On Aug 10, 2006, at 5:43 PM, Soh Kam Yung wrote:
Steve,
According to the capture, the data is protected:
=====
[...]
Flags: 0x41
DS status: Frame from STA to DS via an AP (To DS: 1 From
DS: 0) (0x01)
.... .0.. = More Fragments: This is the last fragment
.... 0... = Retry: Frame is not being retransmitted
...0 .... = PWR MGT: STA will stay up
..0. .... = More Data: No data buffered
.1.. .... = Protected flag: Data is protected
0... .... = Order flag: Not strictly ordered
[...]
=====
You may need to setup the WEP key in Wireshark first to decrypt the
data packet.
...except that he said
I checked
the data section by hand and it appears that it is indeed a DHCP
request message (as I expected). This problem affects all non-
management packets in my dump file.
so perhaps the "protected" bit setting is bogus.