|
Emergence
Join Date: Jul 2004
Location: Paris
Posts: 389
|
Quote:
|
Originally Posted by aminal
The display got messed up a bit for some reason in the results (as you'll see) but here's what came back with fudge one:
Code:
in check_wepkey: weplen = 13, wepkey = 85:84:AB:0A:BB:BA:94:11:66:C5:E4:B4:75
test 0 started, kcheck = 67,A4,01,00,21,04,FE,09,13,C6
test 0 done, result = 1
test 1 started, kcheck = EE,F1,14,00,86,BF,FB,50,F2,43
test 1 done, result = 1
test 2 started, kcheck = 68,A4,01,00,A5,8C,A0,DE,93,31
test 2 done, result = 1
test 3 started, kcheck = EF,F1,14,00,B7,DE,12,6A,82,6E
test 3 done, result = 1
test 4 started, kcheck = F1,F1,14,00,B1,BA,B6,D6,6F,B1
test 4 done, result = 7
test 5 started, kcheck = F2,F1,14,00,46,52,E4,27,DE,DA
test 5 done, result = 4
test 6 started, kcheck = F3,F1,14,00,EB,99,AD,57,E1,76
test 6 done, result = 7
test 7 started, kcheck = F4,F1,14,00,12,A7,A4,03,33,E3
test 7 done, result = 4
|
Thanks very much. After deciphering the data above, it appeared that the first four packets are actually 802.2 IPX/TokenRing? encapsulated in 802.3 (SNAP = E0 E0 03 FF FF 00), two others are Appletalk (SNAP = AA AA 03 08 00 07) and the rest is regular Ethernet (SNAP = AA AA 03 00 00 00). The simplest way to fix this bug is to take case of the E0 case and only verify each ciphertext's first two bytes in check_wepkey. These changes will be included in aircrack 1.4, as well as a couple of other bugfixes mainly aimed at enhancing portability on other unices. Again, thanks a lot for your diligent help on this matter  |