Linux

Site Search

Windows

WIN32 tools, Howtos   Tools Index

General

Miscellaneous WI-FI   Default WI-FI Settings   Rogue AP Howtos   WI-FI Certifications   802.11 Standards   STEP BY STEP Guides   Formats / Extensions   WI-FI Home Security   Useful Links

FC6 Wireless Auditing Laptop: HOWTO (Updated February 07)

Q. Why create your own Linux Wireless Audit build?

A. We find it more flexible to have our own Fedora Core/RedHat based Wireless Auditing build; one that we can maintain with the latest tools and utilities.  It also great fun setting everything up and configuring it the way we want it. 

For those of you that don't have the time or the inclination to create your own build there is always the superb (Slackware based) Live Linux distribution 'Backtrack' (www.remote-exploit.org) which runs direct from CD or can be installed to the local hard drive.

Fedora Core 6 - Installation Guide

Post Installation Configuration

Installing Atheros Cards (madwifi-ng drivers) *Injection Supported

Troubleshooting madwifi-ng drivers

Orinoco card information

Prism card Information (hostap)

Installation of Fedora Core 6

NOTE: This install guide is based on the graphical install option.

Choose appropriate language and keyboard settings.

Choose the 'Install Fedora Core' option.

Setup your partitions using either the Automatic or Manual method.

Configure your network settings as per your ISP (required for later).  Disable IPv6 support if not required.

Select your time zone.

Configure a suitably strong 'root' password.

Choose 'customise now', when prompted for your software selection:

Enable the following packages (disabling all others)

Items marked '*' are optional but can be very useful

Desktop Environments:

• Gnome Desktop Environment

   

Applications:

• Editors

• Graphical Internet

• Graphics *

• Office/Productivity *

• Sound and Video *

   

Development:

• Development Libraries

• Development Tools

• Gnome Software Development

• Java Development *

• Ruby *

• X Software Development

   

Servers:

• Windows File Server *

Base System:

• Administration Tools

• Base

• Java *

• System Tools *

• X Windows System

Languages > Just leave as default.

Select > Next to begin the installation (This takes time!)

Post Installation Configuration

Select 'Forward' :

• Agree to the license agreement

• Leave firewall Enabled

   

• Deselect all trusted services (unless required for other purposes)

   

• Set SELinux to Disabled (Choose 'Yes' to accept reboot later)

   

• Set you local date and time (enable Network Time Protocol, if required)

   

• Add a normal user account (protect with a strong password)

   

• Test and accept sound configuration > Finish > Reboot

Prior to the next set of steps you ensure you have Internet connectivity:

Check you IP, netmask, DNS and default gateway settings (System > Administration > Network).

• Once the reboot has taken place logon as root, open a shell (located in Applications> Accessories>Terminal)

   

  • ping www.bbc.co.uk to ensure you have a suitable Internet connection

     

  • yum  update (This takes time!)

     

  • To begin downloading enter 'y'  at the 'Is this ok [y/N]:' prompt (This takes time!)

     

  • To install the packages enter 'y' at the 'Is this ok [y/N]:' prompt (This takes time!)

     

• We also recommend disabling the following services (System > Administration > Server Settings > Services):

   

  • bluetooth

     

  • cups

     

  • hidd

     

  • ip6tables (if you disabled IPv6)

     

  • mcstrans (if you disabled SELinux)

   

  • netfs

     

  • nfslock

     

  • pcscd

     

  • portmap

     

  • restorecond (if you disabled SELinux)

     

  • rpcgssd

     

  • rpcidmapd

     

  • sendmail

     

  • ssh (unless you intend to use it)

NOTE: Make sure you save your new configuration.

This will not only reduce your boot time, but more importantly reduce your footprint from anyone wishing to attack your system!

Ensure you reboot after the update process, before installing card drivers!

Installing Atheros Cards (madwifi-ng drivers)

NOTE: There are issues with the new 2.6.19 kernel, this build only works with the 2.6.18 kernel (see troubleshooting)

Download madwifi-0.9.2.1.tar.gz from http://madwifi.org/ to /root

NOTE: Versions prior to 0.9.2.1 are vulnerable to a remote buffer overflow

Download madwifi-ng-r1886.patch from http://patches.aircrack-ng.org/madwifi-ng-r1886.patch  to /root

tar zxvf madwifi-0.9.21.tar.gz

cd madwifi-0.9.2.1

ln -s /usr/src/kernels/2.6.18-1.2849.fc6-i686/include/config/i2o/config.h   /usr/src/kernels/2.6.18-1.2849.fc6-i686/include/linux/config.h 

NOTE: the above 'ln -s' command is all entered on the same line!

export KERNELPATH=/usr/src/kernels/2.6.18-2849.fc6-i686

NOTE: You may have to replace the kernel version listed above (2.6.18-1.2849.fc6-i686) to your particular version if you are running a different kernel version.

patch -Np1 -i ../madwifi-ng-r1886.patch

make

make install

If prompted:

“If you are installing new MadWifi modules, you should consider removing those

already installed, or else you may experience problems during operation.

Remove old modules?”

[l]ist, [r]emove, [i]gnore or e[x]it (l,r,i,[x]) ?

choose 'r' to remove

modprobe ath_pci

Installation is now complete.

iwconfig should now confirm the card is installed: wifi0 and ath0 (See madwifi-ng commands)

Providing kismet is installed, and configured correctly (See: Kismet Installation guide)

Kismet should start by typing: kismet

NOTE: ensure kismet.conf is configured correctly 'source=madwifi_b,wifi0,madwifi')

To set the card into monitor mode use either:

airmon-ng start ath0 [channel] from the aircrack-ng suite

or

wlanconfig ath0 create wlandev wifi0 wlanmode monitor from the madwifi commands

Trouble Shooting mad-wifi driver:

If you receive an error along these lines:

cc1: warnings being treated as errors
/root/madwifi-0.9.2.1/ath/if_ath_pci.c: In function 'ath_pci_probe':
/root/madwifi-0.9.2.1/ath/if_ath_pci.c:208: warning: passing argument 2 of 'request_irq' from incompatible pointer type
make[3]: *** [/root/madwifi-0.9.2.1/ath/if_ath_pci.o] Error 1
make[2]: *** [/root/madwifi-0.9.2.1/ath] Error 2
make[1]: *** [_module_/root/madwifi-0.9.2.1] Error 2
make[1]: Leaving directory `/usr/src/kernels/2.6.19-1.2911.fc6-i686'
make: *** [modules] Error 2

The fix is to roll back to kernel 2.6.18.  Either edit the /etc/grub.conf file and remove references to the 2.6.19 kernel (leaving only 2.6.18) or hit any key when prompted on boot and choose to use the 2.6.18 kernel.
 

Orinoco Card Information (No injection capability)

NOTE: Whilst most of the major Wireless discovery tools (e.g. Kismet, airodump-ng) will work out of the box on FC6.  However the card is not capable of performing packet injection due to limitations with the cards firmware, better to go for the Atheros card (madwifi-ng) for full packet injection capabilities. 

Insert the Orinoco card

ifconfig eth1 up

Providing kismet is installed, and configured correctly (See: Kismet Installation guide)

Kismet should start by typing: kismet

kismet (simply start your tool of choice; ensuring kismet.conf is configured correctly 'source=orinoco,eth1,orinoco')

Prism card (hostap) Information (No injection capability)

The Prism card will also work out of the box on FC6, however, whilst perfectly fine for discovery (e.g. kismet, airodump-ng). The card is not capable of performing packet injection due to limitations with the cards firmware, better to go for the Atheros card (madwifi-ng) for full packet injection capabilities. 

Insert the Prism card

ifconfig eth1 up

Providing kismet is installed, and configured correctly (See: Kismet Installation guide)

Kismet should start by typing: kismet

NOTE: ensure kismet.conf is configured correctly 'source=source=hostap,eth1,hostap')