1
YateBTS / Re: Handset Gets Rejected When connecting to BTS but is not listed as Rejected
« on: June 28, 2017, 02:52:43 PM »
Sorry Ioana that particular computer is air gapped so I have to copy each character at a time onto paper then type it back up on another computer.
Anyway I believe I found the problem.
So I found the "do_comp128" program/algorithm and in the log I found the message going to the phone "the random number(challenge)" and the hex value coming back, the "SRES(response)". I then ran the "do_comp128" algorithm using the random number(challenge) and the Ki I had been provided with the Sim Cards. What I got back did not match the SRES(response) coming back to the yatebts from the cell phones. I contacted who had provided me with the sim cards and they assured me they program all their sim cards with that particular Ki. Is there any possibility that I still have the right Ki, even though I ran the Ki and the random number through "do_comp128" and it did not equal the SRES?
If there is I can copy more of the log and post it next forum post.
Also, whenever I set "ki=*" in subscribers.conf for each handset it results in a rejection cause of failure and returns false from 'gsm.auth' in the logs. Am I setting this at the right place or the right way in order to disable authentication?
Thanks again
Anyway I believe I found the problem.
So I found the "do_comp128" program/algorithm and in the log I found the message going to the phone "the random number(challenge)" and the hex value coming back, the "SRES(response)". I then ran the "do_comp128" algorithm using the random number(challenge) and the Ki I had been provided with the Sim Cards. What I got back did not match the SRES(response) coming back to the yatebts from the cell phones. I contacted who had provided me with the sim cards and they assured me they program all their sim cards with that particular Ki. Is there any possibility that I still have the right Ki, even though I ran the Ki and the random number through "do_comp128" and it did not equal the SRES?
If there is I can copy more of the log and post it next forum post.
Also, whenever I set "ki=*" in subscribers.conf for each handset it results in a rejection cause of failure and returns false from 'gsm.auth' in the logs. Am I setting this at the right place or the right way in order to disable authentication?
Thanks again