Encrypted Chat
From NeoWiki
This page was written to help you take advantage of off the record messaging (otr) and SSL IRC connections on Neoturbine NET IRC. These increase the amount of privacy one has on the internet using complex encryption algorithms. Detailed configuration directions for irssi, XChat, and Pidgin are described because they're free (libre) opensource softwares (FLOSS) and can be run on more than one operating system.
Neoturbine listens for SSL IRC connections (on most servers) on port 6697. SSL generally prevents remote eavesdropping and can allow authentication. Since our servers use self-signed SSL certificates, authentication is not yet possible (by a third party) but might be in the future (C.R.E.A.M.). SSL, like otr, requires client side support, so if your IRC client does not support SSL connections you will not be able to take advantage of it.
Off the record messaging allows for encrypted communication and most importantly plausible deniability. To learn more about the protocol view the official documentation. Otr relies fully (only) on client-side support which means that you must download and install a plugin if your chat client doesn't support it natively.
If you need help selecting an IRC client please see IRC Tutorial.
Contents |
[edit] Connecting through SSL
[edit] irssi
In irssi type the following to connect using SSL. irssi will automatically connect on port 6697 which is the official unofficial SSL IRC port.
/connect -ssl server
- To find the server geographically closest to you use the Server List.
[edit] XChat
- If this is the first time you've launched XChat you will see this screen.
- Otherwise get to it by XChat >> Network List.
- After you have entered a
- "Nick name",
- "User name",
- and "Real Name",
- click "Add"
- and type "NeoturbineNET IRC" then click "Edit...".
- Enter the server geographically closest to you using the Server List by clicking "Add".
- Don't forget to type port 6697!
- Then select "Connect to selected server only",
- "Auto connect to this network on startup",
- "Use SSL for all the servers on this network",
- and "Accept invalid SSL certificate".
- In the "Channels to join" textbox type "#neoturbine,#secure".
- Finally, choose "UTF-8" as from the "Character set" dropbox.
- Click "Close".
[edit] Pidgin
- From the "Buddy List" >> "Accounts" >> "Manage" >> "+ Add".
- Choose "IRC" under the "Protocol" dropbox.
- Type a nickname in the "Screen name" text box.
- In the "Server" textbox type the geographically closest server to you (that supports SSL) using the Server List.
- Move to the "Advanced" tab.
- In the "Port" textbox type "6697".
- This is the most commonly used SSL port and all of our servers that listen for SSL connections do so at this port.
- Make sure to check the "Use SSL" checkbox.
[edit] Off the Record Messaging
[edit] irssi
[edit] xchat
[edit] Pidgin
[edit] Caveats
- SSL only prevents spying if the channel doesn't allow clients on unencrypted connections to join.
- #secure usually has mode +z (Only clients on a Secure (SSL) Connection may join) set but double check if you want to be sure.
- SSL only prevents remote eavesdropping in the channel.
- i.e. people can make their private chat logs public.
- OTR Messaging is slightly better than SSL as only those with OTR enabled will be able to decipher messages and allows you to reasonably deny that a conversation even took place.
- i.e. even if someone makes their private chat logs public you can deny that you made any of the statements attributed to your nickname.
[edit] Further Reading
- Why I Wrote PGP - Philip Zimmermann
- Surveillance Self-Defense - Electronic Frontier Foundation
- Privacy - Electronic Frontier Foundation
