flute icon indicating copy to clipboard operation
flute copied to clipboard

Published 20 hours ago verified publisher icon asn-d6

prepending [STATUS] to messages may be dangerous

Open fauno opened this issue 8 years ago • 5 comments

someone could just be prepending all my plain text messages with "[ENCRYPTED] " to trick people into thinking the channel is indeed encrypted :stuck_out_tongue:

i remember weechat-otr had this discussion too, using colors instead. they went with the status bar. i guess something simpler can be done, like prepending an unicode character to the nickname? that way you know which people is sending encrypted text, the unicode character can't be used on a nickname and it's only done locally

fauno avatar May 15 '16 15:05 fauno

Wouldnt a [UNENCRYPTED] tag be desplayed in the beggining of the message though?

Even so it may be the case that such an "attack" might be utilized in an obscure way.

I dont know much abou weechat plugins but maybe we could chang the colour of the participants in the user lists on the right. Yellow for users that have not joined that chat and green for those that have. Maybe red for all the usernames if the user herself hasnt joined the chat?

Mandragorian avatar May 15 '16 17:05 Mandragorian

I agree that the [ENCRYPTED] indicator sucks. It was a hacky solution till someone comes up with a better one. It also doesn't show whether your own messages are encrypted or not.

I think the short-term thing to do here would be to see how weechat-otr uses status bars and colors to indicate OTR status, and just copy that code for now. The unicode nickname might also be a good idea but it might confuse people.

With regards to coloring the user list, I think that would be a great idea, but I'm not sure if it's even doable :) The captain knows who is in the room, but no one else does :) Please see https://github.com/asn-the-goblin-slayer/viola/blob/master/viola_spec.txt#L384 for a short description of the problem. I should spend some time thinking of a crypto solution to this problem, so that the captain can't fake a room participant list.

In any case, I'll take any good patches that improve the current viola indicator UI.

peace

asn-d6 avatar May 15 '16 19:05 asn-d6

i just tried something... encrypted messages are marked in a way you can fake. an unicode symbol is added to the nickname, so weechat prints it like this:

unencrypted messages are displayed normally.

i'm not sure how to do it for local messages, i think it'd require a new hook that modifies the string weechat is going to print.

fauno avatar May 22 '16 04:05 fauno

i'd use the :lock: unicode, but it didn't print on my terminal

fauno avatar May 22 '16 04:05 fauno

Yes, ideally a solution here would also work for local messages. This will require some weechat wizardry to work...

I asked around on #weechat in freenode, and they told me to look at how the colorize_nicks plugin do it...

asn-d6 avatar May 25 '16 20:05 asn-d6