Errrm SSL?

Discussion in 'General Off-Topic Chat' started by GutsMan.EXE, Sep 1, 2010.

  1. GutsMan.EXE
    OP

    GutsMan.EXE GBAtemp Regular

    Member
    123
    0
    Sep 3, 2009
    Why doesn't the gbatemp irc have SSL? Because if it did it would help a lot without any effort on my behalf.

    Thanks
     
  2. Blood Fetish

    Blood Fetish Quis custodiet ipsos custodes?

    Member
    1,077
    354
    Nov 3, 2002
    United States
    I am pretty sure the IRC protocol does not support Transport Layer Security.
     
  3. GutsMan.EXE
    OP

    GutsMan.EXE GBAtemp Regular

    Member
    123
    0
    Sep 3, 2009
    I would beg to differ and i know 100% it does [​IMG] proof:
    Warning: Spoilers inside!
    Plus why would i even bother to mention something if it was BS, i'd look like an idiot [​IMG]?
     
  4. Rydian

    Rydian Resident Furvertâ„¢

    Member
    27,883
    8,105
    Feb 4, 2010
    United States
    Cave Entrance, Watching Cyan Write Letters
    Why does it need SSL? Certs cost money.

    What benefit would it give the Temp's IRC (which isn't even used by a majority of forum-goers) that would make up for the money spent on it?
     
  5. Blood Fetish

    Blood Fetish Quis custodiet ipsos custodes?

    Member
    1,077
    354
    Nov 3, 2002
    United States
    Thank you for the link, I stand corrected. Not sure if the SSL support is part of the IRC protocol or just a wrapper, but good to know.

    As for the certs, they don't all cost money. If you buy one from a CA such as Verisign you'll pay, but you can just as easily create a self-signed certificate at no cost.
     
  6. GutsMan.EXE
    OP

    GutsMan.EXE GBAtemp Regular

    Member
    123
    0
    Sep 3, 2009
    Self sign your own certs and don't spend a cent [​IMG].
     
  7. Rydian

    Rydian Resident Furvertâ„¢

    Member
    27,883
    8,105
    Feb 4, 2010
    United States
    Cave Entrance, Watching Cyan Write Letters
    Those sort of defeat the point of SSL in the first place.

    http://www.ietf.org/rfc/rfc2459.txt
    Section 3.3, Revocation.

    If the key is compromised, the CA can just revoke it... but if it's self-signed there's not a CA involved watching from "higher up" in the security chain, so if the key's compromised then data can be injected and falsified while everybody thinks it's still safe and secure and is trusting it.

    Apache even says they should be used for testing, not production environments.\



    Now, WHY does it need SSL? That's just more stuff to deal with, even if you do decide to self-sign (for example the IRC client needs to support it, and the server might need modifying or upgdating as well). What's the benefit in exchange for the hassle?
     
  8. GutsMan.EXE
    OP

    GutsMan.EXE GBAtemp Regular

    Member
    123
    0
    Sep 3, 2009
    So no one can eavesdrop or tamper with anything your doing, for extra security.
     
  9. Blood Fetish

    Blood Fetish Quis custodiet ipsos custodes?

    Member
    1,077
    354
    Nov 3, 2002
    United States
    Revocation is one of the functions of PKI, but certainly not the only one. The primary function of SSL/TLS/SSH is confidentiality.
     
  10. Rydian

    Rydian Resident Furvertâ„¢

    Member
    27,883
    8,105
    Feb 4, 2010
    United States
    Cave Entrance, Watching Cyan Write Letters
    What the fuck goes on in GBATemp's IRC where you feel the need for point-to-point encryption? :\
     
  11. Blood Fetish

    Blood Fetish Quis custodiet ipsos custodes?

    Member
    1,077
    354
    Nov 3, 2002
    United States
    Wouldn't you like to know. [​IMG]