PingTrip

Installing Hacme Shipping on an XP Pro VMWare Image

2009-09-04T19:04:00Z

Hacme Shipping is a ColdFusion Web Application from the Foundstone, Inc series of vulnerable "Hacme" tools. As its name implies, Hacme Shipping is a mock Shipping application much like one you would find major on-line retailers using, except loaded with insecure code (on purpose!).

So in continuing the theme of my previous post, which detailed the process of Installing Hacme Bank, this article will hopefully provide another easy to follow, step-by-step guide to installing and configuring the application.

]]> While writing this walk-through all testing was done on a newly built XP Pro VMWare image with Service Pack 3 and all available updates applied via Windows Updater. You may experience inconsistencies if your lab machine differs from above.

Install Internet Information Services

Hacme Shipping installs as a Virtual Directory under Internet Information Services so our first order of business is to get IIS installed.

Place your Windows XP Pro CD into the drive.

Run the Add or Remove Programs option found in the Control Panel.

Select Add/Remove Windows Components from the left-hand side.

In the Windows Components Wizard highlight Internet Information Services (IIS) and click the Details button.

Put a check in the boxes next to: Common Files, Internet Information Services Snap-In, and World Wide Web Service.

Highlight World Wide Service and click Details, then uncheck Printers Virtual Directory and click Ok.

Click Ok again to close the IIS options window, and click Next to complete the install.

When the install completes, click Finish and exit out of the Control Panel.

MySQL

Download MySQL Community Server; the Windows Essentials version is fine for this project. (Version 5.1.38 at time of writing)

Launch the installer, and for 'Setup Type' choose Typical. When the installer reaches the "Wizard Completed" screen verify that the "Configure the MySQL Server now" box is checked and click finish.

Choose "Detailed Configuration" and leave all settings as their defaults on each of the screens until you reach the option screen for TCP/IP Networking and SQL mode. On this screen uncheck "Enable Strict Mode" and click next.

Continue installing with the default settings until you reach the "Windows Options" screen. On this screen put a check-mark in the "Include Bin directory in Windows PATH" option and click next.

On the "Security Options" screen verify that "Modify Security Settings" is checked and enter 53cr37 for the root password (or anything else that you'll remember for later in this install) then click next.

Finally press the execute button to perform the install and the click finish.

Hacme Shipping

If you haven't done so already, download Hacme Shipping from Foundstone, Inc website.

Launch the MSI installer and accept all the default settings until you reach the 'Database Setup' page. In the password box enter the MySQL root password that you chose during the MySQL install step and click 'Next'. Once the install finishes click 'Close' to exit out.

ColdFusion

Download ColdFusion 8 Developer Edition [English | Windows] (registration required) from Adobe's website (Version 8.01 at time of writing)

Run the installer and on the "Install Type" screen tick the checkbox for the "Developer Edition" option and click next.

Accept the default settings for the remaining configuration screens. Be sure to enter an Administrsator password that you'll remember!

When the installation is complete, click Done. This will launch an IE browser with the ColdFusion admin login page. Enter the password you chose during install and click login.
Note: If a browser doesn't appear, you can access the admin page by manually going to:
http://localhost/CFIDE/administrator.index.cfm

Configuration of the server will begin automatically, this takes a minute or two so be patient. When the setup is complete the page will refresh and an 'Ok' button will appear; click the 'Ok' button to continue configuring.

In the left hand window click on "Data Sources" found under the Data & Services section. On the "Add New Data Source" page enter "hacmeshipping" for DataSource Name and choose MySQL (4/5) from the Driver pulldown, then click 'Add'.

On the next screen, in the "Database" field enter "hacmeshipping", for 'Server' enter "127.0.0.1", and leave the port set to 3306. The user will be "root" and enter the same password you chose when installing MySQL. Now click the 'Submit' button.

You're now done installing and configuring the necessary components.

Testing Hackme Shipping

You should now be able to launch a browser and access the application at http://127.0.0.1/HacmeShipping_MG/index.cfm using 'admin' and 'password' for credentials. If everything is working as it should you'll be logged into the application and can begin crafting you application based attacks!

Also, be sure to read the Hacme Shipping User Guide that was installed with the application, you'll find a shortcut to it under the "Foundstone Free Tools" folder in the Start Menu. It provides a detailed description of each vulnerability, it's impact, and an example of how to exploit it. So don't read ahead too early or you'll ruin the fun of the discovery process!

Bonus! Remote Access to Hacme Shipping!

Ok, so this really isn't that great a bonus (like with Hacme Bank) since it doesn't appear that Hacme Shipping has any built-in restrictions for remote access to the application. So all we need to do is configure the Windows Firewall to allow HTTP traffic through.

Open the Windows Security Center located in the Control Panel and select Windows Firewall at the bottom of the panel.

Click on the Exceptions tab.

Click the Add Port button.

For the Name field enter "IIS" and "80" for the Port field, then click Ok and Ok to make the change. You can now exit out of the control panel as well.

Now open a browser on the host machine (or other machine on your network). And browse to the remote web instance: http://[IP Address of the VM Image]/HacmeShipping_MG/index.cfm/

Hack Fu!

Installing Hacme Bank on an XP Pro VMWare Image

2008-09-08T01:20:32Z

Whether you're evaluating a new vulnerability assessment tool, or looking to hone your application hacking skills, the Hacme Bank application by FoundStone, Inc offers a perfect "victim" for you to use as a testing target. Hacme Bank simulates an online banking website with the added bonus of having numerous vulnerabilities purposely designed in for you to discover.

In this write-up I'll walk you through the necessary steps for getting the application up and running on a Windows XP Professional VMWare image. I prefer this setup for a couple of reasons. First, if an unrecoverable error condition occurs (while hurling malicious packets at the application perhaps?) you can simply revert the Virtual Machine back to a known good state. Second, by positioning Hacme Back on an isolated machine I'm able to use my everyday penetration testing rig as the attack platform.

]]> For this tutorial I'm assuming that you already have a newly built XP Pro VMWare image. The virtual machine I'll be working with is a fresh XP Pro install, with Service Pack 3 and all available updates applied via Windows Updater. Make sure you've also installed all the .Net packages and updates for version 1.1.

Take a Snapshot

I'm frequently reusing my XP Pro VM for exploit and vulnerability research, so VMWare's Snapshot functionality saves me from having to rebuild the OS image after every project. With that said, I'd suggest taking a "baseline" snapshot of your VM (or make a backup copy if you're using VMPlayer) before we begin.

Install Internet Information Services

Hacme Bank installs as a Virtual Directory under IIS, instead of being a standalone service like previous FoundStone applications, so step one is to get the web server installed.

Place your Windows XP Pro CD into the drive.

Run the Add or Remove Programs option found in the Control Panel.

Select Add/Remove Windows Components from the left-hand side.

In the Windows Components Wizard highlight Internet Information Services (IIS) and click the Details button.

Put a check in the boxes next to: Common Files, Internet Information Services Snap-In, and World Wide Web Service.

Highlight World Wide Service and click Details, then uncheck Printers Virtual Directory and click Ok.

Click Ok again to close the IIS options window, and click Next to complete the install.

When the install completes, click Finish and exit out of the Control Panel.

Next, register the .NET Framework with the IIS service we just installed by opening a command window and running:

c:\windows\microsoft.net\framework\v1.1.4322\aspnet_regiis -i

Microsoft SQL Server 2000 Desktop Engine (MSDE 2000)

Download the MSDE 2000 Release A package from Microsoft's MSDE 2000 product page and run the executable. Accept the defaults on any prompts that appear and allow the unpackager to complete.

Open a command prompt and run the following command to install MSDE:

c:\MSDERelA\Setup SAPWD=HacmeBank SECURITYMODE=MIXED DISABLENETWORKPROTOCOLS=0

When the install completes, go ahead and start the service:

net start MSSQLSERVER

When it completes you can close the command window.

Install Hacme Bank

Download and unpack the install files from FoundStone's website

Install the website first by running the "Foundstone Hacme Bank Website Setup v2.0" executable. For the sake of simplicity accept all the default values during the install.

Warning: It is important that you select "Trusted Connection" in the next step! This is a step that many readers miss.

Next, install the WebService files by running the "Foundstone Hacme Bank WebService Setup v2.0" executable. Again, accept the default settings until your reach the Database Setup screen. Here, select Trusted Connection, click Next and complete the install.

Test Your Install

Open IE in the VM instance and browse to http://localhost/HacmeBank_v2_Website/

You might receive a warning about IE's Intranet Settings being disabled by default. Simply right-click on the Information Bar and select Enable Intranet Settings.

The Hacme Bank homepage should load and you can test the back-end system by logging into the site using the user name jv, and password jv789. If everything is working correctly you will be presented with a welcome screen.

Bonus! Remote Access to Hacme Bank!

First we need to modify the operating system's firewall to allow traffic to port 80.

Open the Windows Security Center located in the Control Panel and select Windows Firewall at the bottom of the panel.

Click on the Exceptions tab.

Click the Add Port button.

For the Name field enter "IIS" and "80" for the Port field, then click Ok and Ok to make the change. You can now exit out of the control panel as well.

Now open a browser on the host machine (or other machine on your network). And browse to the remote web instance: http://[IP Address of the VM Image]/HacmeBank_v2_Website/

You'll be presented with a message informing you that the application, by default, will only accept requests from the local machine. This is by design due to the serious flaws that have been designed into Hacme Bank. Exposing the faux website to the internet would place the entire host at risk, so take extra care to keep it internal facing only.

Open the website's config file, C:\Inetpub\wwwroot\HacmeBank_v2_Website\web.config in notepad and look for the section. (You should find it at the beginning of the config file.)

To activate remote access we need to disable the loading of the HttpModule_onlyAllowLocalAccess module. Simply comment it out by wrapping the specific line in tags as shown below:

File: C:\Inetpub\wwwroot\HacmeBank_v2\Website\Web.config

...

...

Now make the same configuration change to the Web Service instance:

File: C:\Inetpub\wwwroot\HacmeBank_v2_WS\Web.config

Now hit reload on your host's browser and instead of the default "Local access only" message, the website will be fully accessible.

Happy Hacking!

Essential Software for OS X

2008-08-02T00:10:11Z

This is a continuation of my collection of articles pertaining to dual-booting Leopard and Kubuntu on a MacBook Pro. This article is just a quick rundown of the software packages that are always installed on my laptop.

]]> Some packages are dependent on others and the order of installation has been reflected in the following list.

Firefox: Like many of you, this is my browser of choice and is the first application I install. Grab the latest version from the Firefox download site.

I also install the following Add-ons for FireFox:
- Foxmarks: This is an add-on that syncs your bookmarks across multiple computers. I highly recommend it.
- FireBug: An invaluable tool whether I'm working on my website layout or performing a vulnerability assessment on a web application.
Xcode: Next up is Xcode, Apple's development environment for Mac OS X. I always grab the latest version from Apple's Developer Connection website. Installation is straightforward, just launch the installer contained in the .dmg and follow the prompts.
Xquartz: Due to bugs that were introduced during software updates of the pre-packaged X11 app I ultimately chose to use Xquartz instead. So far I've been happy with the stability and reliability.
iTerm: iTerm is an open source (GPL) terminal emulator that I choose to use in place of the OS X Terminal utility. You can download it from their sourceforge site, I normally grab the "recent binary build from CVS".
MacPorts: MacPorts (which I highly recommend) makes installing and maintaining numerous software packages a breeze. The project has a well written MacPorts install guide

One minor issue I had was that the installer didn't properly edit my .profile to add the necessary directories to the PATH environment variable:
```
MBP:~ dave$ echo $PATH
/usr/bin:/bin:/usr/sbin:/sbin:/usr/local/bin:/usr/X11/bin
```
The quick fix is to edit your ~/.profile (or create one if it doesn't exist) and add the following line:
```
export PATH=/opt/local/bin:/opt/local/sbin:$PATH
```
Restart a new terminal session to have the change take effect:
```
MBP:~ dave$ echo $PATH
/opt/local/bin:/opt/local/sbin:/usr/bin:/bin:/usr/sbin:/sbin:/usr/local/bin:/usr/X11/bin
```
Subversion: This is an open-source revision control client and is necessary when I want to build applications from source. It can easily be installed via MacPorts.
```
sudo port install subversion
```
Update: 08/01/2008 - Subversion failed to install for me and threw the following error, configure: error: No awk program found. It's a known issue and the workaround is simply to rerun the install command.
BBEdit: To date this is my favorite text editor for the Mac, even with it's higher price. You can grab a demo from their website to decide if its for you before plunking down the cabbage.
Snapz Pro X:
http://www.ambrosiasw.com/utilities/snapzprox/
Pixelmator: http://www.pixelmator.com
Chicken of the VNC: As the project's website describes; "Chicken of the VNC is a VNC client for Mac OS X". It has been very reliable for me.
Tunnelblick: A great little graphical OpenVPN client for OS X. You can grab it from Tunnelblick's Google Code project page.
Remote Desktop Connection Client: For those times that I need to administrate a Windows machine RDC 2.0 does the job.
Cyberduck

Custom Tags with Markdown Plugin (Redux)

2008-07-29T23:27:29Z

Awhile back I wrote about adding custom tags to the Markdown Plugin in which I created two new custom tags, a "Note" and a "Warning" block. This time around I'm adding an additional custom Markdown tag which is an "Update" tag for when you want to signify that a portion of a previously published article has been altered.

]]> The new "Update" tag, when used, creates a stylized box like so:

Update: This is an example of an update box.

As outlined in my previous Customized Markdown Tags article the first step is to choose the Markdown syntax we want to represent the new style block. Once again I took the non-scientific approach and chose ~^ simply because the upward caret seemed like a fitting choice for "update".

For ease of implementation I'll be editing the code from my previous article so that it will support the "Update" tag in addition to the "Note" and "Warning" tags. In addition, I'll be renaming my custom subroutine to a more generic name, making any future additions a bit easier.

So my previous subroutine named _DoNotesAndWarnings will be renamed to _DoCustomizedBlocks.

sub _DoCustomizedBlocks {
    my $text = shift;
    my $style = "";

    $text =~ s{
            [^`]~([\!\?\^])      # $1 = style class
            (.+?)           # $2 = Block text
            ~[\!\?\^]         # closing syntax
        }{
            if($1 eq '!') {
                $style = "Warning";
            } elsif ($1 eq '?') {
                $style = "Note";
            } elsif ($1 eq '^') {
                $style = "Update";
            }

            "" .  _RunSpanGamut("$style: \n" . $2)  .  "\n\n";
        }egsx;

    return $text;
}

Then the previous call to _DoNotesAndWarnings() in the _RunBlockGamut() subroutine will also need to be updated to reflect the name change. (The additional call to HashHTMLBlocks() that was added in the previous article will remain.)

$text = _HashHTMLBlocks($text);

$text = _DoCustomizedBlocks($text);
$text = _HashHTMLBlocks($text);

$text = _FormParagraphs($text);

return $text;
}

The last step is to add the new tag's style to the Cascading Style Sheet:

.Update {
    width: 90%;
    margin-left: 5%;
    padding: .2em .3em;
    background:#FFFFCC;
    color: #000000;
    border:solid 1px #DEDEDE;
    font-size: 100%;
}

Finally, to test the new tag use the newly defined syntax in an entry:

~^ This is an Update Block ~^

Which produces:

Update: This is an Update Block

Enjoy your new custom Markdown tags!

Adding Custom Tags to Markdown Plugin

2008-04-11T21:58:32Z

In this article I'll be tinkering with one of Movable Types default plugins, John Gruber's Markdown, which is one of the text formatting choices available when working in the Entry Editor.

The brilliance of Markdown comes from it's powerful translations, combined with it's utter ease of use. Granted, it's not your typical WYSIWYG and did pose a slight comfort curve (the time and effort it takes to adjust to a new way of editing; for me at least!), but after writing only three articles with it I'm hooked!

]]> From it's website, "Markdown allows you to write using an easy-to-read, easy-to-write plain text format, then convert it to structurally valid XHTML (or HTML)". This is accomplished by a number of impressive regular expressions which substitute the Markdown syntax with tags. As an example, this text in the Entry Editor:

#Heading One

Is reformatted when the entry is published, to:

Heading One

Brilliant! So it didn't take long before I had to see if Markdown could be leveraged to handle custom syntax for my own defined style blocks. A quick review of the Markdown plugin code confirmed my hopes and in less than an hour I had two working custom Markdown tags.

The tags I added were inspired by the "Note" and "Warning" text blocks which are popular on many Wiki sites. They're great for drawing the readers attention to necessary information amidst the rest of an article's text.

The first step was to choose the Markdown syntax I wanted to represent each style block. Obviously, I needed something that would work with the plugin's default syntax, but I also wanted something easy to remember. I ultimately chose ~! for the Warning style and ~? for the Note style. I really didn't have a scientific process for determining my choices (and they may change if I find conflicts in the future) but in my mind an exclamation point certainly relates to a warning, as a question mark denotes a thought or note.

Implementing the two new custom tags only required the modification of two files; Markdown.pl and screen.css.

First, I created a new subroutine in Markdown.pl called _DoNotesAndWarnings, which will handle the conversion of my custom syntax:

sub _DoNotesAndWarnings {
    my $text = shift;

    $text =~ s{
            \n~([\!\?])      # $1 = style class
            (.+?)           # $2 = Block text
            ~[\!\?]         # closing syntax
        }{
            my $style = ($1 eq '!') ? "Warning" : "Note";
            "" .  _RunSpanGamut("$style: \n" . $2)  .  "\n\n";
        }egsx;

    return $text;
}

Next, I modified the _RunBlockGamut() subroutine to add a call to my new subroutine and I also added a second call to _HashHTMLBlocks(). This is so

tags aren't wrapped around my

blocks.

$text = _HashHTMLBlocks($text);

$text = _DoNotesAndWarnings($text);
$text = _HashHTMLBlocks($text);

$text = _FormParagraphs($text);

return $text;
}

Note: If you're running Movable Type under FastCGI then you'll need to force a plugin reload for the changes to take effect. This is done simply by updating the timestamp of the main MT script.

touch [your MT install directory]/mt.fcgi

The last step is to add the style definitions to the Cascading Style Sheet:

Update: 7/29/2008 - I tweaked the styles after spotting a better color scheme in Antonio Lupetti's CSS Message Box Collection article.

.Warning {
    width: 90%;
    margin-left: 5%;
    padding: .2em .3em;
    background: #F7CBCA;
    color: #000000;
    border: solid 1px #CC0000;
    font-size: 100%;
}

.Note {
    width: 90%;
    margin-left: 5%;
    padding: .2em .3em;
    background: #C9FFCA;
    color: #000000;
    border: solid 1px #349534;
    font-size: 100%;
}

Now to test the new custom Markdown tags I use the defined syntax in an entry:

~? This is a Note Block ~?

~! This is a Warning Block ~!

Which produces:

Note: This is a Note Block

and...

Warning: This is a Warning Block

However, those are just simple single line examples but multi-line input is handled just as well so we can do things like this:

~? This is a multi-line example.



`with an embedded code block` ~?

Will produce:

Note: This is a multi-line example.

with an embedded code block

So there you have it! My Note and Warning custom Markdown tags are just two simple examples that show the flexibility of the Markdown plugin. Kudos to John Gruber and his development team!

Kubuntu on a MacBook Pro

2008-04-05T12:07:47Z

Due to the recent growing popularity of dual-booting the MacBook Pro I decided to move the Kubuntu portion of my Leopard and Kubuntu on a MacBook Pro article into it's own entry. My hope is to find the time to tweak this article enough so it provides a thorough, step-by-step walk-through that others can use.

]]> Update: 08/02/2008 - Article has been updated for use with the Kubuntu 8.04-KDE4-i386 release.

Installing rEFIt

The first step I do when building the Kubuntu portion of my dual-boot MacBook Pro is to install rEFIt, which provides a nice boot menu.
1. Download and mount the current version of rEFIt Mac disk image.
2. Double-click the disk image you just downloaded and launch the installer by double-clicking on the "rEFIt.mpkg package.
3. Follow the instructions and select your Mac OS X installation volume as the destination volume for the install.
Installing Kubuntu

Place a Kubuntu CD in the MacBook Pro and boot from it by either holding the 'C' key down on the keyboard until the Apple Logo appears, or choosing the "Boot Linux from CD" option from the rEFIt menu. Once the machine is booted choose your language and at the Main Menu choose "Install Kubuntu".

After following through the screens for choosing language, timezone and keyboard layout (be sure to choose Macintosh) you'll be at the "Prepare Disk Space" step of the install. Here, choose "Guided - use the largest continuous free space" from the menu and continue to the next screen. Follow the directions on the next screen to enter your user and computer information, and on the final "Ready to Install" screen click the "Install" button to complete the process.

The install process took approximately 18 minutes on my MacBook Pro but your install time may vary slightly depending on machine specs. Now would be a great time to go grab yourself a can of Red Bull while you're waiting!

Now that the installation is complete, reboot the laptop and when the rEFIt boot menu appears choose the "Start Partitioning Tool" option to synchronize the partition tables. When prompted, hit "Y" to perform the sync and return to the boot menu. I recommend choosing the "Shutdown the Computer" option and booting back up for the synchronization to succeed. I've seen odd behavior were the laptop will just hang at the penguin logo if a full power down isn't performed.

Once the laptop has rebooted and reaches the rEFIt boot menus, choose "Linux" to boot into your new Kubuntu partition. The wired network works out-of-the-box so be sure to have a cable connected so you have internet connectivity.

Log into the system by using the account you created during the install process.

The first order of business is to disable the default Kubuntu startup and shutdown splash screens. I find the over-sized progress bars rather annoying and enjoy being able to see the system messages during power cycles.

To accomplish this we simply have to edit the Menu file for the Grub Bootloader.

Open a console session (K-Menu -> Applications -> System -> Konsole) and open the menu file for editing:
```
sudo vi /boot/grub/menu.lst
```
The line we need to edit is::
```
# defoptions= quite splash
```
simply delete the quite and splash options, leaving the line as:
```
# defoptions=
```
Finally, save the file and quit out of the editor.

Normally you would run sudo update-grub at this point to implement the changes, but it's going to be run for you in the next steps so you can skip it.

Next we need to get all the latest software updates:
```
sudo apt-get update
sudo apt-get dist-upgrade
```
This only took about 3 minutes on my system. Again, the time will obviously vary depending on your internet connection speed and your MacBook Pro model.

Once the upgrade completes, reboot the laptop to pick-up the new Kernel and other updates.
Configure Xorg

I find the "out-of-the-box" Xorg settings to be nearly unusable due to the sensitivity of the touchpad. Left at the default settings you'll find that you inadvertently trigger 'click' actions while simply touching the touchpad.

To adjust the touchpad we need to edit the Xorg configuration file:
```
sudo vi /etc/X11/xorg.conf
```
Look for the section that applies to the touchpad hardware:

(TO-DO)

And add these lines:

(TO-DO)

Save the file and to restart X Windows (by pressing Ctrl-Option-Delete) to pick-up the changes you just made.

This next step is just personal preference but I've included it here for the benefit of others. I'm not a big fan of all the sound effects that are configured by default; with the biggest offender for me being the "System Bell" that rings at every tab-completion attempt while in a Konsole session.
1. Open the System Notification Configuration panel here: K-Menu -> Computer -> System Settings -> Notifications.
2. Choose 'Konsole' from the Event Source pulldown menu.
3. Highlight the "Bell in visible session" event.
4. Uncheck the "Play a sound" option in the Actions section.
For good measure lets disable the Startup/Shutdown sounds as well.
1. Choose KDE System Notifications in the Event Source pulldown menu.
2. Highlight the Logout event and uncheck the Play a sound action.
3. Now do the same for the Login event.
Finally click "Apply" and feel free to reboot your laptop to enjoy the silence.
Development Tools

Before we continue there are some packages that need to be installed in order to compile the drivers in the upcoming sections. All the necessary build tools can be easily installed in a single command:
```
sudo apt-get install build-essential subversion automake autoconf
```
Wireless (with WPA)

The version of Kubuntu used when writing this article doesn't support the AirPort Extreme hardware that came with my MacBook Pro.

The MadWifi drivers version 0.94

However, lucky for us the latest version available from the MadWifi source repository does.

Update: 08/02/2008 - The DNS servers for madwifi.org weren't responding this morning for me. The workaround was to add an entry to /etc/hosts that read "217.24.1.142 svn.madwifi.org"
```
sudo su
cd /usr/local/src
svn co https://svn.madwifi.org/madwifi/trunk ./madwifi
cd ./madwifi/scripts
./madwifi-unload
./find-madwifi-modules.sh $(uname -r)
```
(hit 'r' then return to remove the old modules)
```
cd ..
```
Build and install the module:
```
make 
make install
```
Now lets load our freshly built modules:
```
modprobe ath_pci
```
Hey! Things are starting to look better:

At the time of this writing KNetworkManager had some issues recognizing the wireless device. I'm sure it'll be sorted out once the latest MadWifi drivers are merged into the Kubuntu build.

For the time being I've been connecting manually to WiFi networks.
```
wpa_passphrase YOURSSID 'YourPassphrase' > /etc/wpa_supplicant.conf
chmod 600 /etc/wpa_supplicant.conf
exit
```
Ok, we should be ready to test a connection to a WPA enabled access point.
```
sudo iwconfig ath0 essid 'YOURSSID'
sudo wpa_supplicant -Bw -Dwext -iath0 -c /etc/wpa_supplicant.conf
```
Now if you run 'iwconfig' you should see that you're associated with your access point:

If the "Access Point" displays "Not-Associated" instead of the MAC address of your WAP you may have a typo in the wpasupplicant config file.
```
sudo dhclient ath0
```
Now the wireless interface (ath0) should have an IP address.
```
ifconfig
```
Happy surfing wirelessly on your MacBook Pro!

Leopard and Kubuntu on a MacBook Pro

2008-04-05T00:31:36Z

Thanks to a fun personality quirk of mine I find myself re-imaging my MacBook Pro on a regular basis, so I figured documenting the process would be a brilliant idea. The goal is actually twofold: to streamline the process for myself and to provide a baseline for folks attempting to re-create any of my experiments on their own MBPs.

The directions which follow apply to my dual boot MacBook Pro, your mileage may vary...

]]> Part One: The Leopard Half

Boot from the Leopard DVD and after choosing a language you'll be presented with the Mac OS X Installer welcome screen. We're going to ignore the installer for a moment while we set up the correct disk partitions.

Note: Jump to step 2 if partitioning has already been done and you're simply reinstalling OS's

Run the Disk Utility found under the Utilities->Disk Utility toolbar menu. Highlight the main drive (149.1 GB Fujitsu) and click on the Partition tab. Use the Volume Scheme section to configure the partition layout you'd like to create. I prefer to make a 125GB Mac OS Extended (Journaled) and name it "Leopard", and leave the remaining as "Free Space".

After applying the changes you can exit the Disk Utility.
Click continue on the Mac OS X Installer welcome screen, then agree on the Software License pop-up, and when prompted for the install destination choose the MacBook's main drive (it most likely has a exclamation warning over it). Under options select the "Erase and Install" option with the default file system (Mac OS Extended (Journaled). Then click "Ok" followed by "Continue".
At the "Install Summary" screen click "Customize" and uncheck everything except for "Essential System Software" ~~and "X11"~~ and click the "Install" button.
Update: I no longer use the included X11 package and instead install Xquartz. More info can be found in my Essential Software for OS X article.
After the install process, the computer will reboot. Complete the install process by following the prompts for Region, Keyboard settings, .Mac and Apple account information, and finally, account creation.
Now run the Software Update utility and restart the laptop.
Repeat step 5 as needed.
Install iLife '08 from recovery DVDs that were included with the MBP via the "Install Bundled Software Only" component (iMovie, iDVD, iPhoto; uncheck everything else)
Now run the Software Update utility until the OS is fully updated.

Congratulations! Your OS X base system is now installed and updated.

Now it's time to configure some System Preferences for, in my opinion, improving usability. Below are the most common ones I tweak but you may prefer the default settings; which I assume is why they call them Preferences...

Rename the laptop By default the OS name the laptop "Username's MacBook Pro" which is a bit wordy when you're working in a terminal window with the standard shell prompt.

You can change this under the System Preferences->Sharing tab.
Enable Secondary Clicks I love the feature of placing two fingers on the trackpad and clicking the trackpad button to activate a Secondary Click (aka Right Click).

You enable this by putting a check in the "Enable Secondary Clicks" box on the System Preferences->Keyboard + Mouse->Trackpad tab.
Shutoff Wireless Devices For the power saving benefit, as well as the extra security, I leave the wireless devices disabled until actually needed.

The AirPort Extreme Wi-Fi and Bluetooth radio can both be disabled through their corresponding icons in the OS X toolbar.
Other minor tweaks I usually do are related to visuals, like changing the desktop image, resizing and removing unnecessary icons from the dock.

Now its time to install the all important applications; check out my Essential Software for OS X article for a list of my favorite apps.

Part Two: The Kubuntu Half

Due to the recent popularity of Linux MacBook Pro's, I've created a separate article dedicated to installing Kubuntu on a Macbook Pro.