Encrypt userfile

[Netstrike]

Hi to all. I have a problem... i want encrypt all userfile data. Exist a tcl or module for this function?

[Petersen]

plenty, but you won't get one easily. the reason being is that such encryption schemes almost always rely on statically compiled encryption keys. thus if the source was given out it would be trivial to decrypt anything crypted with them. only real way to encrypt your userfiles is to write the crypto routines yourself (or employ someone to write them for you).

[slennox]

Is there anyone who disagrees with Petersen's answer? I think a FAQ entry for this is overdue buy my lack of knowledge in this area has prevented it.

[Petersen]

let me elaborate. There are 2 ways to make an ecryption module. Either you statically compile the full encryption keys into it somewhere (or into a file readable by it), or you make it read a commandline option for the keys.
If you have the source for the module, you can (with enough knowledge) work out exactly where the encryption keys are stored in the module binary if they are linked into it. Even if they aren't linked into it, with the source you can work out where the keys are stored in a mem dump of a running eggdrop process. Thus the only way to make it in any way useful is to use your own code, so that the keys are stored in the binary/ram in a completly unique place compared with everybody elses egg. Combined with stack encryption routines, and automatic fork() if the process gets traced, it makes it very difficult to get the routines out of the binary at all. Even saying all this, as long as someone gets a shell with your UID, there isnt anything you can do that can make it impossible for them to get the crypt routines from a running bot. For most ppl this isnt gonna be a problem, because most script kiddies wouldnt know how to do this anyway. But if a widely avaliable open source crypto module was made avaliable as part of the eggdrop source, it would not be long before someone releases some util to crack that particular module (or worse, not release it and have lotsa ppl in a false sense of security).
Unfortunatly, security through obscurity is the only way if you don't trust the security of the box the egg is running from.

[slennox]

Thanks, FAQ has been added.

http://www.egghelp.org/faq.shtml#123

[Mentolboy]

I'm interested too in encryption. Can you write a little example Petersen? I'm kinda newbie in programming eggdrop =)
greetz

[KrzychuG]

It is possible to do. Encrypt userfile is done in bots available in poland (like VoiD). Userfile isn't encrypted in the fly. Keys might be found by 'strings binary'. Best way to encrypt userfile is using blowfish module or any other encryption. Every function writes anything to userfile have to be modified (userrec.c '_write_userfile' and in some modules). File contains keys cannot be included in binary, but bigth be copied to char by new function (ex. setCryptKey). To write those keys in function 'sed' might be used. To support encrypted share files a new module might should be written (preety simple) and function sending crypt key to bots downloading userfile. That's all

[strikelight]

The best and securest approach is to implement byte-coding of sensitive files. See tclpro from tcl.activestate.com for more information.

[KrzychuG]

Maybe yes, but how will you use it to encrypt/compile userfile ?
Encrypted userfile is exists for example in cnt botpack.

[strikelight]

Maybe yes, but how will you use it to encrypt/compile userfile ?
Encrypted userfile is exists for example in cnt botpack.

good point.. I don't think I was paying attention to the 'userfile' part when posting that reply... While the chanfile can be treated as a tcl file, we all know that the userfile is not.

[stdragon]

It would be possible, though, to write a script that saves users in a tcl file (adduser, setuser for each one) and then delete the user file.

Better idea: use a encrypted file system.

[GodOfSuicide]

or even better : write a module that encrypts the userfile and everytime the bot / a script / etc trys to access it decrypts it on the fly with a generated key

[KrzychuG]

Userfile might be encrypted by blowfish and its preety secure. Random key might be even 80 chars long. If key won't be visible in binary, then brute force that userfile will take a really long time. For tcl's one problem exists. Tcl can interpret whole file or one line. For whole files (scripts) we had te decrypt tcl to file and the load decrypted file (unsecure). For chanfiles not. So for tcl's use tclpro to protect source code, for userfile/chanfile and other files which can be readed string after string use blowfish with inteligent hiden key. Another problem. There is a way to get decrypted userfile. It might be done while userfile is transfered to share-bots. Solution: write module which will recrypt userfile using new key (to protect local userfile) then send key and userfile, and on sharebot load userfile and recrypt with local ufkey. Module is preety simple

I'm interested compiling chanfile by tclpro. Any ideas how to make it.

[GodOfSuicide]

TCL Pro sucks because of one reason : compiler

if i install a TCL script i want to see what it does, and thats impossible with tcl pro (except with some tricks)

i dont want wgets & so on on my box

[KrzychuG]

Maybe you want to see source code, but the compiler was written just to hide those part. Anyway, whatr kind of tricks are you using to see source code?

About tclpro compiled chanfile, it is not possible on all shell's, becase not every shell (not too many shells) have go tclpro installed .