7.1-current SSL

[Jonathan R. Lusky]

Tim writes:
> > Also, for those who crave SSL, and cannot understand why it has not 
> > been included in ircd-hybrid as yet, I pose to you this request.  The 
> > main roadblock, at least in my opinion, is that there has not been a 
> > standardized method for IRC over SSL.  Has this changed?  As I 
> > understand it there are a few ircds these days which support SSL.  Do 
> > they all speak the same language?  Maintaining standards and 
> > compatibility is a very crucial focus in an ircd's development.  If we 
> > implement SSL one way, and another ircd implements it another way, 
> > that is two seperate protocols that a given client must be able to 
> > detect, and adapt to, and ultimately communicate effectively with.
> >
> > Cheers,
> >
> > Bill
> >
> 
> As far as I can tell from my minor bit of SSL work with IRC, connecting 
> via SSL is fairly standard.  It's simply the exact same protocol 
> wrapped in encryption.  This means that the clients only have to 
> implement that wrapping (the extra connection parts, and calling 
> SSL_write/read).  This also means that the SSL calls don't have to be 
> in the client itself, but can be done through an SSL proxy like 
> stunnel.  I have an SSL patch for hyrid-7.0.3 that I've been using on a 
> small network for about 6 months, with multiple clients including 
> tunneled ones, and they've all been working fine.  I also connect to 
> two other networks with different ircd's that support SSL, and they 
> both work fine as well.

Any TCP protocol over SSL is very straight forward.  The only confusion
I've seen in IRC is stuff like cryptlinks which is NOT SSL.

-- 
Jonathan R. Lusky                             lusky at blown.net
http://www.blown.net/
-------------------------------   --------------------------------------
68 Camaro Convt - 350 / TH350  \_/ 2000 Mustang GT Convt - 4.6SOHC / T45