mIRC Home    About    Download    Register    News    Help

Print Thread
Joined: Feb 2003
Posts: 307
T
tontito Offline OP
Fjord artisan
OP Offline
Fjord artisan
T
Joined: Feb 2003
Posts: 307
Hello to you all,

What do you think of the idea of $encode/$decode have support to use certificate files?

The idea was to input it a .ks and .cert file and all was set, no flags, easily readable keys or salts.

Best regards

Joined: Feb 2003
Posts: 2,812
Hoopy frood
Offline
Hoopy frood
Joined: Feb 2003
Posts: 2,812
What would it do? AES encryption? PGP?

$encode and $decode are nothing more than a simple cipher known as Uuencode or Mime (base64). There's absolutely no cryptographic magic going on here -- it's kind of like $longip() or $base() in that regard.


Well. At least I won lunch.
Good philosophy, see good in bad, I like!
Joined: Dec 2008
Posts: 95
A
Babel fish
Offline
Babel fish
A
Joined: Dec 2008
Posts: 95
Quoting from the v7.31 beta changelog:

Quote:
8.Extended $encode/$decode to support blowfish. By default, the method
is compatible with OpenSSL and uses CBC, key hashing, a random salt
and PKCS#5 padding. The identifier format is:

$encode(%var | &binvar, switches, key, [salt | iv])
$decode(%var | &binvar, switches, key, [salt | iv])

Where the switches are:

method: c = cbc or e = ecb encryption (one or the other)
key: l = literal key (optional, must be 56 characters)
salt/iv: s = salt or i = iv or r = randomiv (all optional)
padding: z = zeros, n = one and zeros, p = spaces (all optional)


Now I have never looked into blowfish but am I understanding this correctly that, in the future, a plain mIRC script will be sufficient for blowfish-encrypted chatting?

Joined: Feb 2003
Posts: 307
T
tontito Offline OP
Fjord artisan
OP Offline
Fjord artisan
T
Joined: Feb 2003
Posts: 307
I got my idea exactly from there smile

Joined: Oct 2003
Posts: 3,918
A
Hoopy frood
Offline
Hoopy frood
A
Joined: Oct 2003
Posts: 3,918
mIRC relies on Windows' cert manager for certificate validation, does it not? If so, you could just import your cert into the global manager-- something you ought to do anyway:

http://windows.microsoft.com/en-us/windows-vista/import-or-export-certificates-and-private-keys


- argv[0] on EFnet #mIRC
- "Life is a pointer to an integer without a cast"
Joined: Feb 2003
Posts: 307
T
tontito Offline OP
Fjord artisan
OP Offline
Fjord artisan
T
Joined: Feb 2003
Posts: 307
Hello and thanks for your reply.

My idea was to use this combined to sockets, in listening mode.

Your idea might be doable but isn't easier then the java bouncer/proxy I made for that purpose some years ago.

My idea was to completely replace this proxy and use only "native" mirc code.

Joined: Oct 2003
Posts: 3,918
A
Hoopy frood
Offline
Hoopy frood
A
Joined: Oct 2003
Posts: 3,918
I'm confused-- why is it not easier to import a certificate into your system certificate chain?

Presumably, and knowing how Windows is designed, there is some exe file or COM object that can auto-import a .crt from the command line or vbscript, which should make it easy enough to automate.


- argv[0] on EFnet #mIRC
- "Life is a pointer to an integer without a cast"
Joined: Apr 2010
Posts: 969
F
Hoopy frood
Offline
Hoopy frood
F
Joined: Apr 2010
Posts: 969
No COMs would be needed. It can be done using
Code:
/run CertMgr [-add|-del|-put] [Options] [ -s [ -r RegistryLocation ] ] SourceName [ -s [ -r RegistryLocation ] ] [DestinationName]


More info Here


I am SReject
My Stuff

Link Copied to Clipboard