying to just simply change channels on the card with iwconfig.

[cselkirk]

[gen2]

[gen2]

[gen2]

OK, I think I found the answer. Seems that we CAN'T change the channels manually (and probably don't have to)!

According to this:
http://sourceforge.net/mailarchive/message.php?msg_id=4437322


"Can't set the channel in managed mode, the firmware always scans the
channels for an AP with matching ESSID."


YOWZA.

Good Lawd this stuff needs to be in one place! I'm on it, if I can get a window this week there'll be a summary of these discoveries and issues forthcoming.

Thanks All!

[zojas]

so all we have to do to join a network is set the essid?
_________________
http://www.desertsol.com/~kevin/ppc

[cselkirk]

[gen2]

[cselkirk]