noob1337 2017-02-25 09:47:10
oh hi bitch
bitch 2017-02-25 09:49:12
hi :)
noob1337 2017-02-25 09:49:25
how are you, bitch ?
wodim 2017-02-25 09:49:41
bitchy
bitch 2017-02-25 09:49:42
good you?
noob1337 2017-02-25 09:49:46
aha
noob1337 2017-02-25 09:49:59
lmao
bitch 2017-02-25 09:50:36
but with this nick, i'm the technical term for a female dog.
noob1337 2017-02-25 09:51:36
aha
wodim 2017-02-25 09:52:51
is this some kind of a double act?
noob1337 2017-02-25 09:54:29
quite possibly
cloudidair 2017-02-25 09:56:58
whats new this ear?
Keytap 2017-02-25 09:58:05
Afternoon gents. Quick question, I'm writing an irc bot and getting an error telling my I need to authenticate via SASL. Problem is, though I've found the page on how to set up SASL authentication on a bunch of other clients, it doesn't give the raw details on what commands to send if I were writing my own client.
Keytap 2017-02-25 09:58:28
Although I suppose I could download a packet sniffer and just watch the outgoing message
amnet 2017-02-25 09:59:11
Google "SASL authentication protocol"
Keytap 2017-02-25 09:59:15
But if it's encoded (and it's authentication, so I suspect it may be), that won't do me any good anyways
emerson 2017-02-25 09:59:25
http://ircv3.net/specs/extensions/sasl-3.1.html
cloudidair 2017-02-25 09:59:43
whats the difference between ssl and sasl?
Keytap 2017-02-25 09:59:44
Oh well lookie there. Now I look like an idiot. :P
emerson 2017-02-25 09:59:50
you can do plain, which is just accountname\0password base64
emerson 2017-02-25 10:01:23
cloudidair: ssl is an encryption method, sasl is an authentication method
cloudidair 2017-02-25 10:02:21
is idiot same as noob?
Keytap 2017-02-25 10:02:21
In this context?
Keytap 2017-02-25 10:02:21
Probably
cloudidair 2017-02-25 10:02:21
so tls is the auth part?
emerson 2017-02-25 10:02:21
no
emerson 2017-02-25 10:02:21
that's the encryption part
cloudidair 2017-02-25 10:02:21
but ive seen tls/ssl
amnet 2017-02-25 10:02:21
SASL is session authentication, SSL is socket layer.
cloudidair 2017-02-25 10:02:21
they are the same?
amnet 2017-02-25 10:02:28
Yes, all OSI layers are the same.
cloudidair 2017-02-25 10:03:55
let me see if i get this... to use ssl you need a certificate on your part that matches a certificate on the server side wont that serve has auth?
amnet 2017-02-25 10:04:39
Not automatically, no.
cloudidair 2017-02-25 10:05:15
hmm i guessing all browser have the same certificats to the matching server thats why it cant be used as auth?
emerson 2017-02-25 10:05:19
no, you're think of certfp
emerson 2017-02-25 10:05:22
er, thinking
emerson 2017-02-25 10:05:36
because that's not how TLS works
amnet 2017-02-25 10:05:48
When your browser says "Your connection is secure," it actually means that it has installed a special certificate that authorizes the internet to use SSL.
Selavi 2017-02-25 10:06:02
...
cloudidair 2017-02-25 10:06:03
nvm i dont know how it work maybe should read about it
amnet 2017-02-25 10:08:01
Start with the OSI layers.
cloudidair 2017-02-25 10:08:12
ive once made a private cert to use SSH
cloudidair 2017-02-25 10:09:07
so that cert would auth me since it was unic
Holo 2017-02-25 10:09:18
amnet you dont even have to do that
amnet 2017-02-25 10:09:39
No, but it sure helps contextualize things so you don't create security holes in your applications.
Holo 2017-02-25 10:09:49
all he needs to know is that there is a set of *trusted* cert authorities that are used to verify verts
Holo 2017-02-25 10:09:59
amnet ah then ya, its critical
Keytap 2017-02-25 10:10:18
So when I send `CAP REQ :sasl`, I can see that the server responds with an acknowledgment message. Does it have to do that? Is the order of `CAP * ACK :sasl` then the welcome response guaranteed if I don't have to authenticate over SASL?
Holo 2017-02-25 10:10:39
he could probably just care about the tcp/ip model
emerson 2017-02-25 10:10:52
Keytap: yes, see http://ircv3.net/specs/core/capability-negotiation-3.1.html
amnet 2017-02-25 10:11:13
Keytap: IRC doesn't guarantee ordering. TCP does.
Holo 2017-02-25 10:11:21
tho I prefer the OSI model
emerson 2017-02-25 10:11:27
cloudidair: if you're looking to have your bot auth with sasl, then don't bother with certs, just implement PLAIN auth. you can do it in like 20 lines of code
amnet 2017-02-25 10:11:48
The technical term for why most IRC servers run over TCP sockets is "convention."
mst 2017-02-25 10:11:59
most IRC stuff is not as ordered as one might like
amnet 2017-02-25 10:12:02
In layman terms it'd be "coincidence."
mst 2017-02-25 10:12:16
but cap negotation at the start is a different thing
Holo 2017-02-25 10:12:29
amnet because irc over udp is such a good idea
Holo 2017-02-25 10:13:58
lets hope it gets there
Holo 2017-02-25 10:14:03
:>
amnet 2017-02-25 10:14:29
Holo: There have been worse ideas.
cloudidair 2017-02-25 10:15:46
im not build a bot im just curious
Keytap 2017-02-25 10:16:52
@amnet How do you mean? If there is a specification that says requests for SASL capabilities must be ack'd or nack'd before the welcome response can be sent, then that's what guarantees
Keytap 2017-02-25 10:16:53
I mean, obviously I know that TCP requires ordering of packets
amnet 2017-02-25 10:16:53
Keytap: That's just a coincidence.
Keytap 2017-02-25 10:16:53
Okay, that's what I was wondering.
Keytap 2017-02-25 10:16:53
Much appreciated.
Holo 2017-02-25 10:16:53
Keytap ssl etc is layer 5
amnet 2017-02-25 10:16:53
Tons of application and software developers never read or contextualize OSI material.
Holo 2017-02-25 10:16:53
tcp is layer 4
Holo 2017-02-25 10:16:53
this is what handles the packets
emerson 2017-02-25 10:16:53
amnet: i don't think you're really helping this conversation
amnet 2017-02-25 10:16:53
So you end up with a ton of IRC implementations that don't care about any RFCs.
emerson 2017-02-25 10:16:53
you're not talking about anything really related to his question
emerson 2017-02-25 10:16:53
just a tangent about tcp
amnet 2017-02-25 10:16:53
emerson: Keytap asked what "guaranteed."
Keytap 2017-02-25 10:16:53
I'll be one-hundred percent honest here, though I remember the basics of the OSI model from the one class I took in college, network was never my thing
emerson 2017-02-25 10:16:53
the server guarantees it
amnet 2017-02-25 10:16:53
It's IRC; nothing is guaranteed. Not even RFCs.
emerson 2017-02-25 10:16:53
you don't need to know tcp to implement the cap spec
amnet 2017-02-25 10:16:53
Keytap: OSI isn't about networking.
amnet 2017-02-25 10:16:53
It's about systems design.
Keytap 2017-02-25 10:16:53
True
Holo 2017-02-25 10:16:53
Keytap I would send you an amazing image visualizing it but ... dam Cisco license
ThisIsNickname 2017-02-25 10:16:53
Hey there.
amnet 2017-02-25 10:16:53
The networking layer is just one OSI layer.
mst 2017-02-25 10:16:53
you seem to be being incredibly pedantic and techinically correct in a way that isn't useful to the conversation at all
amnet 2017-02-25 10:16:53
Or series of layers.
ThisIsNickname 2017-02-25 10:16:53
Wondering, was freenode affected by the CloudFlare bug mst?
emerson 2017-02-25 10:16:53
yea, amnet, maybe take a break from rambling about tcp and osi, since it's just making noise
Keytap 2017-02-25 10:16:53
@mst C'est la vie. That said, I love learning random shit.
emerson 2017-02-25 10:16:53
and someone is actually trying to get help
ThisIsNickname 2017-02-25 10:16:57
emerson, https://en.wikipedia.org/wiki/Cloudbleed
Keytap 2017-02-25 10:16:58
@emerson Eh, you've pointed me in the right direction (thanks again). I'm sure I can figure it out.
Holo 2017-02-25 10:17:00
Keytap http://www.tonypickett.com/wp-content/uploads/2013/07/OSI-TCP-Model-v1.png
Holo 2017-02-25 10:17:04
somewhat decent
emerson 2017-02-25 10:17:16
ThisIsNickname: webchat and freenode.net were behind cloudflare
Holo 2017-02-25 10:17:16
but basicaly
Holo 2017-02-25 10:17:24
dont worry about tcp etc
Keytap 2017-02-25 10:17:29
Oh that is a nifty infographic
ThisIsNickname 2017-02-25 10:17:33
emerson, Damn so are they affected?
Holo 2017-02-25 10:17:36
that just guarantee the packet gets there
emerson 2017-02-25 10:17:40
ThisIsNickname: possibly
ThisIsNickname 2017-02-25 10:17:47
So do I change my pass
ThisIsNickname 2017-02-25 10:17:48
or what
emerson 2017-02-25 10:17:55
if you want to
amnet 2017-02-25 10:17:59
Holo: It doesn't.
emerson 2017-02-25 10:18:06
assuming you used webchat
ThisIsNickname 2017-02-25 10:18:08
yeah I know so like did any freenode data leak out
emerson 2017-02-25 10:18:20
there's no way to know
Holo 2017-02-25 10:18:27
you just need to see how ssl currently works with its verification
ThisIsNickname 2017-02-25 10:18:34
apparently search engines cache it
Holo 2017-02-25 10:18:53
amnet there is a far better image in the cisco ccna books
Holo 2017-02-25 10:19:01
that explains everything
amnet 2017-02-25 10:19:10
ThisIsNickname: If you never used the webchat while logging in to NickServ, no.
Holo 2017-02-25 10:19:35
but basicaly dont care for now :D
thetimetraveler 2017-02-25 10:20:05
?
mst 2017-02-25 10:20:35
oooh, hm, "The client MUST be able to use the CAP command anytime, even after registration."
Holo 2017-02-25 10:20:36
thetimetraveler anything that was using cloudflare is
emerson 2017-02-25 10:20:50
ThisIsNickname: search engines probably didn't cache nickserv data, or at least were less likely because it wasn't static content
amnet 2017-02-25 10:21:57
emerson: Please don't tell me OSI is off-topic if you don't understand why NickServ IDENTIFY commands wouldn't end up in Cloudflare memory dumps.
emerson 2017-02-25 10:22:19
"less likey to"
emerson 2017-02-25 10:22:21
er, likely
emerson 2017-02-25 10:22:31
means there's still a chance
amnet 2017-02-25 10:22:31
Right, and 0 isn't less than 0.
emerson 2017-02-25 10:22:38
so drop the attitude
amnet 2017-02-25 10:22:39
There isn't.
amnet 2017-02-25 10:22:47
The probably is exactly 0.
emerson 2017-02-25 10:23:05
nickserv passwords still would go through cloudflare
amnet 2017-02-25 10:23:21
If you never used the webchat, there's no way the data could get into Cloudflare memory.
emerson 2017-02-25 10:23:30
correct
amnet 2017-02-25 10:24:11
If the webchat doesn't use HTTP tunneling, it also makes it impossible for your NickServ password to get into Cloudflare memory dumps.
emerson 2017-02-25 10:24:24
cool, so this isn't going anywhere
emerson 2017-02-25 10:24:36
and the original question was answered already
deorwine 2017-02-25 10:24:50
This nick is registered, but it looks like it's probably expired (Last seen: (about 84 weeks ago), User seen: (about 83 weeks ago))... can any staff member check? I usually used (and still have) nick DarwinElf but the one I use for my account is dchmelik. I have another I'm going to release if I can get deorwine, just couldn't get used to using something that was that different
emerson 2017-02-25 10:26:32
deorwine: you can register it now
deorwine 2017-02-25 10:26:37
thanks :)
emerson 2017-02-25 10:26:50
welcome
tesseract 2017-02-25 10:28:33
emerge, can you also check my nick (tesseract) : -NickServ- Last seen : (about 19 weeks ago)
deorwine 2017-02-25 10:28:58
nickserv said I had too many, so I released one as I said I would, then it still said that
emerson 2017-02-25 10:29:32
tesseract: all yours
tesseract 2017-02-25 10:29:42
emerson++
emerson 2017-02-25 10:29:46
deorwine: you should group it to an existing account
deorwine 2017-02-25 10:29:56
oh
deorwine 2017-02-25 10:32:14
emerson++
Recombo 2017-02-25 10:32:22
hi guys
deorwine 2017-02-25 10:32:29
see you later, channel
Spiderman 2017-02-25 10:33:12
following an advice of a friend
Spiderman 2017-02-25 10:33:20
i recommend you visit register your nick and join #freenode to ask for cloaking
Spiderman 2017-02-25 10:33:26
how?
amnet 2017-02-25 10:34:40
1. Ask for a cloak. 2. Wait for staff to respond. 3. Optionally learn that it doesn't prevent other users or bots from learning your IP address.
Spiderman 2017-02-25 10:35:22
how ask for a cloak?
usersiis 2017-02-25 10:36:05
just ask "give me a cloak" here
Spiderman 2017-02-25 10:36:47
give me a cloak
usersiis 2017-02-25 10:38:01
a staff member will give you
Spiderman 2017-02-25 10:38:21
done!
emerson 2017-02-25 10:38:21
you need to register your nick first though
emerson 2017-02-25 10:38:21
see /msg nickserv help register
Spiderman 2017-02-25 10:38:21
how?
amnet 2017-02-25 10:38:21
(As I understand it the bot/user would need access to Services.)
Spiderman 2017-02-25 10:38:21
[NickServ] Spiderman is already registered.
ishanyx 2017-02-25 10:38:21
'access to services' as in "can send a message to services", not any sort of special privileges
Spiderman 2017-02-25 10:38:21
how it's possible?
amnet 2017-02-25 10:38:21
ishanyx: So you don't even need to be registered?
ishanyx 2017-02-25 10:38:21
Spiderman: someone else probably owns that, try picking a different nick
Spiderman 2017-02-25 10:38:21
uff..shit!
Spiderman 2017-02-25 10:38:21
:(
ishanyx 2017-02-25 10:38:21
amnet: registration is not a special privilege, it takes about a minute
Spiderman 2017-02-25 10:38:33
trust me...I'm the real Spiderman!
Spiderman 2017-02-25 10:38:35
:D
amnet 2017-02-25 10:38:44
If you have access to your email, yes.
ishanyx 2017-02-25 10:39:10
Spiderman: actually it looks a bit inactive, ask emerson if he'd be willing to drop it for you
Holo 2017-02-25 10:39:21
its a pain to change 200 logins :s
emerson 2017-02-25 10:39:48
Spiderman: you can register it now
Spiderman 2017-02-25 10:39:50
so if exist another Spiderman...what happens to me...I will lose my friend?
Spiderman 2017-02-25 10:40:03
wow cool!
Spiderman 2017-02-25 10:40:07
thanks emerson
emerson 2017-02-25 10:40:11
you're welcome :)
Recombo 2017-02-25 10:40:25
hmmm
Spiderman 2017-02-25 10:40:55
I take it...
Spiderman 2017-02-25 10:41:24
now I can cloak?
ishanyx 2017-02-25 10:41:42
you need to check your email to verify your registration first
amnet 2017-02-25 10:42:05
2a. Staff must impart cloack. 2b. Cloak only applies after logging in to NickServ.
Spiderman 2017-02-25 10:42:22
done my email
ThisIsNickname 2017-02-25 10:42:34
hey there again
Spiderman 2017-02-25 10:42:41
[NickServ] Spiderman has now been verified.
ThisIsNickname 2017-02-25 10:42:42
I made an invite only channel and locked myself out?
ishanyx 2017-02-25 10:42:53
ThisIsNickname: /msg chanserv invite #yourchan
Spiderman 2017-02-25 10:42:57
hi thisisnickname
ThisIsNickname 2017-02-25 10:43:00
Okay thanks.
ThisIsNickname 2017-02-25 10:43:33
Spiderman, Hello
ThisIsNickname 2017-02-25 10:43:38
ishanyx, Thanks, works now.
amnet 2017-02-25 10:43:44
Alternatively if there's an op in your channel, you can /knock.
emerson 2017-02-25 10:44:00
ThisIsNickname: might want to add yourself to the invex list
ishanyx 2017-02-25 10:44:02
so that doesn't happen again, you can give yourself +I (this will be cleared if the channel becomes empty, but +i probably would then too)
ThisIsNickname 2017-02-25 10:44:19
emerson, How?
amnet 2017-02-25 10:44:20
If the channel became empty when you left, the modes were lost and you can just recreate the channel.
ishanyx 2017-02-25 10:44:21
/mode #yourchan +I $a:AHumanPerson
Spiderman 2017-02-25 10:44:24
so I have only to wait for my cloack?
amnet 2017-02-25 10:45:50
That was a typo.
emerson 2017-02-25 10:45:57
Spiderman: cloaked you
Spiderman 2017-02-25 10:45:57
emerson number 1!
ThisIsNickname 2017-02-25 10:45:57
emerson, Can't op myself??
ThisIsNickname 2017-02-25 10:45:57
Error
emerson 2017-02-25 10:45:57
ThisIsNickname: /msg chanserv op #channel
