mIRC Home    About    Download    Register    News    Help

Print Thread
using the new idea on $encode/$decode #241481 27/04/13 12:11 AM
Joined: Feb 2003
Posts: 307
T
tontito Offline OP
Fjord artisan
OP Offline
Fjord artisan
T
Joined: Feb 2003
Posts: 307
Hello to you all,

What do you think of the idea of $encode/$decode have support to use certificate files?

The idea was to input it a .ks and .cert file and all was set, no flags, easily readable keys or salts.

Best regards

Re: using the new idea on $encode/$decode [Re: tontito] #241497 29/04/13 03:01 PM
Joined: Feb 2003
Posts: 2,782
Raccoon Online
Hoopy frood
Online
Hoopy frood
Joined: Feb 2003
Posts: 2,782
What would it do? AES encryption? PGP?

$encode and $decode are nothing more than a simple cipher known as Uuencode or Mime (base64). There's absolutely no cryptographic magic going on here -- it's kind of like $longip() or $base() in that regard.


Well. At least I won lunch.
Good philosophy, see good in bad, I like!
Re: using the new idea on $encode/$decode [Re: Raccoon] #241510 30/04/13 01:21 PM
Joined: Dec 2008
Posts: 95
A
asdfasdf Offline
Babel fish
Offline
Babel fish
A
Joined: Dec 2008
Posts: 95
Quoting from the v7.31 beta changelog:

Quote:
8.Extended $encode/$decode to support blowfish. By default, the method
is compatible with OpenSSL and uses CBC, key hashing, a random salt
and PKCS#5 padding. The identifier format is:

$encode(%var | &binvar, switches, key, [salt | iv])
$decode(%var | &binvar, switches, key, [salt | iv])

Where the switches are:

method: c = cbc or e = ecb encryption (one or the other)
key: l = literal key (optional, must be 56 characters)
salt/iv: s = salt or i = iv or r = randomiv (all optional)
padding: z = zeros, n = one and zeros, p = spaces (all optional)


Now I have never looked into blowfish but am I understanding this correctly that, in the future, a plain mIRC script will be sufficient for blowfish-encrypted chatting?

Re: using the new idea on $encode/$decode [Re: asdfasdf] #241578 03/05/13 11:05 PM
Joined: Feb 2003
Posts: 307
T
tontito Offline OP
Fjord artisan
OP Offline
Fjord artisan
T
Joined: Feb 2003
Posts: 307
I got my idea exactly from there smile

Re: using the new idea on $encode/$decode [Re: tontito] #241583 04/05/13 04:14 AM
Joined: Oct 2003
Posts: 3,918
A
argv0 Offline
Hoopy frood
Offline
Hoopy frood
A
Joined: Oct 2003
Posts: 3,918
mIRC relies on Windows' cert manager for certificate validation, does it not? If so, you could just import your cert into the global manager-- something you ought to do anyway:

http://windows.microsoft.com/en-us/windows-vista/import-or-export-certificates-and-private-keys


- argv[0] on EFnet #mIRC
- "Life is a pointer to an integer without a cast"
Re: using the new idea on $encode/$decode [Re: argv0] #241697 15/05/13 10:18 AM
Joined: Feb 2003
Posts: 307
T
tontito Offline OP
Fjord artisan
OP Offline
Fjord artisan
T
Joined: Feb 2003
Posts: 307
Hello and thanks for your reply.

My idea was to use this combined to sockets, in listening mode.

Your idea might be doable but isn't easier then the java bouncer/proxy I made for that purpose some years ago.

My idea was to completely replace this proxy and use only "native" mirc code.

Re: using the new idea on $encode/$decode [Re: tontito] #241702 15/05/13 08:50 PM
Joined: Oct 2003
Posts: 3,918
A
argv0 Offline
Hoopy frood
Offline
Hoopy frood
A
Joined: Oct 2003
Posts: 3,918
I'm confused-- why is it not easier to import a certificate into your system certificate chain?

Presumably, and knowing how Windows is designed, there is some exe file or COM object that can auto-import a .crt from the command line or vbscript, which should make it easy enough to automate.


- argv[0] on EFnet #mIRC
- "Life is a pointer to an integer without a cast"
Re: using the new idea on $encode/$decode [Re: argv0] #241703 16/05/13 01:07 AM
Joined: Apr 2010
Posts: 966
F
FroggieDaFrog Offline
Hoopy frood
Offline
Hoopy frood
F
Joined: Apr 2010
Posts: 966
No COMs would be needed. It can be done using
Code:
/run CertMgr [-add|-del|-put] [Options] [ -s [ -r RegistryLocation ] ] SourceName [ -s [ -r RegistryLocation ] ] [DestinationName]


More info Here


I am SReject
My Stuff