This are some quick notes on using otr via irc, listing the commands I use. No checking for errors and readability done yet. — alice 2009/07/06 16:30
The bitlbee people(irc.bitlbee.org/bitlbee) created a nice plugin for irssi and xchat
git clone git://git.tuxfamily.org/gitroot/irssiotr/irssiotr.git
Offtherecord encryption has some nice features out of the box:
there are packages available for some distros. And here ist the INSTALL file
after install you should be able to load the module in irssi and add the statusbar icon. then you can spam your buddies with “no otr module found” messages until they install an otr plugin.
/load otr /statusbar window add otr /save ## to make changes persistent /msg buddy ?OTR?
now you can communicate otr encrypted by opening a query window. the otr plugin uses a hidden whitespace in the beginning to trigger encrytion on the other end. If this fails, the policy restricts that or the window was already open you can send a request with ”?OTR?”. Clients without support should display a message like “otr requested but you have no module” to the user. So if still nothing happens your parner doesnt have the module. Keep on spamming.
on the first use for a email@example.com the keys are generated. This can be dramaticaly accelerated by using some disk intensive command INlike
/otr genkey firstname.lastname@example.org ## this is done automagically on conversation start ## so dont worry if you dont know nick or server :P
$ du /
for a communication the parties have to exchange some generated keys. If one client decides to use a new key and the other side doesnt realize this. the conversation has to be resetted. The most effective way is to simply close the window and wait. Another way is to get back to unencrypted communication and start over.
/window close /msg buddy erm, sry ... my otr fuxed up ## OR ( this switches policy to handlews( the default until window is resetted) /otr finish erm, sry ... my otr fuxed up # wait for buddy to send plaintext ## with v0.3 this blacklists the buddy and encryption hast to be restarted manualy ?OTR?
policy can be set with
/set otr_policy = manual /set otr_policy_known = *@* always
following values can be set global or per user. otr_policy_known applies if the plugin has a fingerprint for the user conversation ist started with.
you can store the fingerprints of your buddy and put trust on them by checking the fingerprint or by agreeing on a shared secret. The fingerprints or the secret have to be aquired via a secure source. Offline, via phone or a page with trusted cert.
## init challenge for shared secret /otr auth SecretWord ## or you know the fingerprint is correct /otr trust
commands to upgrade
check version and urge admin to upgrade if not sufficient
/otr unload /otr load
the default policy changed from oportunistic to a policy_setting.
otr oeffnet ungefragt zuviele fenster:
/set otr_createqueries OFF
be aware: danach gehen fehlermeldungen fuer nicht begonnene konversationen ins status fenster …
ansonsten keys resetten.
nickserv versteht mich nicht mehr