On Mon, Mar 12, 2012 at 04:31:03PM -0400, Doug Fordham wrote: > List, > > > While assisting a colleague in configuring the wireless interfaces on > some OBSD testbed laptops...referencing the IFCONFIG(8) manpage, > within the 'nwkey' subsection regarding configuration of the WEP key, > it states "The length of each key must be either 40 bits, i.e. a > 5-character string or 10 hexadecimal digits or 104 bits (13-character)." > ...the question was posed to me whether or not "128 bit" WEP was > supported. > > As the contents of the manpage caused a bit of confusion, the following > is provided for consideration: > > "The length of each key must be either 40 bits, i.e. a 5-character ASCII > string or 10 hexadecimal digits (64 bit encryption); 104 bits i.e. a > 13-character ASCII string or 26 hexadecimal digits (128 bit encryption); > or, for cards that support it, 232 bits, i.e a 29-character ASCII string > or 58 hexadecimal digits (256 bit encryption)." > > diff provided next if useful: > ------------------------------------------------------------------------- > --- /usr/src/sbin/ifconfig/ifconfig.8 Sun Mar 4 09:36:46 2012 > +++ ifconfig.8 Mon Mar 12 15:19:13 2012 > @@ -940,8 +940,11 @@ > within the key must be escaped with a backslash. > Note that if multiple keys are used, their order must be the same > within > the network. > -The length of each key must be either 40 bits, i.e. a 5-character > string or > -10 hexadecimal digits or 104 bits (13-character). > +The length of each key must be either 40 bits, i.e. a 5-character ASCII > +string or 10 hexadecimal digits (64 bit encryption); 104 bits i.e. a > +13-character ASCII string or 26 hexadecimal digits (128 bit > encryption); > +or, for cards that support it, 232 bits, i.e a 29-character ASCII > string > +or 58 hexadecimal digits (256 bit encryption). > .It Fl nwkey > Disable WEP encryption. > .It Cm nwkey Cm persist > > ----------------------------------------------------------------------------- > df >
committed, but we tweaked it. jsg prompted me to drop the 256-bit stuff as "a vendor extension and it could potentially be confused with 256 bit aes WPA which we do support." the final version is included below. thanks for your mail. jmc Index: ifconfig.8 =================================================================== RCS file: /cvs/src/sbin/ifconfig/ifconfig.8,v retrieving revision 1.226 diff -u -r1.226 ifconfig.8 --- ifconfig.8 2 Feb 2012 12:34:37 -0000 1.226 +++ ifconfig.8 18 Mar 2012 23:37:02 -0000 @@ -940,8 +940,13 @@ within the key must be escaped with a backslash. Note that if multiple keys are used, their order must be the same within the network. -The length of each key must be either 40 bits, i.e. a 5-character string or -10 hexadecimal digits or 104 bits (13-character). +.Pp +The length of each key must be either 40 bits for 64-bit encryption +(5-character ASCII string +or 10 hexadecimal digits) +or 104 bits for 128-bit encryption +(13-character ASCII string +or 26 hexadecimal digits). .It Fl nwkey Disable WEP encryption. .It Cm nwkey Cm persist
