Thread: ANOTHER Kismet thread...
hello,
im new forums, , new linux, infact, first day working os.
have been trying kismet working, , have been scouring web , google looking solutions error reports im getting!
finally, iv decided, way im going perhaps need, join 1 of these communities!
im not sure details need me this...... heres kismet .config file!
# kismet config file
# of "static" configs have been moved here -- command line
# config getting way crowded , cryptic. want functionality,
# not continually reading --help!
# version of kismet config
version=2005.06.r1
# name of server (purely organizational purposes)
servername=kismet
# user setid (should normal user)
suiduser=ethan
# sources defined as:
# source=madwifi_g,wlan0,hp-wlan400
# source types , required drivers listed in readme under the
# capture sources section.
# initial channel optional, if hopping not enabled can used
# set channel interface listens on.
# must change source want use
source=madwifi_g,wlan0,hp-wlan400
# comma-separated list of sources enable. needed if defined
# multiple sources , want enable of them. default, defined
# sources enabled.
# example:
# enablesources=prismsource,ciscosource
# channelhop?
channelhop=true
# how many channels per second hop? (1-10)
channelvelocity=5
# setting dwell time channel hopping override channelvelocity
# setting above , dwell on each channel given number of seconds.
#channeldwell=10
# split channels between cards on same spectrum? means if
# multiple 802.11b capture sources defined, offset cover
# possible spectrum @ given time. controls splitting
# fine-tuned sourcechannels lines cover multiple interfaces (see below)
channelsplit=true
# basic channel hopping control:
# these define channels cards hop through various frequency ranges
# supported kismet. more finegrain control available via the
# "sourcechannels" configuration option.
#
# don't change ieee80211<x> identifiers or channel hopping won't work.
# users outside might want use list:
# defaultchannels=ieee80211b:1,7,13,2,8,3,14,9,4,10, 5,11,6,12
defaultchannels=ieee80211b:1,6,11,2,7,3,8,4,9,5,10
# 802.11g uses same channels 802.11b...
defaultchannels=ieee80211g:1,6,11,2,7,3,8,4,9,5,10
# 802.11a channels non-overlapping sequential fine. may want to
# adjust list depending on channels card supports.
# defaultchannels=ieee80211a:36,40,44,48,52,56,60,64 ,100,104,108,112,116,120,124,128,132,136,140,149,1 53,157,161,184,188,192,196,200,204,208,212,216
defaultchannels=ieee80211a:36,40,44,48,52,56,60,64
# combo cards atheros use both 'a' , 'b/g' channels. of course, you
# can explicitly override given source. can use script
# extras/listchan.pl extract channels card supports.
defaultchannels=ieee80211ab:1,6,11,2,7,3,8,4,9,5,1 0,36,40,44,48,52,56,60,64
# fine-tuning channel hopping control:
# sourcechannels option can used set channel hopping for
# specific interfaces, , control interfaces share list of
# channels split hopping. can used lock
# 1 card on single channel while hopping other cards.
# card without sourcechannel definition use standard hopping
# list.
# sourcechannels=sourcename[,sourcename]:ch1,ch2,ch3,...chn
# ie, channels on source 'prism2source' (same normal channel
# hopping behavior):
# sourcechannels=prism2source:1,6,11,2,7,3,8,4,9,5,1 0
# given 2 capture sources, "prism2a" , "prism2b", want prism2a stay
# on channel 6 , prism2b hop normally. not setting sourcechannels
# line prism2b, use standard hopping.
# sourcechannels=prism2a:6
# assign same custom hop channel multiple sources, or split the
# same custom hop channel on 2 sources (if splitchannels true), list
# them on same sourcechannels line:
# sourcechannels=prism2a,prism2b,prism2c:1,6,11
# port serve gui data
tcpport=2501
# people allowed connect, comma seperated ip addresses or network/mask
# blocks. netmasks can expressed dotted quad (/255.255.255.0) or as
# numbers (/24)
allowedhosts=127.0.0.1
# address bind to. should address configured on
# host, reverts inaddr_any if specified incorrectly.
bindaddress=127.0.0.1
# maximum number of concurrent gui's
maxclients=5
# have gps?
gps=true
# hostort gpsd running on. can localhost or remote!
gpshost=localhost:2947
# lock mode? overrides coordinates of lock "0", will
# generate bad information until gps lock, will
# fix problems gps units broken nmea report lock 0
gpsmodelock=false
# packet filtering options:
# filter_tracker - packets filtered tracker not processed or
# recorded in way.
# filter_dump - packets filtered @ dump level tracked, displayed,
# , written csv/xml/network/etc files, not
# recorded in packet dump
# filter_export - controls packets influence exported csv, network,
# xml, gps, etc files.
# filtering options take arguments containing type of address and
# addresses filtered. valid address types 'any', 'bssid',
# 'source', , 'dest'. filtering can inverted use of '!' before
# address. example,
# filter_tracker=any(!00:00e:ad:be:ef)
# has same effect previous mac_filter config file option.
# filter_tracker=...
# filter_dump=...
# filter_export=...
# alerts reported , throttling rates.
# alert=name,throttle/unit,burst/unit
# throttle/unit describes number of alerts of type are
# sent per time unit. valid time units second, minute, hour, , day.
# burst rates control number of packets sent @ time
# example:
# alert=foo,10/min,5/sec
# allow 5 alerts per second, , 10 alerts total per minute.
# throttle rate of 0 disables throttling of alert.
# see readme list of alert types.
alert=netstumbler,10/min,1/sec
alert=wellenreiter,10/min,1/sec
alert=lucenttest,10/min,1/sec
alert=deauthflood,10/min,2/sec
alert=bcastdiscon,10/min,2/sec
alert=chanchange,5/min,1/sec
alert=airjackssid,5/min,1/sec
alert=probenojoin,10/min,1/sec
alert=disassoctraffic,10/min,1/sec
alert=nullproberesp,10/min,1/sec
alert=bsstimestamp,10/min,1/sec
# known wep keys decrypt, bssid,hexkey. networks where
# keys known, , may impact throughput on slower hardware.
# multiple wepkey lines may used multiple bssids.
# wepkey=00e:ad:c0e:00,feedfacedeadbeef010203040 50607080900
# transmission of keys client allowed? may security
# risk some. if disable this, not able query keys from
# client.
allowkeytransmit=true
# how (in seconds) write our data files (0 disable)
writeinterval=300
# use sound?
# not confused gui sound parameter, controls wether or not the
# server play sound. headless or automated systems.
sound=false
# path sound player
soundplay=/usr/bin/play
# optional parameters pass player
# soundopts=--volume=.3
# new network found
sound_new=/usr/local/share/kismet/wav/new_network.wav
# wepped new network
# sound_new_wep=${prefix}/com/kismet/wav/new_wep_network.wav
# network traffic sound
sound_traffic=/usr/local/share/kismet/wav/traffic.wav
# network junk traffic found
sound_junktraffic=/usr/local/share/kismet/wav/junk_traffic.wav
# gps lock aquired sound
# sound_gpslock=/usr/local/share/kismet/wav/foo.wav
# gps lock lost sound
# sound_gpslost=/usr/local/share/kismet/wav/bar.wav
# alert sound
sound_alert=/usr/local/share/kismet/wav/alert.wav
# server have speech? (again, not confused gui's speech)
speech=false
# server's path festival
festival=/usr/bin/festival
# using festival lite? if so, set above "festival" path also
# point "flite" binary
flite=false
# how speak? valid options:
# speech normal speech
# nato nato spellings (alpha, bravo, charlie)
# spell spell letters out (aye, bee, sea)
speech_type=nato
# speech_encrypted , speech_unencrypted - speech templates
# similar logtemplate option, lets customize speech output.
# speech_encrypted used encrypted network spoken string
# speech_unencrypted used unencrypted network spoken string
#
# %b replaced bssid (mac) of network
# %s replaced ssid (name) of network
# %c replaced channel of network
# %r replaced max rate of network
speech_encrypted=new network detected, s.s.i.d. %s, channel %c, network encrypted.
speech_unencrypted=new network detected, s.s.i.d. %s, channel %c, network open.
# our manufacturer fingerprints from? assumed in the
# default config directory if absolute path not given.
ap_manuf=ap_manuf
client_manuf=client_manuf
# use metric measurements in output?
metric=false
# write waypoints gpsdrive load? note: not related to
# recent versions of gpsdrive's native support of kismet.
waypoints=false
# gpsdrive waypoint file. truncated.
waypointdata=%h/.gpsdrive/way_kismet.txt
# want essid or bssid waypoint name ?
waypoint_essid=false
# how many alerts backlog new clients? change if have
# -very- low memory system , need bytes, or if have high
# memory system , huge number of alert conditions.
alertbacklog=50
# file types log, comma seperated
# dump - raw packet dump
# network - plaintext detected networks
# csv - plaintext detected networks in csv format
# xml - xml formatted network , cisco log
# weak - weak packets (in airsnort format)
# cisco - cisco equipment cdp broadcasts
# gps - gps coordinates
logtypes=dump,network,csv,xml,weak,cisco,gps
# track probe responses , merge probe networks owners?
# isn't desireable, depending on type of monitoring you're
# trying do.
trackprobenets=true
# log "noise" packets can't decipher? tend not, since
# don't have interesting @ in them.
noiselog=false
# log corrupt packets? corrupt packets have enough header information
# see are, someting wrong them prevents from
# dissecting them. logging these not bad idea.
corruptlog=true
# log beacon packets or filter them out of dumpfile
beaconlog=true
# log phy layer packets or filter them out of dumpfile
phylog=true
# mangle packets if can decrypt them or if they're fuzzy-detected
mangledatalog=true
# "fuzzy" crypt detection? (byte-based detection instead of 802.11
# frame headers)
# valid option: comma seperated list of card types perform fuzzy detection
# on, or 'all'
fuzzycrypt=wtapfile,wlanng,wlanng_legacy,wlanng_av s,hostap,wlanng_wext,ipw2200,ipw2915
# use network-classifier fuzzy-crypt detection? means expect
# packets associated encrypted network encrypted too,
# , process them same fuzzy compare.
# replaces fuzzycrypt per-source option.
netfuzzycrypt=true
# type of dump generate?
# valid option: "wiretap"
dumptype=wiretap
# limit size of dump logs? ethereal can't handle big ones.
# 0 = no limit
# else = max number of packets log single file before closing
# , opening new one.
dumplimit=0
# write data packets fifo external data-ids (such snort)?
# see docs before enabling this.
#fifo=/tmp/kismet_dump
# default log title
logdefault=kismet
# logtemplate - filename logging template.
# is, @ first glance, nasty , ugly, you'll hardly ever
# have touch don't complain much.
#
# %n replaced logging instance name
# %d replaced current date mon-dd-yyyy
# %d replaced current date yyyymmdd
# %t replaced starting log time
# %i replaced increment log in case of multiple logs
# %l replaced log type (dump, status, crypt, etc)
# %h replaced home directory
# ie, "netlogs/%n-%d-%i.dump" called logging name of "pok" expand
# "netlogs/pok-dec-20-01-1.dump" first instance and
# "netlogs/pok-dec-20-01-2.%l" second logfile generated.
# %h/netlots/%n-%d-%i.dump expand to
# /home/foo/netlogs/pok-dec-20-01-2.dump
#
# other possibilities: sorting directory
# logtemplate=%l/%n-%d-%i
# expand to, example,
# dump/pok-dec-20-01-1
# crypt/pok-dec-20-01-1
# , on. "dump", "crypt", etc, dirs must exist before kismet run
# in case.
logtemplate=%n-%d-%i.%l
# store pid file of server?
piddir=/var/run/
# state info, etc, stored. shouldnt ever need change this.
# directory.
configdir=%h/.kismet/
# cloaked ssid file. shouldn't ever need change this.
ssidmap=ssid_map
# group map file. shouldn't ever need change this.
groupmap=group_map
# ip range map file. shouldn't ever need change this.
ipmap=ip_map
have been trying alot of things other websites , threads of same thing, , each time changed things in .config file, error message changed in terminal.
@ present, error code im getting is:
server options: none
client options: none
starting server...
waiting server start before starting ui...
suid priv-dropping disabled. may not secure.
no specific sources given enabled, enabled.
enabling channel hopping.
enabling channel splitting.
source 0 (hp-wlan400): enabling monitor mode madwifi_g source interface wlan0 channel 6...
fatal: failed retrieve list of private ioctls 95:operation not supported
[1] + done(1) ${bin}/kismet_server --silent ${server}
in advance replies, if there more details required, shall best provide them, remember, im linux user 1 day far
you must compile program use it, have compiled it?
kismet not easy new users.
look @ errors, see packages missing, if there missing(there is) install them searching reposotorie or downloading internet.code:./configure
do:
andcode:make
then can launch withcode:sudo make install
you might wan't learn linux first.code:kismet
Forum The Ubuntu Forum Community Ubuntu Official Flavours Support Networking & Wireless [ubuntu] ANOTHER Kismet thread...
Ubuntu
Comments
Post a Comment