List Info

Thread: Obtatining a public key from an access point?
Obtatining a public key from an access point?
user name
 2007-07-26 22:08:35 

  


  

    
Hi folks.

I don't know much about wireless, but I do know some networking and programming and administration.

I have a Palm TX PDA, which has 802.11b.

Where I work, they use WPA/TKIIP/PEAP.  Only. ; And they do it a little strangely - some sort of problem with the certificate - it may be self signed, I don't know. ; Anyway, when you set up a windows machine for wireless here, it gives you a warning about the certificate, and the admins (who apparently don't give out the wireless password) quickly click past the warning and call it done.


I don't have that option on my TX, and the admins here seem to feel that if something isn't running windows, it isn't worth supporting - even though our product is 100% linux.  Shrug.  To these people, the only normal mail program in the world is outlook, and only if used with MAPI - IMAP is a no no, as is the outlook web interface.


Anyway, there's this windows program (which appears to run in wine on Linux), that allows you to import a public key from an access point (from a file, not from the wireless network itself apparently!), and from that file generate a palm .pdb file (a palm database file) that at least in theory  should give me access to the wireless in my workplace.


And of course, when I asked our admins for the public key, they just ignored me.  :(

Which leads to my question: Is there some program I can run on windows (I have a wireless windows laptop) or on linux (I have a wired linux desktop I could probably install a wifi card in, though that'd probably disrupt my work more, because I use it a lot more than the windows machine) that'll obtain the public key, and stuff it in a file in a common format - after which I'd import that file into the palm Wifi Profile Wizard (cute - a "wizard" for something that should';ve been fully automated , get the .pdb, sync the  .pdb to my PDA, and finally get wireless working on it?


Anyone have any suggestions?  (I mean other than finding a new place to work 

Thanks in advance!




  

  
  
   
     
    

  

    Re: Obtatining a public key from an
access point?
  


  

     country flaguser name
United States		
     2007-07-27 12:07:43
  


  

    
On Thu, Jul 26, 2007 at 08:08:35PM -0700, Dan Stromberg
wrote:
> Anyway, when you set up a windows machine for
> wireless here, it gives you a warning about the
certificate, and the admins
> (who apparently don't give out the wireless password)
quickly click past the
> warning and call it done.
> 
> [...]
> 
> And of course, when I asked our admins for the public
key, they just ignored
> me.  :(

<BOFH-mode>

Set up your own AP, configured to talk to your own PEAP
RADIUS server.
Get the admins to connect a machine to the wireless in range
of your AP
(since the cert is different, it'll have to be a new
machine).  They'll
just blindly click through the cert warning, and connect --
and you can
then (a) collect the password, since you'll have the private
key for the
PEAP cert and control over the RADIUS server, or (b) infect
the new
machines with all the latest Windows worms.

Or do both.  

</BOFH-mode>

(OK, this is probably a horrible idea, and probably violates
several
parts of your employment contract.  But this kind of attack
is *exactly*
why self-signed certs aren't a good idea unless you verify
the
fingerprint every time you set up a new client.  And if
they're blindly
clicking through, then they're not verifying anything.)

> Which leads to my question: Is there some program I can
run on windows
> [...] that'll obtain the public key, and stuff it in a
file

Wireshark perhaps?  You'd have to sniff the EAPOL frames
during the PEAP
setup, but the cert should be part of those frames.  Getting
it out may
be difficult, but should be doable if you can interpret the
server hello
packet in the PEAP exchange.

Depending on your wireless card's driver, though, this may
not work --
Wireshark can't always sniff packets from wireless NICs on
Windows.


_______________________________________________
HostAP mailing list
HostAPshmoo.com
http:/
/lists.shmoo.com/mailman/listinfo/hostap



  


  

    
  

  
  
   
     
    






 [1-2]











   
 





about | contact  Other archives ( Real Estate discussion Medical topics )