Errrm SSL?

Discussion in 'General Off-Topic Chat' started by GutsMan.EXE, Sep 1, 2010.

Sep 1, 2010

Errrm SSL? by GutsMan.EXE at 12:10 AM (1,312 Views / 0 Likes) 10 replies

  1. GutsMan.EXE
    OP

    Member GutsMan.EXE GBAtemp Regular

    Joined:
    Sep 3, 2009
    Messages:
    123
    Country:
    United Kingdom
    Why doesn't the gbatemp irc have SSL? Because if it did it would help a lot without any effort on my behalf.

    Thanks
     
  2. Blood Fetish

    Member Blood Fetish Quis custodiet ipsos custodes?

    Joined:
    Nov 3, 2002
    Messages:
    980
    Country:
    United States
    I am pretty sure the IRC protocol does not support Transport Layer Security.
     
  3. GutsMan.EXE
    OP

    Member GutsMan.EXE GBAtemp Regular

    Joined:
    Sep 3, 2009
    Messages:
    123
    Country:
    United Kingdom
    I would beg to differ and i know 100% it does [​IMG] proof:
    Warning: Spoilers inside!
    Plus why would i even bother to mention something if it was BS, i'd look like an idiot [​IMG]?
     
  4. Rydian

    Member Rydian Resident Furvert™

    Joined:
    Feb 4, 2010
    Messages:
    27,883
    Location:
    Cave Entrance, Watching Cyan Write Letters
    Country:
    United States
    Why does it need SSL? Certs cost money.

    What benefit would it give the Temp's IRC (which isn't even used by a majority of forum-goers) that would make up for the money spent on it?
     
  5. Blood Fetish

    Member Blood Fetish Quis custodiet ipsos custodes?

    Joined:
    Nov 3, 2002
    Messages:
    980
    Country:
    United States
    Thank you for the link, I stand corrected. Not sure if the SSL support is part of the IRC protocol or just a wrapper, but good to know.

    As for the certs, they don't all cost money. If you buy one from a CA such as Verisign you'll pay, but you can just as easily create a self-signed certificate at no cost.
     
  6. GutsMan.EXE
    OP

    Member GutsMan.EXE GBAtemp Regular

    Joined:
    Sep 3, 2009
    Messages:
    123
    Country:
    United Kingdom
    Self sign your own certs and don't spend a cent [​IMG].
     
  7. Rydian

    Member Rydian Resident Furvert™

    Joined:
    Feb 4, 2010
    Messages:
    27,883
    Location:
    Cave Entrance, Watching Cyan Write Letters
    Country:
    United States
    Those sort of defeat the point of SSL in the first place.

    http://www.ietf.org/rfc/rfc2459.txt
    Section 3.3, Revocation.

    If the key is compromised, the CA can just revoke it... but if it's self-signed there's not a CA involved watching from "higher up" in the security chain, so if the key's compromised then data can be injected and falsified while everybody thinks it's still safe and secure and is trusting it.

    Apache even says they should be used for testing, not production environments.\



    Now, WHY does it need SSL? That's just more stuff to deal with, even if you do decide to self-sign (for example the IRC client needs to support it, and the server might need modifying or upgdating as well). What's the benefit in exchange for the hassle?
     
  8. GutsMan.EXE
    OP

    Member GutsMan.EXE GBAtemp Regular

    Joined:
    Sep 3, 2009
    Messages:
    123
    Country:
    United Kingdom
    So no one can eavesdrop or tamper with anything your doing, for extra security.
     
  9. Blood Fetish

    Member Blood Fetish Quis custodiet ipsos custodes?

    Joined:
    Nov 3, 2002
    Messages:
    980
    Country:
    United States
    Revocation is one of the functions of PKI, but certainly not the only one. The primary function of SSL/TLS/SSH is confidentiality.
     
  10. Rydian

    Member Rydian Resident Furvert™

    Joined:
    Feb 4, 2010
    Messages:
    27,883
    Location:
    Cave Entrance, Watching Cyan Write Letters
    Country:
    United States
    What the fuck goes on in GBATemp's IRC where you feel the need for point-to-point encryption? :\
     
  11. Blood Fetish

    Member Blood Fetish Quis custodiet ipsos custodes?

    Joined:
    Nov 3, 2002
    Messages:
    980
    Country:
    United States
    Wouldn't you like to know. [​IMG]
     

Share This Page