LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Linux - Wireless Networking (http://www.linuxquestions.org/questions/linux-wireless-networking-41/)
-   -   cannot connect on wifi with WEP key 128bit (http://www.linuxquestions.org/questions/linux-wireless-networking-41/cannot-connect-on-wifi-with-wep-key-128bit-597706/)

PETROSHP 11-07-2007 01:40 AM

cannot connect on wifi with WEP key 128bit
 
Hi all,

yesterday I was in a friend's house having wireless connection with a router D-Link and a WEP key 128bit. It was unable for me to connect since it was not accepting the key I was entering (2 other notebooks where running on XP where connected and running!!). Since at home I have it open I have not realise that for a year and a half now!!! I tried another's friend wifi connection with the same criteria (different router) as well and still the same problem.

Can anyone tell me why's that happening??

Thanks in advance

JimBass 11-07-2007 02:31 PM

WEP has a few problems with it, and getting a linux client connected can prove difficult. First off, a 128 bit WEP password can ONLY be 13 chars long to work properly. A 64 bit can only be 5. The problem is if the password isn't the "correct" length, the router will basically fill in the blanks, or take letters away, to get it to the correct number of digits. Some routers chop off the end of the password, others the beginning, in short, it is a royal mess. My sister is using 128 bit WEP, and with a linksys router, the ascii -> hexi-decimal conversion is "wrong". By that I mean if you dump her password into an online converter, it will say the hexi passphrase should be cc6e4773f09e83752c8d123456, but her router says it should be another string, meaning the router simply isn't converting the password correctly.

The key to gaining authentication against WEP is to see what hexi-string the router has on itself. I copied the string off my sister's, and now I use that string as my authentication, with the help of the iwconfig command.

Also, for the record, WEP is hyper insecure. It is virtually no protection at all. Anybody with 2 seconds of linux skills can crack a WEP key in literally 5 seconds. All the headers of the allegedly encrypted traffic contains the key in them. By collecting enough packets going to or from the router, you can crack the key. WPA is the only authentication that is actually secure. You can crack a WEP key by capturing any packets, getting a WPA key means you have to capture a whole slew of packets as a user is authenticating against the router, which usually isn't possible.

Peace,
JimBass


All times are GMT -5. The time now is 04:03 PM.