Devoured By Lions

the eternal struggle to tame complexity

WEP Sucks

WEP sucks. I lost probably around four hours last weekend trying to configure WEP on a router with a repeater. Typically setting up just WEP is not that difficult, but introduce a repeater, from a different vendor, and now the complexity multiplies. It did not help that the machine that needed access via the repeater was physically located on a different floor, making debugging very time consuming.

Every time I need to configure WEP, which happens to be so infrequently that I forget the particular rites necessary, I’m mystified by the inept and complicated protocol and user interfaces.

The most important thing to realize is that if your router vendor supplies a “passphrase”-based key generation option, this has nothing, nothing to do with ASCII keys. Hex and ASCII of course are just different encodings of data. The “passphrase” is converted via a “de facto” (although undocumented as far as I can tell) algorithm into the WEP key. I suppose the rationale behind this is that users cannot fathom providing the key directly, which may be fair. However this distinction between “passphrase” and generated key is generally completely obscured. To further complicate things, the key generation algorithm apparently generates not one key, but FOUR keys. How helpful!

Here are a couple of independent WEP key generators:

* http://www.powerdog.com/wepkey.cgi
* http://www.csgnetwork.com/wepgeneratorcalc.html

(note, with a sample pass phrase I tested, these disagreed on the generated 128 bit key!)

Now, let’s say you’ve generated or selected such a key. Now comes the fun of entering it into the wireless client. What do you think you are supposed to enter? Of course it depends! You can enter your passphrase, or you can enter the hex key. Depending on client one or the other will magically work. You may have a client which obscures this distinction from you so again, it’s not really clear what you are supposed to enter.

I discovered that on Windows XP, if you are entering the WEP key directly as hex, that you need to prefix the key with $. How intuitive! It is also rumored that if you are entering the passphrase, that it must be quoted. Although I don’t remember ever having to quote a passphrase before.

http://www.justanswer.com/questions/1yczg-trying-to-set-up-a-wireless-net-work-at-home-desktop-pc-has

Oh, and that is not to mention that (surprise!) there are two styles of WEP (both suck), “open” and “shared”. If you are lucky this will be irrelevant. If you are not, you will get to find out.