Results 1 to 5 of 5

Thread: SSL Helper

  1. #1
    Rizon Staff Chris's Avatar
    Join Date
    Sep 2008
    Location
    Under the rainbow
    Posts
    59

    Default SSL Helper

    Rizon has undergone many new changes in the last couple of months, one of those being a function refereed to as certp. Certp is basically the ability to identify your nickname with Services via an SSL fingerprint.

    In order to utilize this function the user must be able to generate an SSL certificate and setup there client to connect to Rizon using SSL.

    For some users creating a certificate may be difficult, so this is where SSL Helper comes into play.

    SSL Helper is a command line tool written in C++ which uses pre-compiled windows SSL libraries to generate a 2048 bit encryption certificate that is good for a year. Essentially it's just a script which allows the end user to quickly generate a certificate without complicated commands.


    Download

    Instructions:

    Unzip the downloaded file to your desktop, it will extract a SSL helper folder.
    After the folder is extracted there are two exe's within the main directory, one exe is the actual certificate helper, and the other is a library importer.

    The library importer will put all the required SSL dll's into your system32 directory so you aren't missing any files. This file must be ran as administrator in order to copy the files into the system32 directory on vista and windows 7. If you are unsure whether or not you have the files, go ahead and run this exe anyway.

    Move on to the next file which is SSL Helper.exe

    You will be prompted to fill out a few blanks for the certificate:
    Your Country name, full name, city, Organization, Common name, and email.

    After filling out the info a certificate named "rizon.pem" will be placed into SSL Helper\bin. This file needs to be moved into your client directory, for this purpose we will be using mIRC. Once the file is in the mIRC directory you will need to load it. Too load the file simply press alt+e in mIRC and on the left click the Options dialog under Connect. Under this menu you should see an SSL button, click it and you will need to point Private Key File and Certificate Chan file to the rizon.pem in the mIRC main folder, don't worry about Trusted authorities or any other options. Once the certificate is loaded connect to Rizon by typing /server irc.rizon.net +6697

    After connecting to Rizon you'll need to add your SSL finger print to services. Identify for your nick then type:

    /ns access add fingerprint
    After issuing that command you will automatically identify from now on based on your SSL certificate.
    If the SSL button is NOT there you need to restart mIRC for it to load the libraries.

    SSL Install
    http://www.youtube.com/watch?v=DXEtTm0ZvI8
    Last edited by Chris; 03-04-2010 at 10:44 AM.

  2. #2
    Rizon Staff darkex's Avatar
    Join Date
    Sep 2009
    Posts
    120

    Default

    Any more instructions...?

    After loading /ns access add fingerprint, then reconnect and you're identified automatically. Just missed that step
    irc operator
    services operator
    darkex [AT] rizon [DOT] net

  3. #3
    Rizon Staff Chris's Avatar
    Join Date
    Sep 2008
    Location
    Under the rainbow
    Posts
    59

    Default

    Quote Originally Posted by darkex View Post
    Any more instructions...?

    After loading /ns access add fingerprint, then reconnect and you're identified automatically. Just missed that step
    fixed it

  4. #4
    Member
    Join Date
    Jul 2009
    Location
    京都市、京都、日本
    Posts
    49

    Default

    It's CertFP, not CertP.
    [Help team]

  5. #5
    Junior Member
    Join Date
    Apr 2013
    Posts
    1

    Default

    For those who interested in guide update just use new one
    http://www.oftc.net/oftc/NickServ/Ce...ed_Certificate
    Shortly:
    You need to install full Openssl http://slproweb.com/products/Win32OpenSSL.html use the big one. 16MB installer
    Default installation directory is C:\OpenSSL-Win32 , if you change this, don't forget to change it on next steps
    Next step is open CMD - create shortcut to cmd.exe on desktop and rightclick on it - "run as Administrator"
    type:
    set OPENSSL_CONF=C:\OpenSSL-Win32\bin\openssl.cfg
    and press ENTER

    now type:
    cd c:\openssl-win32\bin
    Press enter
    Your current directory should be "c:\OpenSSL-Win32\bin>" now
    type:

    openssl req -nodes -newkey rsa:2048 -keyout nick.key -x509 -days 3650 -out nick.cer

    It should ask you for:
    Code:
    Country Name (2 letter code) [AU]:
    State or Province Name (full name) [Some-State]:
    Locality Name (eg, city) []:
    Organization Name (eg, company) [Internet Widgits Pty Ltd]:
    Organizational Unit Name (eg, section) []:
    Common Name (e.g. server FQDN or YOUR name) []:
    Email Address []:
    just fill it with anonymous info.

    At the and you will have two files in "c:\OpenSSL-Win32\bin", those are nick.cer and nick.key
    now type:
    copy nick.cer + nick.key nick.pem
    Then go to the c:\OpenSSL-Win32\bin, find nick.pem, copy or move it to mirc folder, rename (not required step) and you can continiue
    using chris guide :
    Once the file is in the mIRC directory you will need to load it. Too load the file simply press alt+e in mIRC and on the left click the Options dialog under Connect. Under this menu you should see an SSL button, click it and you will need to point Private Key File and Certificate Chan file to the rizon.pem in the mIRC main folder, don't worry about Trusted authorities or any other options. Once the certificate is loaded connect to Rizon by typing /server irc.rizon.net +6697

    After connecting to Rizon you'll need to add your SSL finger print to services. Identify for your nick then type:

    /ns access add fingerprint


    After issuing that command you will automatically identify from now on based on your SSL certificate.
    Last edited by w0w; 04-13-2013 at 03:43 AM.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •