On Sun, Mar 18, 2012 at 11:39:55PM +0001, Jason McIntyre wrote: > On Mon, Mar 12, 2012 at 04:31:03PM -0400, Doug Fordham wrote: > > List, > > > > > > While assisting a colleague in configuring the wireless interfaces on > > some OBSD testbed laptops...referencing the IFCONFIG(8) manpage, > > within the 'nwkey' subsection regarding configuration of the WEP key, > > it states "The length of each key must be either 40 bits, i.e. a > > 5-character string or 10 hexadecimal digits or 104 bits (13-character)." > > ...the question was posed to me whether or not "128 bit" WEP was > > supported. > > > > As the contents of the manpage caused a bit of confusion, the following > > is provided for consideration: > > > > "The length of each key must be either 40 bits, i.e. a 5-character ASCII > > string or 10 hexadecimal digits (64 bit encryption); 104 bits i.e. a > > 13-character ASCII string or 26 hexadecimal digits (128 bit encryption); > > or, for cards that support it, 232 bits, i.e a 29-character ASCII string > > or 58 hexadecimal digits (256 bit encryption)." > > > > diff provided next if useful: > > ------------------------------------------------------------------------- > > --- /usr/src/sbin/ifconfig/ifconfig.8 Sun Mar 4 09:36:46 2012 > > +++ ifconfig.8 Mon Mar 12 15:19:13 2012 > > @@ -940,8 +940,11 @@ > > within the key must be escaped with a backslash. > > Note that if multiple keys are used, their order must be the same > > within > > the network. > > -The length of each key must be either 40 bits, i.e. a 5-character > > string or > > -10 hexadecimal digits or 104 bits (13-character). > > +The length of each key must be either 40 bits, i.e. a 5-character ASCII > > +string or 10 hexadecimal digits (64 bit encryption); 104 bits i.e. a > > +13-character ASCII string or 26 hexadecimal digits (128 bit > > encryption); > > +or, for cards that support it, 232 bits, i.e a 29-character ASCII > > string > > +or 58 hexadecimal digits (256 bit encryption). > > .It Fl nwkey > > Disable WEP encryption. > > .It Cm nwkey Cm persist > > > > ----------------------------------------------------------------------------- > > df > > > > committed, but we tweaked it. jsg prompted me to drop the 256-bit stuff > as "a vendor extension and it could potentially be confused with 256 bit > aes WPA which we do support." > > the final version is included below. thanks for your mail. > jmc
Glad to be of help...and thanks for the clarification. df > > Index: ifconfig.8 > =================================================================== > RCS file: /cvs/src/sbin/ifconfig/ifconfig.8,v > retrieving revision 1.226 > diff -u -r1.226 ifconfig.8 > --- ifconfig.8 2 Feb 2012 12:34:37 -0000 1.226 > +++ ifconfig.8 18 Mar 2012 23:37:02 -0000 > @@ -940,8 +940,13 @@ > within the key must be escaped with a backslash. > Note that if multiple keys are used, their order must be the same within > the network. > -The length of each key must be either 40 bits, i.e. a 5-character string or > -10 hexadecimal digits or 104 bits (13-character). > +.Pp > +The length of each key must be either 40 bits for 64-bit encryption > +(5-character ASCII string > +or 10 hexadecimal digits) > +or 104 bits for 128-bit encryption > +(13-character ASCII string > +or 26 hexadecimal digits). > .It Fl nwkey > Disable WEP encryption. > .It Cm nwkey Cm persist