tiny icon indicating copy to clipboard operation
tiny copied to clipboard
verified publisher icon osa1

IRC over Tor

Open ghost opened this issue 3 years ago • 10 comments

Hey, I tried to connect to the OFTC IRC onion site. I disabled tls, placed the onion link in the addr and used torsocks with tiny, but it couldn't connect. I would like to know if there's something that I'm missing. Thanks!

ghost avatar Dec 18 '22 14:12 ghost

I don't know anything about tor. If you share instructions to reproduce the issue maybe I or someone else can debug this.

osa1 avatar Dec 18 '22 15:12 osa1

Would also be helpful to know if this is working with irssi or weechat, to rule out the OFTC onion link not working.

trevarj avatar Dec 18 '22 18:12 trevarj

I don't know anything about tor. If you share instructions to reproduce the issue maybe I or someone else can debug this.

I just placed the onion link on the addr and executed tiny with torsocks. I used 'torsocks tiny oftc'.

ghost avatar Dec 18 '22 19:12 ghost

I tried on weechat and couldn't connect, I'm trying to reach the OFTC support.

ghost avatar Dec 18 '22 19:12 ghost

Also, is the pull request for SASL EXTERNAL going to be merged? Some services like libera only allow onion connections with certificates.

ghost avatar Dec 18 '22 19:12 ghost

It seems that the only way to connect to an onion server is using socat and connecting to it through irssi, probably weechat also.

ghost avatar Dec 18 '22 20:12 ghost

Also, is the pull request for SASL EXTERNAL going to be merged? Some services like libera only allow onion connections with certificates.

I fixed the conflicts on the SASL EXTERNAL PR : https://github.com/osa1/tiny/pull/363 It would be helpful if you could try out that branch and let me know if it's working for you.

trevarj avatar Dec 18 '22 20:12 trevarj

Hey, sorry for the delay. Does tiny have any proxy configuration option? I used the Libera Guide on Tor, mapped the address, configured the SASL EXTERNAL and changed in the address from irc.libera.chat to palladium.libera.chat. The only missing thing is configure tiny to use Tor SOCKS proxy. I tried torsocks, but it did not succeed. The error:

1673783575 ERROR torsocks[7558]: Unable to resolve. Status reply: 4 (in socks5_recv_resolve_reply() at socks5.c:677)

Also, I tried OFTC normal and it connects, but the onion site can't be found by tiny.

ghost avatar Jan 15 '23 11:01 ghost

@marshallishere no, there is no config for SOCKS in tiny.

From the docs:

Some clients lack SOCKS4a or later support. In this case you will need to change your torrc file to map a private IP address to the onion service address instead and disable TLS hostname verification in your client.

but we don't allow disabling TLS hostname verification in tiny (dangerous), so I doubt getting IRC over TOR will work.

If you are feeling dangerous, you could modify the TLS config in https://github.com/osa1/tiny/blob/25447939fc8098faa6532e0e45e39b947ff67352/crates/libtiny_client/src/stream.rs#L49 and might be able to get it to work.

trevarj avatar Jan 15 '23 12:01 trevarj

but we don't allow disabling TLS hostname verification in tiny (dangerous), so I doubt getting IRC over TOR will work.

On Tor or I2P you don't need to have TLS because the tunnel is already encrypted.

ghost avatar Jan 15 '23 12:01 ghost