回复: iwlist scan can't return AuthMode and EncrypTape

Dan Williams dcbw at redhat.com
Wed Jul 9 11:32:48 EDT 2008


On Wed, 2008-07-09 at 18:14 +0800, Lixin Song wrote:
> Hello:
>      According to my recent research, it seems for
> WEP, we can not get any more information. There is
> only one bit(priv?) in the beacon that says where the
> AP is WEP on or off.
>      I wish I were wrong! Our application engineer is
> complaining about this.

This is a deficiency in the 802.11 specification.  The only thing you
get is the "Privacy" bit.  There is no indication of 802.11
authentication mode (i.e. Open System or Shared Key), nor is there any
indication of the WEP key length (40 or 104 bit).  That's just the way
it is.  The user has to know.

Note that if the WEP key is wrong on the user's end, there is no way to
know the key is wrong using WEP Open System authentication except by
doing DHCP and timing out, or some other IP-level connectivity test
(which could take a long time).

WEP Shared Key authentication will tell you almost instantly if the WEP
key is wrong, but is actually _less_ secure than Open System due to
flaws in the Shared Key handshake protocol.  WEP Shared Key
authentication should not be used where security is important.

Unfortunately, your app engineer will just have to come up with
something that allows the user to enter the options :(

Dan

> 
> --- 李海红 <lhh at nbicc.com>写道:
> 
> > Dear hostap
> >              I am using Wireless Extension 16,
> > Wireless_tools.26, on kernel 2.4.26.
> >              And i set my router with AuthMode =
> > WPA-PSK,encrypType=auto,and when use iwlist
> > scan,only get:
> >     
> >          Cell 03 - Address: 00:19:E0:C3:5F:7A
> >                     Mode:Managed
> >                     ESSID:"nbicc"
> >                     Channel:6
> >                     Encryption key:on
> >                     Bit Rate:0kb/s
> > 
> >               I know the Encryption is on,but it
> > won't tell me which kind,also when i set router with
> > AuthMode=WEP,
> > it just tell me Encryption is on,not tell the detail
> > encryption type.
> > I see somebody list the scan information like
> > follows:
> >           Cell 01 - Address: 00:12:17:15:E8:BA
> >                     ESSID:"pieter"
> >                     Mode:Master
> >                     Channel:1
> >                     Frequency:2.412 GHz (Channel 1)
> >                     Quality=50/100  Signal level=-57
> > dBm  
> >                     Encryption key:on
> >                     IE: WPA Version 1
> >                         Group Cipher : TKIP
> >                         Pairwise Ciphers (1) : TKIP
> >                         Authentication Suites (1) :
> > PSK
> >                     Bit Rates:1 Mb/s; 2 Mb/s; 5.5
> > Mb/s; 11 Mb/s; 18 Mb/s
> >                               24 Mb/s; 36 Mb/s; 54
> > Mb/s; 6 Mb/s; 9 Mb/s
> >                               12 Mb/s; 48 Mb/s
> >                     Extra:tsf=00000008dd4aa90f
> > 
> > 
> >            would someone tell me how to show the
> > information:  
> >                   IE: WPA Version 1
> >                         Group Cipher : TKIP
> >                         Pairwise Ciphers (1) : TKIP
> >                         Authentication Suites (1) :
> > PSK
> > 	
> >                   thanks first!
> > 
> > 
> > Best Regards!
> >       
> > Li Haihong
> > E-Mail:lhh at nbicc.com
> > _______________________________________________
> > HostAP mailing list
> > HostAP at lists.shmoo.com
> > http://lists.shmoo.com/mailman/listinfo/hostap
> > 
> 
> 
> 
>       ___________________________________________________________ 
>  雅虎邮箱,您的终生邮箱! 
> http://cn.mail.yahoo.com/
> _______________________________________________
> HostAP mailing list
> HostAP at lists.shmoo.com
> http://lists.shmoo.com/mailman/listinfo/hostap



More information about the HostAP mailing list