# $EPIC: encrypt.txt,v 1.3 2006/08/31 13:33:30 sthalik Exp $ ======Synopsis:====== __encrypt__ \\ __encrypt__ [server]/ [-] [] \\ __encrypt__ [server]/ [-] [] ======Description:====== This allows you to maintain an encrypted conversation with a person or channel. Any messages you send to the specified target will automatically be encrypted. If the recipient has likewise specified the proper encryption key for you, the incoming message will automatically be decrypted. Both parties must use the same key for the messages to be decrypted. Anyone receiving an encrypted message without specifying the proper key will instead see "[ENCRYPTED MESSAGE]" on their screen. If no arguments are specified, a list of nicknames (or channels) that encrypted messages are being sent to is shown, along with their respective keys. If only a nickname or channel is given, the encrypted session with that target is ended. If program is given, each message will be filtered through that program for encryption or decryption. For details on how to write such a program, see the epic-crypt-gpg* scripts in the script directory of the distribution. To use these scripts, put them in your path, and make them executable. The third form of the command is available for decryption only, and may be a wildcard string. This permits different people on a channel to use different keys. On decryption a check is made against the second form of the command, and if it fails, the first is used. The comma is _required_ in this form. You can specify a cipher type, which will be used instead of extremely weak SED. Supported cipher types are: ^Cipher ^Notes ^ |CAST |Compatible with ircII | |BLOWFISH |Not compatible with FiSH or anythinge else | |AES |Not compatible with anything except EPIC | |AESSHA |Not compatible with anything except EPIC | |SEDSHA |Not compatible with anything except EPIC | It is possible to maintain per-server encryption sessions, for instance, with overlapping channel or nick names. The server parameter in the second and third form may be its refnum, name, altname or the name of the group it's assigned to. ======Examples:====== To start an encrypted session with JoeBob using the key "foobar": /encrypt joebob foobar To start an encrypted session with channel #blah using key "booya": /encrypt #blah booya To list your current encrypted sessions: /encrypt To end your encrypted session with JoeBob: /encrypt joebob To encrypt your session with Xenu with a strong AES-SHA cipher: /encrypt Xenu -AESSHA teegeack To start separate encrypt sessions with channels with the same names on different servers: /encrypt 0/#foo -AESSHA kitty /encrypt 3/#foo -BLOWFISH cat JoeBob on channel #blah is being rebellious and using a different key and encryption method and you still wish to see what everybody is saying. After this, the encryption key you will use to send to the channel will still be 'booya': /encrypt #blah,joebob!* fludle epic-crypt-gpg-aa You are being rebelious on #blah by using a different key, and you still wish to see what everybody using the old key is saying: /encrypt #blah,* oldkey /encrypt #blah mykey ======Other Notes:====== IrcII's built-in encryption is fine for most purposes, but since the raw algorithm is hardcoded into the client, it's not terribly secure. It is generally suitable to deter prying eyes, but is certainly not suitable for genuinely sensitive transactions. Encrypted messages may be sent across [[DCC]] [[dcc CHAT|CHAT]] connections. However, non-EPIC3 clients will probably be confused by them.