From mboxrd@z Thu Jan  1 00:00:00 1970
Received: from pigeon.gentoo.org ([69.77.167.62] helo=lists.gentoo.org)
	by finch.gentoo.org with esmtp (Exim 4.60)
	(envelope-from <gentoo-user+bounces-89920-garchives=archives.gentoo.org@lists.gentoo.org>)
	id 1LSZPv-0006dT-Eh
	for garchives@archives.gentoo.org; Thu, 29 Jan 2009 16:06:59 +0000
Received: from pigeon.gentoo.org (localhost [127.0.0.1])
	by pigeon.gentoo.org (Postfix) with SMTP id 67675E0497;
	Thu, 29 Jan 2009 16:06:58 +0000 (UTC)
Received: from mail-gx0-f12.google.com (mail-gx0-f12.google.com [209.85.217.12])
	by pigeon.gentoo.org (Postfix) with ESMTP id E9D2BE0497
	for <gentoo-user@lists.gentoo.org>; Thu, 29 Jan 2009 16:06:57 +0000 (UTC)
Received: by gxk5 with SMTP id 5so4765051gxk.10
        for <gentoo-user@lists.gentoo.org>; Thu, 29 Jan 2009 08:06:57 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=gmail.com; s=gamma;
        h=domainkey-signature:mime-version:sender:received:in-reply-to
         :references:date:x-google-sender-auth:message-id:subject:from:to
         :content-type:content-transfer-encoding;
        bh=BytQ8qiKeaYKG5MvEAJCl4SMP7ZNc3kvCzCuOXAu9vk=;
        b=Kg1EU0rkpioNFwRsdNL+lkTZaGZfso/Ty5MFcpg+5imjSwlHF2baGnGPnrWW054Vkp
         3bjwaoRmXFuiHao+MvxzR33tj1iAjpz+UnTx6cHHpxkUfMPsn0sZRjBQwiLXEe70X0s8
         GvEvTf9MurinCR7LuMW0bVJuUEOnIe350Jq18=
DomainKey-Signature: a=rsa-sha1; c=nofws;
        d=gmail.com; s=gamma;
        h=mime-version:sender:in-reply-to:references:date
         :x-google-sender-auth:message-id:subject:from:to:content-type
         :content-transfer-encoding;
        b=iWNFaURsmQh+herTYTTvl7laf9BINGZBUcLCtjo72w1Tdj7Y02LoYoqblXWZRc2kMg
         bkO5vbp6Pbl+HErdLQgOxBky9c8ntXwp82NIqxutBrzyBHMH/Wl1kX+HqFuozBm4Gg7D
         yB3QO1CIEEl7JFCfekVlatlRg6T5lhwAj1aO4=
Precedence: bulk
List-Post: <mailto:gentoo-user@lists.gentoo.org>
List-Help: <mailto:gentoo-user+help@lists.gentoo.org>
List-Unsubscribe: <mailto:gentoo-user+unsubscribe@lists.gentoo.org>
List-Subscribe: <mailto:gentoo-user+subscribe@lists.gentoo.org>
List-Id: Gentoo Linux mail <gentoo-user.gentoo.org>
X-BeenThere: gentoo-user@lists.gentoo.org
Reply-to: gentoo-user@lists.gentoo.org
MIME-Version: 1.0
Sender: paul.hartman@gmail.com
Received: by 10.150.57.17 with SMTP id f17mr245791yba.102.1233245217165; Thu, 
	29 Jan 2009 08:06:57 -0800 (PST)
In-Reply-To: <49bf44f10901290800x5b01e6b0x9a2792f6fd674664@mail.gmail.com>
References: <49bf44f10901280900p33914cbci19ed49544757ee31@mail.gmail.com>
	 <20090128171718.4D7B.1.NOFFLE@turbacz.local>
	 <20090128204629.0ea80ad2.nexenta@evil-monkey-in-my-closet.com>
	 <49bf44f10901281217p12538284sf0be3011083cbb7b@mail.gmail.com>
	 <58965d8a0901281408j1c96e353g7e4e1b2471a0c0ea@mail.gmail.com>
	 <49bf44f10901281829q6fc608a2see76415d5976417a@mail.gmail.com>
	 <58965d8a0901290733q60656131maa364f5aa04f9365@mail.gmail.com>
	 <49bf44f10901290800x5b01e6b0x9a2792f6fd674664@mail.gmail.com>
Date: Thu, 29 Jan 2009 10:06:57 -0600
X-Google-Sender-Auth: 98635db63a4d72aa
Message-ID: <58965d8a0901290806j4e09a388l8bc283439d914cc1@mail.gmail.com>
Subject: Re: [gentoo-user] Re: wlan0 promiscuous mode
From: Paul Hartman <paul.hartman+gentoo@gmail.com>
To: gentoo-user@lists.gentoo.org
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
X-Archives-Salt: 4f4cdde6-4f8e-460c-8d3b-df7f56ff04dc
X-Archives-Hash: 4be5a16c01827b0e4ef781ffd80ae8fd

On Thu, Jan 29, 2009 at 10:00 AM, Grant <emailgrant@gmail.com> wrote:
>>>>>>> > Does anyone know how to put my USB wireless network adapter into
>>>>>>> > promiscuous mode so I can see everything that's happening wirelessley
>>>>>>> > on my network in wireshark?
>>>>>>>
>>>>>>> ifconfig eth1 promisc
>>>>>>>
>>>>>>> But at least tcpdump puts the interface into promiscous mode
>>>>>>> automatically, so there is a chance that wireshark does the same.
>>>>>>>
>>>>>>>
>>>>>>
>>>>>> Another way is to use airmon-ng from the aircrack-ng package:
>>>>>>
>>>>>> airmon-ng start wlan0
>>>>>
>>>>> Thanks everyone.  I didn't realize it but monitor mode is what I'm
>>>>> after.  aircrack-ng looks interesting too.  Is there something similar
>>>>> with a GUI?  airsnort seems to be discontinued.  What is iw for?
>>>>
>>>> iw - show / manipulate wireless devices and their configuration
>>>>
>>>> Usage:  iw [options] command
>>>> Options:
>>>>        --debug         enable netlink debugging
>>>>        --version       show version
>>>> Commands:
>>>>        help
>>>>        event
>>>>        list
>>>>        phy <phyname> info
>>>>        dev <devname> set channel <channel> [HT20|HT40+|HT40-]
>>>>        phy <phyname> set channel <channel> [HT20|HT40+|HT40-]
>>>>        dev <devname> set freq <freq> [HT20|HT40+|HT40-]
>>>>        phy <phyname> set freq <freq> [HT20|HT40+|HT40-]
>>>>        phy <phyname> set name <new name>
>>>>        dev <devname> set meshid <meshid>
>>>>        dev <devname> set monitor <flag> [...]
>>>>        dev <devname> info
>>>>        dev <devname> del
>>>>        dev <devname> interface add <name> type <type> [mesh_id
>>>> <meshid>] [flags ...]
>>>>        phy <phyname> interface add <name> type <type> [mesh_id
>>>> <meshid>] [flags ...]
>>>>        dev <devname> station dump
>>>>        dev <devname> station set <MAC address> plink_action <open|block>
>>>>        dev <devname> station del <MAC address>
>>>>        dev <devname> station get <MAC address>
>>>>        dev <devname> mpath dump
>>>>        dev <devname> mpath set <destination MAC address> next_hop
>>>> <next hop MAC address>
>>>>        dev <devname> mpath new <destination MAC address> next_hop
>>>> <next hop MAC address>
>>>>        dev <devname> mpath del <MAC address>
>>>>        dev <devname> mpath get <MAC address>
>>>>        reg set <ISO/IEC 3166-1 alpha2>
>>>>        dev <devname> get mesh_param <param>
>>>>        dev <devname> set mesh_param <param> <value>
>>>
>>> Are we talking about the same thing?
>>>
>>> iw: "nl80211 userspace tool for use with aircrack-ng"
>>>
>>> - Grant
>>
>> Yes, it was installed as a dep of aircrack-ng.
>>
>> Paul
>
> I've got aircrack-ng installed and I get:
>
> # emerge -pv iw
> These are the packages that would be merged, in order:
> Calculating dependencies... done!
> !!! All ebuilds that could satisfy "net-wireless/iw" have been masked.
> !!! One of the following masked packages is required to complete your request:
> - net-wireless/iw-0.9.7 (masked by: ~amd64 keyword)
> - net-wireless/iw-0_p20080605 (masked by: ~amd64 keyword)
>
> - Grant

I'm using ~amd64 and emerged net-wireless/aircrack-ng-1.0_rc1 which
pulled in net-wireless/iw-0.9.7 as a dependency. Actually the
aircrack-ng fails to build but that's irrelevant :)