Cahier groupe n°5 : Différence entre versions

De Wiki d'activités IMA
(Hardware used for the particular task)
(Progress)
Ligne 35 : Ligne 35 :
 
; <span style="color: green;">Wifi WPA crack </span>
 
; <span style="color: green;">Wifi WPA crack </span>
 
;<span style="color: green;">Buying troubadour.lol domain name </span>
 
;<span style="color: green;">Buying troubadour.lol domain name </span>
;<span style="color: red;">DNS </span>
+
;<span style="color: green;">Bind configuration - DNS</span>
 +
;<span style="color: red;">DNSSEC</span>
 
;<span style="color: red;">Certificate authentication </span>
 
;<span style="color: red;">Certificate authentication </span>
;<span style="color: red;">DNSSEC </span>
 
  
 
== Progress monitoring ==  
 
== Progress monitoring ==  

Version du 26 novembre 2015 à 10:27

Useful information

Particular task

Gabriel Pagola Nielsen & Jérémie Denéchaud

Xen Vitural Machine
Name - troubadour
Address - 193.48.57.165
Wifi hotspot
Name -
address - 172.26.79.11
Sub-network address - 10.10.10.2

Specification of the specific task

Presentation of the particular task

The specific task consist in configuring one of the two wifi access point (AP). Those APs are connected to the Cisco Catalyst 6009 switches to provide further redundancy.

Hardware used for the particular task

We use a Cisco Aironet 2600 wifi access point.

Cisco Aironet 2600 access point

Progress

Particular task - PART 1
Configuration of the wifi AP
Route through Polytech gateway (172.26.79.254)
MAC address filtering on half the eeePC
Tests
Particular task PART 2
Route through local gateway (10.10.10.254)
Telnet accessibility
Configuration of the xen VM
Creation & installation of packages
SSH accessibility
Wifi WEP crack
Wifi WPA crack
Buying troubadour.lol domain name
Bind configuration - DNS
DNSSEC
Certificate authentication

Progress monitoring

Session 1 (01/10/2015)

Steps to follow :

  • Connecting via serial link to the Cisco Aironet 2600
  • Adapting the configuration for insecure network
  • Accessing the hotspot via ethernet
  • Using the web interface to configure mac address filtering

Session 2 (08/10/2015)

  • Configuration of the Wifi AP
minicom -os //9600 bauds
en
config
interface BVI 1
ip address 172.26.79.11 255.255.240.0
end
write
  • Using the web interface to configure mac address filtering (root:Cisco)
  • Different tests to enable mac filtering
    • Unknown problem that lead to the reset of the Access point

Session 3 (15/10/2015)

  • Reset of the Access point
  • Mac address filtering working correctly
  • Creation of the AP (SSID = "troubadour")
  • Filtering half of the eeePC

Session 4 (22/10/2015)

  • Creation of the virtual drives
  • Configuration of the xen virtual machine "troubadour"
xen-create-image --hostname=troubadour --ip=193.48.57.165 --netmask=255.255.255.240 --gateway=193.48.57.174 --dir=/usr/local/xen 
--mirror=http://debian.polytech-lille.fr/debian/ --dist=jessie --passwd

Session 5 (12/11/2015)

  • Successful wifi WEP encryption crack (screenshots incoming)
  • SSH accessibility of the VM.

Session 6 (19/11/2015)

  • Wifi WPA encryption crack attempt almost successful
  • Cap file & handshake captured
  • dictionnary created with the powerful command crunch:
crunch 8 8 -o wl.txt -t %%%%%%%%
  • Problems with apt-get to download aircrack on tutur

Session 7 (25/11/2015)

Crack of the WPA key
  • Aircrack of the previously captured cap file
  • Successful WPA crack
  • Configuration of the wifi hotspot for the local network
ip default-gateway 10.10.10.254
  • Telnet accessibility from a VM
  • Configuration of the DNS server following this tutorial
  • Beginning of SSL configuration while Gandi processes the DNS change

Session 8 (19/11/2015)