Skip to content →

Tag: mac

WarWalking (2)


MacStumbler and iStumbler are active scanners sending out
probe messages to the basestations and can therefore be detected easily.
Moreover, they are not able to detect closed networks. So let us
move up one step in the secrecy scale and get some passive network
scanners
running. The first one is KisMAC which instructs the Airport card to tune to
a channel, listen a while, then tune to the next channel and so on. In
this way KisMAC can detects networks without announcing its
presence and can also find closed networks. More information can
be found at the KisMAC documentation page.
Installation is pretty straightforward : click on the KisMAC
installer
icon and after answering a few obvious questions you need
to provide your Administer-login and password after which KisMAC
is installed in your Applications-folder so also copy it to your
dock. The reason why it needs admin privileges to run is that the
Airport card cannot perform passive monitoring. So it swaps to open
source Viha driver for your Airport-driver on startup and
reinstalls the Airport driver on exit (that is, is everything goes well,
sometimes you seem to have lost your Airport connection afterwards but
no harm is done which cannot be solved by either checking in your
SystemPreferences:Network or by a restart. So do not worry if you
see that your Airport icon (as well as all your usual wireless access
such as Internet and Mail) vanishes. Before you can perform a scan, you
have to go to the KisMAC-Preferences and choose under Driver a
capturing device (in some versions of KisMAC you have to specify Viha
driver
if you are running an Airport card, in others you have to go
for the option Apple Airport Card,Passive mode. If you press the
Scan button you are again asked for admin-password to perform the
driver-switch (the same happens if you Quit KisMAC). The program gives a
wealth of information which can be quite useful if you want to find out
about possible interference of your ABS with other wireless sources. We
will come back to some of these features later, a rather scary one is
the ability to log raw 802.11 frames to a dump which can then be fed to
Ethereal.

Okay,
let us go one step further and try to get Kismet
running. It seems to be an unwritten law in open source-software that
the more potential harmful a program is, the more difficult it is to
install, so installing Kismet is by no means trivial.
Fortunately, Kismet is very well documented with a manual and a forum. First, we need the Viha Airport
driver
, that is we need Viha Wireless Tools 0.0.1a Binary Release. Go in Terminal to the
Desktop-folder where you will find the Folder Viha-0.0.1a.
Then type

mv Viha-0.0.1a/WiFi.framework/
/Library/Frameworks/

Next, we get the latest
version of Kismet, that is kismet-3.0.1.tar.gz and get a kismet-3.0.1
folder on our Desktop. Use Terminal to go into this folder and
type

./configure –disable-pcap –enable-viha;
make

and the following process may last for a
while. If you finally get a prompt, type

sudo make
install

and the process will end with some
warning messages :

If you have not done so
already, read the README file and the FAQ file. Additional
documentation is in the docs/ directory. You MUST edit
/usr/local/etc/kismet.conf
and configure Kismet for your
system, or it will NOT run properly!
Kismet has NOT been
installed suid-root. This means you will need to start
it as
root. If you have no untrusted users on your system, it can be
installed
as suid-root via ‘make suidinstall’. READ THE
DOCUMENTATION BEFORE INSTALLING KISMET AS SUID-ROOT!”

Fine, so let us go to /usr/local/etc and change the
following lines in kismet.conf

suiduser=lieven
source=viha,en1,Airport

(of course you have to replace lieven by your
normal OSX login name). Further, in the file kismet_ui.conf
replace the last line by

apm=false

Finally, you have to type in the Terminal

export TERM=xterm-color

and you should
be done. To launch Kismet, type as your usual user (the one you
specified in the kismet.conf file) in the Terminal

Kismet

and all will work. Again there is
a switch of Airport to Viha driver (and if all works well also at the
end). Often, the Airport card does not come up at the end in which case
it is best to restart Kismet and Quit again (btw. you quit Kismet with
capital Q). Then the Airport icon appears but it may be that you have to
logon to your network again.

We wouldnt have done so
much trouble if it were not that Kismet is a VERY powerfull
application which can be used to Hack wireless networks. But if you
think that KisMAC and Kismet are already scary, wait until
next time when we deal with Ethereal

Leave a Comment

WarWalking (1)


What exactly is a \’WarDriver\’? WarDriver: One who locates and logs
wireless access points while in motion ;[benign]. WarDriving was
invented by Peter Shipley and now commonly practiced by hobbyists,
hackers and security analysts worldwide. More information about this
trend can be found at wardriving.com. Even if you are not into this
sport, the following (innocent) software may be of use to obtain
information about your wireless network. In a next message I\’ll discuss
a few less innocent software tools. Probably the most popular network
scanner
for Mac OSX is MacStumbler. It detects nearby wireless networks,
tells you the channels they use, whether they use WEP
(encryption), give their signal (and noise) strength, the name of the
network and if you click on the Details button it gives you
(among other things) the MAC-address. A similar tool is iStumbler. It
gives roughly the same information : SSID (name). MAC-address,
signal/noise, channel and whether it is encrypted. More information is
available from the iStumbler manual. In addition it presents a
signal graph which is useful if you are trying to decide on which
signal you will let your Airport-basestation broadcast. Using
iStumbler i discovered that there was a recurrent noise at
channel 5 every couple of minutes (don\’t ask what it was) but that on
channel 1 the signal was not interrupted.

Both
MacStumbler and iStumbler are active scanners
meaning that they send out probe request to nearby access points. As a
result they are not able to detect closed networks. To detect
them you need far more intrusive passive scanning software, but
that is for next time.

One Comment

dinner’s ready

Not
all improvements to our home-network need to be high tech. Here is a
very simple measure which reduces the amount of in-house shouting
drastically. Often all of us are online, either to work, surf the net,
MSN-chat or listening to iTunes and clearly we can easily see which
other computers are on at the time. Just click on the Network
icon on the top left of the Finder-window. As our computer-names
are quite descriptive (iMacLieven,iMacBente,eMacAnn,iBookGitte)
it will give a good indication of who is online but as we can all login
to all these computers one can never be too certain. An elegant way to
find out who is on whose computer is to use the Rendezvous window
in iChat. This lists all people on the network which have
iChat running
on their computers and then iChat can be used to send
simple messages immediately to a given person (such as : turn that music
down or telephone for you etc.). There is just one problem : as the kids
use MSN to chat they never turn on iChat and as we are of a non-chatting
generation neither do we. Fortunately, it is easy to force iChat to be
running at login.

On each computer go to
SystemPrefrences-Accounts and for each user go to the Startup
Items
pane. Click on the + button and browse to the
Applications/iChat program and click Add. Be sure to check
the Hide button and you are done. Next time that person logs in,
iChat will start automatically in the background (the only slightly
annoying thing is a small sound at the end of login) and the user will
appear in any iChat-Rendezvous window.

Leave a Comment

graphite ABS can be used


I found on the net a way around the problem that a first
generation graphite airport basestation is not compatible with a
third generation extreme ABS. The article is called Extending AirPort’s range with multiple base
stations
and addresses precisely my problem (a problem that others
still think is not there judging from the replies to the article). I
checked it out and it works. So, here is the setup that I will use this
summer to get some iBooks in the garden connecting happily to the
internet at the expense of an in-house extra computer running… The
extreme ABS (woonkamer) is configured to run our usual in-house
network. The graphite ABS (terras) will be connected via a
crossed-ethernet cable to an iMac in the dinner room near the garden
window (this iMac is still well within the range of the
woonkamer-network). Here are the System-preferences for the iMac :


Network : Airport : TCP/IP configure using
DHCP ; all others empty
Network : Build-in Ethernet : TCP/IP
configure using DHCP ; all others empty
Sharing : Internet :
Click ‘Start’ for sharing your Airport connection

Here are the configuration parameters of the terras-ABS
:

Internet tab
Connect using:
Ethernet
Configure: Using DHCP
IP address: leave
empty
Subnet mask: leave empty
Router address: leave
empty
DNS servers: leave empty
Domain name: leave
empty
DHCP client ID: leave empty

Network tab
Distribute IP address: CHECKED
Share a single IP address (using DHCP and NAT): CHECKED
DHCP lease: 60 min (default)
Enable AirPort to Ethernet
bridging: CHECKED
all others: leave empty / unchecked

Now any iBook in the garden connecting via Airport to
the terras-network will be able to get on the net.

Leave a Comment

the best LaTeX system

If you are
a mathematician, you’d better have a functioning TeX on your computer
which I do not have at the moment as I completely erased my HD yesterday
and started brand new. Some time ago this would make me slightly nervous
but as I did install TeX on a number of computers recently I hope to get
it up and running in no time. However, as the install process changes
slighly each time I’ll log here my actions for future reference.
Further this log may convince you to buy a Macintosh because I really do
not know of a better TeX system around.

A good source
for TeX material is the PennState Mac-TeX page. The
first thing to do is to get a good editor such as the freeware BBedit
Lite
but the present link directs to the commercial version so has this
Lite version been taken off the net? Fortunately not, a quick
Google tells me that BareBones still maintain a BBedit Lite page from which you can get the 6.1.2
version (it contains a version for OS X and one running under System 9),
so copy the BBedit Folder to the ApplicationFolder and the OSX program
to the Dock.

Next, we will need a spelling checker
like Excalibur which you can find under the
Tools/Utilities of the PennState-site. So download from the links
: Excalibur 4.0 (782k), the Mathematical Lexicon (29k) and the Dutch
dictionary (791k), put these two Folders (or any other Dictionaries you
like to download) in the ExcaliburFolder and copy this to the
ApplicationsFolder and Excalibur itself to the Dock. These matters
settled, it is now time for the big gun : TeX itself.

You can get there from the Engines subsection of the
PennSate site but it’s better to go directly to the excellent TeX on Mac OS X page and follow the instructions (which as I mentioned before tend
to change slightly). I used to get the iInstaller first and
install then the required packages but this time I’ll go for the quick
and dirty route : I’ll get myself the TeX-fat.dmg disk image
(77Mb) which contains TeX and Ghostscript 8 and the i-Installer!
What you obtain is a Volume with the i-Installer, a i-Packages
Folder, some files to read and the TeX-fat.iid. Take the
i-Installer to the Applications/Utilities Folder and to the Dock.
Drag the TeX-fat.iid file on the mounted volume on the i-Installer
application icon. You will be presented with an i-Directory with two
packages on the volume. Install all of them. It is best to install
ghostscript after you have installed TeX as it may contain configuration
material that can take advantage of TeX. I got a warning message but
choose to ignore it, seems to install as expected. Along the way you are
asked a few simple questions (such as paper size, formats you want to
have etc.) when in doubt go for the default! Okay : Task finished! But I
still have to install the ghostscript 8 package but this goes a lot
faster. So we should now have a working TeX installation but are still
missing a front-end. These you can download fllowing the links at
the beginning of the TeX on Mac OS X page. I usually go for TeXShop which is a 3.1Mb disk-image download. Drag
TeXShop into the ApplicationsFolder and the Dock. Find the file named
“pdfsync.sty” in the distribution directory. Drag a copy of this file
to ~/Library/texmf/tex/latex. Here ~/Library is the Library folder in
your home directory. You may need to create the folders texmf, tex, and
latex if they do not already exist. Alternatively, you can gp for iTeXMac (I never figured out what went wrong
between these two developers, but surely it was something
big).

At a later stage I am sure I want to add
new style files from CTAN. So here is the drill : copy them in the
diectory

/usr/local/teTeX/share/texmf.local/tex/latex/…

and do a texhash from the command line (as root).
I noticed that lately one do no longer need to adjust parameters to get
a heavy xy-pic file being compiled but if one does not to change any of
the values : be root and go to

/usr/local/teTeX/share/texmf/web2c/texmf.cnf

increase values and do a texhash. Finally, if you want to
print chess or go-diagrams or other fancy pictures requiring
metafont files here is the drill : be root and copy the .mf files
in an apropriate directory under

/usr/local/teTeX/share/texmf/fonts/source/public/

(if necessary change the owner of the directory) and
then do a texhash.

One Comment

the fink project

The Fink project
ports open source Unix applications to Mac OS X which you can download
either in binary format or with the full source to compile them locally
on your computer. As I made a clear start with my iMac yesterday and as
I am likely to need quite a few open source packages, I’ll reinstall
fink and log my actions here for future reference. First we need the Fink 0.6.2 binary installer which we unpack in the usual way (at the end
of which a Terminal window pops up to ask you whether it’s good create
a .profile, just say Yes). After this the install process goes
ahead for a while (processing Fink and optimizing the HD and system
performance) and we are done!

Usually one controls
Fink via the command line : sudo fink install package-name will
install the package and if you want to remove it at a later stage just
type sudo fink remove package-name. One can also browse through a
list of packages via sudo dselect but as I skrewed up earlier I
am now going for a graphical user-interface approach called FinkCommander.

I choose for the binary disk image download which
presents no problem and copy the resulting FinkCommander both to
my Application Folder and to my Dock. More help on the
FinkCommander is available here
and there is also a Fink
documentation
page which should contain all the info I need when
I’m going to install some packages (soon).

One Comment

what to do with those mac classics?

We
have two old Macintosh Classics in perfect condition : one is the
first Mac-computer I bought back then and the other is one i adopted
when the mathematics department moved from UIA to our present place and
the secretary wanted to throw it away. But what can we do with them???
Well there seems to be a lot of potential : for instance you can turn
them into a linux-box of sorts, or you can get them to access the internet, some even claim they can be
turned into a webserver. And I think I once saw a page telling
how one could run OS X on a MacClassic (in fact really using it as an
external terminal to a working iMac) but I can\’t find the URL right
now. To me all this seems to be a bit pathetic, why use these nice
little boxes for something they can hardly handle and for which we do
have better equipmet around? So, what shall we do with those two
boxes?

Why not just do the things we used to do with
them back then : playing games (who did not play lemmings on a Classic?
or gnuChess), HyperCard applications, I even wrote a fair number of
TeX-files on a Classic. But as they have a harddisk of only 80Mb we have
to make choices, or dont we? Well, not really as I still have an old
SCSI 2Gig harddrive laying around (at the time 2 gigabytes seemed to be
an enormous amount of space and admit it, compared to 80Mb it is
enormous). So here is the plan : connect these two Classics via a
SCSI-cable to the externed 2 GB harddisk and load the disk with all
interesting stuff one can still find for 68k Macs.

Luckily there is a marvelous place for all these programs on the
web : the UMICH Archive! I will download whatever I find
interesting via normal means (that is an ordinary iMac) and dump it onto
the external HD so we can use the two Classic-boxes mainly to play games
(and there is a huge number of them on the archive). If you have better
uses for them, please let me know…

Some interesting URLs for low-end Macs :
– The
pure-mac Olden section
– Jag\’s house where older macs still
rock

– The Kids domain Black and White Mac Shareware page
and
all links contained in them.

(Added january 6th) I
found the URL for turning a MacClassic into an extra terminal Controlling Mac OS X With A Mac Plus (or other Classic
Mac)

Leave a Comment

iHome – a long way to go

Our
situation at home is not that atypical : 2 adults and 2 children, each
having their own (Mac) computer but living in a relatively old house
(end ’50ties) with all electricity recently redone but without any
ethernet-cables. Fortunately for Macintosh users there is for years the
wireless Airport network and that is how we can connect to the net all
at the same time : a first generation Airport basestation
(graphite) connected via a router to the cablemodem together with
Airport cards in most computers. But surely we should be able to get
more out of this network than that, (or can’t we?) and that will be one
of my main projects this year, to see just how far one can stretch it
with minimal investments and using OS 10.3 (Panther) and open
source software.

Surely, a major reason for our poor
use of possibilities is ignorance. Up till recently this was the way one
would go about to get a file printed (we only have one USB-printer
connected to the eMac in the living room) : take a Sony-memory stick
(called the lipstick here) and get the file on it, go to the
living room, start-up the eMac, tansfer the file via the stick to your
homedirectory and print it… Only recently I found the obvious bypass
to select ‘printer-sharing’ (in System Preferences/Sharing) on
the eMac so that one can print directly from any computer provided the
eMac and the printer are both turned on.

Can one do better? Yes, one can provided one is willing to buy a
new Airport Extreme basestation which has a USB-port. Connecting
the USB-printer directly to the basestation, the printer becomes a
network-printer of sorts. As the eMac and a recent G4iBook needed
already an Airport extreme-card I bought a new station hoping to recycle
the old graphite-basestation as a wireless bridge which can be used to
extend the range of the basestation (again in the living room) so that
the full garden gets covered (which may come in handy this summer) and
Apple-documentation certainly gave the impression that this might be
possible. However, Airport-extreme stations (third generation) and
graphite Airport stations (first generation) seem not to be that
compatible. In fact, it is impossible to connect them either wireless
(which should be the only choice given our house) or via roaming.
So whereas I upgraded the network substantially (at least in principle
for as long as there are still (normal)Airport-card computers using it
one cannot make use of the increased dataspeed nor of the increased
security) at the cost of a perfectly working basestation for which I
have no immediate use (maybe I found a way out but I’ll check it out
first).

So, there is a lot of work to be done this
year and much to my surprise there doesnt seem to be a good book about
this type of problem (so what do other people do with their networks
???) so maybe there is a point in blogging my (slow) progress
here.

Leave a Comment

a blogging 2004


As it is probably better to run years behind than to stand eternally still, I’ll try out how much of a blogger I am in 2004. If you want to read more about blogging, Rebecca’s pocket is a good place to start. She has written an essay on the early days of
the weblog
, an article on weblog ethics and a couple of (pretty obvious) tips for a better
weblog.

But let us not talk about ‘better’ or ‘ethical’ at this moment, I’m just starting out. Give me a couple of weeks/months to develop my own style and topics and I’ll change the layout accordingly.

For now, I’ve taken the free blog-tool pMachine which uses only PHP and MySQL on the server-side so I should be able to get the layout suited to my own mood shortly. A major advantage of a weblog over a homepage is that you can feed it to programs called news aggregators by subscribing.

The program can then be tuned so that it ventures out on the net at regular intervals checking whether any of the blogs it is subscribed to has new material and reports back with the running title and opening lines.

If more people would turn their homepages into weblogs, the frustrating job of checking (usually in vain) whether their pages has been updated could be left to the aggregator. For now, I’m using Rancheros’s NetNewsWire as my Mac OSX news
aggregator.

Okay, now it is time to make some final preparations for endyear, but tomorrow I’ll wake up to become a blogger

3 Comments