Differences

This shows you the differences between two versions of the page.

--- fake_authentication [2007/08/18 20:33] – twistedb
+++ fake_authentication [2008/11/09 15:59] – Added troubleshooting tip for Denied code 12 darkaudax
@@ Line 4: / Line 4: @@
 ===== Description =====
-The fake authentication attack allows you to perform the two types of WEP authentication (Open System and Shared Key) plus associate with the access point (AP).  This is useful is only useful when you need an associated MAC address in various [[aireplay-ng]] attacks and there is currently no associated client.  It should be noted that the fake authentication attack does NOT generate any ARP packets.
+The fake authentication attack allows you to perform the two types of WEP authentication (Open System and Shared Key) plus associate with the access point (AP).  This is useful is only useful when you need an associated MAC address in various [[aireplay-ng]] attacks and there is currently no associated client.  It should be noted that the fake authentication attack does NOT generate any ARP packets.  Fake authentication cannot be used to authenticate/associate with WPA/WPA2 Access Points.
 ===== Usage =====
@@ Line 95: / Line 95: @@
 ===== Usage Tips =====
 ==== Setting MAC address ====
-It is good practice to set your card's MAC address to the one you specify via the "-a" parameter if they are different.  Having them the same, ensures that wireless "ACK"s are sent by your card.  This means subsequent attacks work smoothly.
+It is good practice to set your card's MAC address to the one you specify via the "-h" parameter if they are different. Having them the same, ensures that wireless "ACK"s are sent by your card. This means subsequent attacks work smoothly.
 Detailed instructions on changing the card MAC address can be found in the FAQ: [[http://aircrack-ng.org/doku.php?id=faq#how_do_i_change_my_card_s_mac_address|How do I change my card's MAC address ?]].
@@ Line 183: / Line 180: @@
 See the [[http://aircrack-ng.org/doku.php?id=shared_key|How to do shared key fake authentication]] tutorial.
-==== Error Message "Denied (code 10), open (no WEP) ?" ====
-You cannot use fake authentication with an Open AP.  Open meaning there is no WEP encryption enabled.  There is no WEP key to crack!
 ==== MAC access controls enabled on the AP ====
@@ Line 213: / Line 207: @@
 Answer:  You need to patient.  When a client associates with the AP, then airodump-ng will obtain and display the ESSID.  If you are impatient then [[http://aircrack-ng.org/doku.php?id=deauthentication|deathenticate a client]] to get the  ESSID immediately.
+==== Error Message "Denied (Code 1) is WPA in use?" ====
+You get something similar to this:
+   Sending Authentication Request
+   Authentication successful
+   Sending Association Request
+   Association successful
+   Denied (Code 1) is WPA in use?
+You cannot use fake authentication with a WPA/WPA Access Point.  It may only be used with WEP Access Points.
+==== Error Message "Denied (code 10), open (no WEP)?" ====
+You cannot use fake authentication with an Open AP.  Open meaning there is no WEP encryption enabled.  There is no WEP key to crack!
+==== Error Message "Denied (code 12), wrong ESSID or WPA?" ====
+First, ensure the AP you are trying to connect to is WEP.  You cannot do fake authentication to a WPA/WPA2 network.
+The most likely reason to get this error message is when the ESSID specified with "-e" does not EXACTLY match the real ESSID.  Capitalization, spaces, special characters and so on must match exactly.  See this FAQ entry [[faq#how_to_use_spaces_double_quote_and_single_quote_etc._in_ap_names|FAQ entry]] for instructions on how to handle unusual ESSIDs.
+==== Error message "code (XX)" ====
+You receive an error messages referencing a code number.  This [[http://www.gthill.com/managementframes.pdf|Management Frames description]] is an excellent description of the various error codes you may receive.  Just look for the number relating to the authentication or association phase when you received the error.