Note: This is a public test instance of Red Hat Bugzilla. The data contained within is a snapshot of the live data so any changes you make will not be reflected in the production Bugzilla. Email is disabled so feel free to test any aspect of the site that you want. File any problems you find or give feedback at bugzilla.redhat.com.
Bug 231011 (cowpatty-4.3) - Review Request: cowpatty - Audit Wpa pre-shared keys
Summary: Review Request: cowpatty - Audit Wpa pre-shared keys
Keywords:
Status: CLOSED DUPLICATE of bug 581161
Alias: cowpatty-4.3
Product: Fedora
Classification: Fedora
Component: Package Review
Version: rawhide
Hardware: All
OS: Linux
medium
medium
Target Milestone: ---
Assignee: Xavier Lamien
QA Contact: Fedora Package Reviews List
URL:
Whiteboard:
Depends On:
Blocks: FE-SECLAB
TreeView+ depends on / blocked
 
Reported: 2007-03-05 15:43 UTC by Nicolas Chauvet (kwizart)
Modified: 2010-04-14 21:53 UTC (History)
6 users (show)

Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed: 2008-05-26 15:07:11 UTC
Type: ---
Embargoed:

Attachments (Terms of Use)

Description Nicolas Chauvet (kwizart) 2007-03-05 15:43:51 UTC 
Spec URL: 
http://kwizart.free.fr/fedora/SPECS/cowpatty.spec
SRPM URL: 
http://kwizart.free.fr/fedora/6/SRPMS/cowpatty-2.0-1.kwizart.fc6.src.rpm
Description: Audit Wpa pre-shared keys

coWPAtty is designed to audit the security of pre-shared keys selected
in WiFi Protected Access (WPA) networks.

rpmlint is silent
need to disable %{?_smp_mflags} so it can build
Comment 1 Xavier Lamien 2007-03-05 20:34:28 UTC 
Sound good.

a comment:

you Should add -p option to your install commande from %install stage to keep
timestamp to the file.
Comment 2 Till Maas 2007-03-08 00:15:15 UTC 
There is already version 4.0 available:
http://www.personalwireless.org/tools/cowpatty/

You can use my spec if you want:
http://www-users.kawo2.rwth-aachen.de/~tmaas/fedora/cowpatty.spec
http://www-users.kawo2.rwth-aachen.de/~tmaas/fedora/repo/cowpatty-4.0-1.src.rpm

Do you know aircrack-ng? It seems to be more promising than cowpatty for WPA
auditing, but it did not really use cowpatty, because its README begins with
"Right off the bat, this code isn't very useful.". The "rainbow tables" for
cowpatty will be supported by aircrack-ng, too.

Btw. there is a special url for sourceforge downloads, see
http://fedoraproject.org/wiki/Packaging/SourceURL#head-e27982f18a3bfd26b5b6ecbee113d2d8f3f006f2

http://downloads.sourceforge.net/%{name}/%{name}-%{version}.tar.gz
Comment 3 Till Maas 2007-03-08 00:18:28 UTC 
Ah, btw. Xavier, if you are officially rewiewing this package, you should set
the fedora-review flag to ? (see below)
Comment 4 Xavier Lamien 2007-03-08 01:52:05 UTC 
Hi Till,

After had a quick look on your spec file, it seems to be more complete for the
updated release (4.0) that you propose.
Except that, the contents of %description could be more interesting if it were
not empty ;-).

i'll check out the both.
Comment 5 Xavier Lamien 2007-04-17 15:12:07 UTC 
kwizrat: ping ?

Till: ping ?

kwizart, can you check till's package to propose something or are you agree to
make a full review of updated till's package ?
Comment 6 Xavier Lamien 2007-04-17 15:13:47 UTC 
s/are you/do you
Comment 7 Nicolas Chauvet (kwizart) 2007-04-17 15:17:59 UTC 
As state by Till, this package isn't very usefull! aircrack-ng seems better...
I will let Till decide weither to continue the review with the spec of him
or close the bug ...

Sorry for the late answear...
Comment 8 Till Maas 2007-04-17 20:44:13 UTC 
(In reply to comment #7)
> As state by Till, this package isn't very usefull! aircrack-ng seems better...
> I will let Till decide weither to continue the review with the spec of him
> or close the bug ...

I never used cowpatty, because after I compiled it, I read the statement from
the author, that it is not very useful. Currently, the only interesting (unique)
feature of cowpatty, is that there are some precalculated hashes for wpa, that
cannot be used aircrack-ng, yet. So if you have the time to test it, check how
well these hashes http://www.renderlab.net/projects/WPA-tables/ work. If this
works fine and the support is not included in aircrack-ng, yet (ticket:
http://trac.aircrack-ng.org/ticket/23), then imho fedora would benefit from
cowpatty.
Comment 9 Nicolas Chauvet (kwizart) 2007-04-19 16:13:59 UTC 
when running genpmk with cowpatty 4.0 :
*** buffer overflow detected ***: genpmk terminated

This seems not to be usable yet...
Comment 10 Nicolas Chauvet (kwizart) 2008-02-02 10:30:12 UTC 
Do you think we can close this as wontfix?
Comment 11 David Timms 2008-05-26 10:16:14 UTC 
kwizart, Till: so no interest in getting this across the line from either of you ?

Let me know because I am interested. The 4.3 release [March 20 2008] is not on
sf.net from WICT, but:
http://www.willhackforsushi.com/Cowpatty.html

Found some howto docs and rainbow tables torrents in:
http://www.wirelessdefence.org/Contents/coWPAttyMain.htm and
http://www.renderlab.net/projects/WPA-tables/
Comment 12 Nicolas Chauvet (kwizart) 2008-05-26 15:07:11 UTC 
As soon as it fix the
*** buffer overflow detected ***: genpmk terminated
Then i'm OK. please submit another review request
(you can link it there) - I'm closing this one (not interested anymore).
Comment 13 Arun S A G 2010-04-10 17:33:32 UTC 
Hey folks i have packaged version 4.6 , seems like buffer overflow is fixed now. I hav created a review request at #581161
Comment 14 Fabian Affolter 2010-04-14 21:53:46 UTC 

*** This bug has been marked as a duplicate of bug 581161 ***
Note You need to log in before you can comment on or make changes to this bug.