Modify

#44 closed enhancement (duplicate)

Encryption support

Reported by: anonymous Owned by:
Priority: wishlist Milestone:
Component: Jabber Version:
Keywords: Cc:
IRC client+version: Client-independent Operating System: Public server
OS version/distro:

Description

It would be really nice to have some kind of encryption support, so conversations do not need to be transfered as plain text. Preferably compatible with other IM clients.

Attachments (1)

otr.diff (30.6 KB) - added by noel@… at 2008-12-03T16:22:15Z.
bitlbee-otr ported to 1.2.3 main line

Download all attachments as: .zip

Change History (25)

comment:1 Changed at 2005-12-06T00:51:10Z by wilmer

Priority: majorwishlist
Version: 0.99

comment:2 Changed at 2005-12-07T16:07:53Z by anonymous

GPG encryption, like many jabber clients support it, would be nice.

comment:3 Changed at 2005-12-10T21:31:59Z by anonymous

Actually, this is the only feature I am missing in v1.0. Any plans on this topic yet?

comment:4 Changed at 2005-12-10T22:44:51Z by anonymous

I'm not sure something like this would be a good idea, especially for public servers. It would be a fake sense of security as the channel to BitlBee and the place where your private PGP key would be stored wouldn't be secure.

comment:5 Changed at 2005-12-11T16:17:25Z by anonymous

Well even if it isn't usefull for public servers, there are lots of people out there, who run bitlbee on their own machine (which is the better way to use bitlbee anyway IMHO), where it would make sense to use encryption.

comment:6 Changed at 2005-12-11T23:33:32Z by wilmer

Yes, people asked about this before. I don't know what's the best way to do this though, if it has to be compatible with other clients. Most likely there's a different solution for every protocol, not very convenient... :-(

Won't set a milestone for now, since I have no idea when to do this... GPG integration won't be a lot of fun, probably, GPG is a pretty big dependency monster AFAIK, and I don't know how useful it is from inside a server with the GPG keys not readable from ~/.gnupg/...

comment:7 Changed at 2005-12-12T13:22:05Z by anonymous

The reason why GPG support would be nice is that it would be compatible with other clients that support that, e.g. Gajim or Kopete.

comment:8 Changed at 2005-12-14T01:25:35Z by Jelmer Vernooij

Component: BitlBeeJabber

comment:9 Changed at 2005-12-14T13:15:13Z by anonymous

Couldn't this be implemented through a script in your favourite IRC-client? This would also solve the problem that bitlbee might not be running on the same machine as the client.

comment:10 Changed at 2005-12-15T11:38:26Z by wilmer

It could be, and I proposed it once, but OTOH it's not really in the (client-neutral) "spirit" of BitlBee. :-)

But yes, it does have advantages when it comes to key management.

comment:11 Changed at 2005-12-30T13:53:07Z by anonymous

I'd happily make my IRC client decrypt it, but i can't seem to find a way to get hold of the encrypted message. I'm just getting [ERROR: This message is encrypted, and you are unable to decrypt it.].

I would love to be able to do so as a workaround until bitlbee can do it itself. Any hint?

comment:12 Changed at 2006-01-30T07:36:54Z by fthieme@…

this "Error" message is the real message content from the Jabber protocol - as a backward compatibility for clients who don't understand encryption.

So there must be a component in BitlBee who understands that the irc client sends encrypted data to jabber and wrap that in a encrypted jabber packet and vice a versa. IIRC there is a checksum generated over the whole Jabber packet, so I don't know if that approach really works...

comment:13 Changed at 2006-03-14T00:55:16Z by Jelmer Vernooij

Now that BitlBee has plugin support, maybe this would be something that's nice to implement as a plugin?

comment:14 Changed at 2006-11-19T18:11:41Z by ph030

Since I'm very interested in this feature, I looked around a little and found out, that centericq is capable of doing gnupg-encrypted conversation over jabber. I don't know, but maybe it's possible to have a look at their code and use it for bitlbee?

comment:15 Changed at 2007-04-24T13:38:07Z by kamagurka

Shouldn't it be possible to just appropriate the code psi uses for its gnupg integration? The fact that bitlbee doesn't support this is the only reason I'm still using psi rather than that.

comment:16 Changed at 2007-05-22T11:28:17Z by Jelmer Vernooij

There are no plans of implementing this at this point. If you are interested in working on it (maybe as a plugin ?) we'd be happy to assist.

comment:17 Changed at 2007-12-25T01:28:28Z by anonymous

encryption would be really cool. best would be a plugin for all the different im's out there so we dont have trouble getting encryption working between different clients. Finally!! :P

comment:18 Changed at 2008-03-03T17:55:25Z by anonymous

not being able of using gpg with jabber (or another messenger) is really a pain.. if i would be capable of coding i would try to help out.. but since i can't, i have to ask for official support :) are there any plans to go at it?

comment:19 Changed at 2008-04-02T23:02:47Z by lostlogic

Anyone looked into porting pidgen-encryption (gaim-encryption) to bitlbee?

comment:20 Changed at 2008-06-06T13:49:50Z by anonymous

pidgin-encryption is client-specific. OTR is a much better solution; Kopete and climm, in mainline, support it, and then Pidgin and irssi via plugins.

But, now that we have bitlbee-otr, it's not so much of a concern. I'd like to see it in mainline I suppose though; it'd be better than GPG (#44) for most people.

Changed at 2008-12-03T16:22:15Z by noel@…

Attachment: otr.diff added

bitlbee-otr ported to 1.2.3 main line

comment:21 Changed at 2008-12-03T16:23:23Z by noel@…

I've taken the bitlbee-otr tree and merged it against the main line. I've cleaned up the voice and op stuff in order to be a bit more in line with how the rest of bitlbee works.

Still working on the doc directory changes. What else would you like to see in order to get this merged?

comment:22 Changed at 2008-12-03T17:05:28Z by Wilmer van der Gaast <wilmer@…>

Hello,

I saw your mail but didn't have the chance to respond yet since I'm travelling, sorry. Anyway, I'm not sure if I want to merge OTR into mainline since IMHO it's a reasonably obscure thihng most users aren't so interested in. I'd be much happier to have it as a plugin (and I think I'd be fine with shipping the plugin with the BitlBee source code itself).

Although I prefer irssi-otr because it's really end-to-end, I do agree that bitlbee-otr is more in the "works with any IRC client" spirit, so it'd be nice to make this available to more users.

Enabling it on a public server that doesn't do proper SSL (so including good certificates) would be lame though. :-)

Thank you for your efforts!

comment:23 Changed at 2008-12-03T18:07:20Z by Noel Cragg <noel@…>

I saw your mail but didn't have the chance to respond yet since I'm
travelling, sorry.

OK, wasn't sure whether you just got mail from the bug tracking system
or not, so figured I'd send to both places.

I'd be much happier to have it as a plugin (and I
think I'd be fine with shipping the plugin with the BitlBee source code
itself).

OK, I'll figure out how to do that.

comment:24 Changed at 2010-11-21T15:28:42Z by wilmer

Resolution: duplicate
Status: newclosed

OTR has a different bug already, and it's fixed. :-)

Modify Ticket

Action
as closed The ticket will remain with no owner.
The resolution will be deleted.

Add Comment


E-mail address and name can be saved in the Preferences.

 
Note: See TracTickets for help on using tickets.