> How exactly is this supposed to work, and what are the network > conditions required for such an attack? I have a Prism 2.5 based card > and an internal Airport (not extreme) card. Trying this and the > "deauthenticate" command seem to have no effect. at first your car needs to be able to send raw frames. i have never tested this on a 2.5 card, since i only have access to p2 cards. but actually it should work. so lets troubleshoot: make deauthentication work. if this working, than we have a good chance. go to an open network, join it with your airport card and surf a little. now open kismac and scan with the macjack driver. you should find the network. no switch off channel hopping and select the channel, which has the best quality for this network. no click on deauthencation. you should not be able to surf anymore. in any case come back to me and tell me your results... mick -- Attached file included as plaintext by Ecartis -- -- File: PGP.sig -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.1 (Darwin) iD8DBQE+7GAO6ssxlS0dtH4RAmF/AJwJlYPY4xM69jRuOZu8DhP/VWDwhACcCGu+ uv0er1KjY8XXtmc8pv0MPao= =IoKv -----END PGP SIGNATURE-----