From 05ff82c6f488786446a333069c452e00505f378e Mon Sep 17 00:00:00 2001 From: Bob Mottram Date: Sat, 27 Feb 2016 20:48:37 +0000 Subject: [PATCH] Avoid irc data leakage --- doc/EN/usage.org | 39 +++++++-------------------------------- src/freedombone | 3 ++- src/freedombone-adduser | 3 ++- 3 files changed, 11 insertions(+), 34 deletions(-) diff --git a/doc/EN/usage.org b/doc/EN/usage.org index 61d2988a..80536d3f 100644 --- a/doc/EN/usage.org +++ b/doc/EN/usage.org @@ -163,40 +163,13 @@ On first visiting your Hubzilla site you'll see the login screen. The first thin ** IRC IRC is useful for multi-user chat. The classic use case is for software development where many engineers might need to coordinate their activities, but it's also useful for meetings, parties and general socialising. *** Irssi -If you are using the [[http://www.irssi.org][irssi]] IRC client then you can use the following commands to connect to your IRC server. +The easiest way to use irssi is to connect to your system, like this: #+BEGIN_SRC bash -/server add -auto -ssl yourdomainname 6697 -/connect yourdomainname -/join freedombone +ssh myusername@mydomain -p 2222 #+END_SRC -You can also connect via Tor, and this will help to protect your metadata from mass surveillance and will also allow you to connect even if you are behind a hostile firewall. Note however, that connecting to popular servers such as Freenode is hard to do via Tor (they may block exit nodes to try to stop trolls), so you might want to have a special irssi config file for only connecting to your server. - -Look up the onion address for IRC on your Freedombone system. - -#+BEGIN_SRC bash -ssh username@domain -p 2222 -sudo control -#+END_SRC - -Go to the /About/ screen and look for the IRC onion address, then exit back to your local system. - -#+BEGIN_SRC bash -exit -#+END_SRC - -Once you know the onion address for the IRC server you can then connect to it with: - -#+BEGIN_SRC bash -usewithtor irssi -/server add -auto myaddress.onion 6697 -/ignore * CTCPS -/connect myaddress.onion -/join freedombone -#+END_SRC - -Note that if *usewithtor* doesn't work then the *torify* command might. +Then select *IRC* from the menu. Irssi is automatically set up to connect to your server and route its messages through the Tor network. Some popular systems such as *Freenode* reject connections coming from Tor (as a very crude attempt to stop trolls) and so if you want to use those you can exit to the command line from the menu and then just type "irssi" to use the system without Tor. *** XChat If you are using the XChat client: @@ -303,11 +276,13 @@ Then select *Next*. When chatting you can use the lock icon to encrypt your conv ** Tox Tox is an encrypted peer-to-peer messaging system and so should work without Freedombone. It uses a system of nodes which act as a sort of directory service allowing users to find and connect to each other. The Tox node ID on the Freedombone can be found within the README within your home directory. If you have other users connect to your node then you will be able to continue chatting even when no other nodes are available. *** Using the Toxic client -To connect to your node use the command: +Log into your system with: #+BEGIN_SRC bash -/connect [yourdomainname] 33445 [your tox node ID] +ssh myusername@mydomain -p 2222 #+END_SRC + +Then from the menu select *Tox Chat*. Tox is encrypted by default and also router through Tor, so it should be reasonably secure both in terms of message content and metadata. ** VoIP (Voice chat) *** Using with Ubuntu Within the software center search for "mumble" and install the client then run it. Skip through the audio setup wizard. diff --git a/src/freedombone b/src/freedombone index 42be28c7..a010df1e 100755 --- a/src/freedombone +++ b/src/freedombone @@ -7548,7 +7548,7 @@ function install_irc_client { echo ' address = "chat.freenode.net";' >> /home/$MY_USERNAME/.irssi/config echo ' chatnet = "Freenode";' >> /home/$MY_USERNAME/.irssi/config echo ' port = "6667";' >> /home/$MY_USERNAME/.irssi/config - echo ' autoconnect = "yes";' >> /home/$MY_USERNAME/.irssi/config + echo ' autoconnect = "no";' >> /home/$MY_USERNAME/.irssi/config echo ' },' >> /home/$MY_USERNAME/.irssi/config echo ' {' >> /home/$MY_USERNAME/.irssi/config echo ' address = "irc.oftc.net";' >> /home/$MY_USERNAME/.irssi/config @@ -7595,6 +7595,7 @@ function install_irc_client { echo " core = { real_name = \"$MY_NAME\"; user_name = \"$MY_USERNAME\"; nick = \"$MY_USERNAME\"; };" >> /home/$MY_USERNAME/.irssi/config echo ' "fe-text" = { actlist_sort = "refnum"; };' >> /home/$MY_USERNAME/.irssi/config echo '};' >> /home/$MY_USERNAME/.irssi/config + echo 'ignores = ( { level = "CTCPS"; } );' >> /home/$MY_USERNAME/.irssi/config chown -R $MY_USERNAME:$MY_USERNAME /home/$MY_USERNAME/.irssi diff --git a/src/freedombone-adduser b/src/freedombone-adduser index 1bda2f16..1f6c6b7f 100755 --- a/src/freedombone-adduser +++ b/src/freedombone-adduser @@ -313,7 +313,7 @@ if grep -q "install_irc_client" $COMPLETION_FILE; then echo ' address = "chat.freenode.net";' >> /home/$MY_USERNAME/.irssi/config echo ' chatnet = "Freenode";' >> /home/$MY_USERNAME/.irssi/config echo ' port = "6667";' >> /home/$MY_USERNAME/.irssi/config - echo ' autoconnect = "yes";' >> /home/$MY_USERNAME/.irssi/config + echo ' autoconnect = "no";' >> /home/$MY_USERNAME/.irssi/config echo ' },' >> /home/$MY_USERNAME/.irssi/config echo ' {' >> /home/$MY_USERNAME/.irssi/config echo ' address = "irc.oftc.net";' >> /home/$MY_USERNAME/.irssi/config @@ -360,6 +360,7 @@ if grep -q "install_irc_client" $COMPLETION_FILE; then echo " core = { real_name = \"$MY_NAME\"; user_name = \"$MY_USERNAME\"; nick = \"$MY_USERNAME\"; };" >> /home/$MY_USERNAME/.irssi/config echo ' "fe-text" = { actlist_sort = "refnum"; };' >> /home/$MY_USERNAME/.irssi/config echo '};' >> /home/$MY_USERNAME/.irssi/config + echo 'ignores = ( { level = "CTCPS"; } );' >> /home/$MY_USERNAME/.irssi/config chown -R $MY_USERNAME:$MY_USERNAME /home/$MY_USERNAME/.irssi fi