IRC scripts or invitations to run software programs, including the IRC client software, can have “malicious software” installed within. “Malicious software” not only includes Trojan horses, viruses, worms or intended and unintended backdoors, but also hardcoded messages revealing SOURCE, HOST, and other seemingly “harmless” info.
This blog article covers setting up XChat for using Tor with Freenode on Backtrack 5R1.
Setup Tor and Privoxy
If you haven’t set up a user account on your brand spanking new Backtrack yet, now is the time. Login to your machine as your non-root user.
Change the torrc file
Mapaddress will allow you to make sure every connection to a given IRC site goes through the same connection.
Find a pointer to the Tor hidden service in freenode.net DNS, in an unresolved CNAME record, irc.tor.freenode.net, which can be retrieved via the console command:
$ dig +short irc.tor.freenode.net cname
Use vi or gedit to open the torrc file and add the freenode mapaddress.
$ sudo vi /etc/tor/torrc
Append by typing A (shift a) and add mapaddress 10.40.40.40 p4fsi4ockecnea7l.onion at the bottom of the file:
Change mode by pressing Esc, save file and exit with :wq or ZZ
Restart Tor service in your console window:
$ sudo /etc/init.d/tor restart
$ sudo apt-get install xchat
Set up a nick with Freenode
Open XChat from your menu –> Internet
Check the box “Skip network list on startup”.
Choose a username (Pick a good one. Not one you are already using elsewhere, unless that is a separate identity you already kept private and doesn’t contain information on your real life).
Then select Freenode from the serverlist and connect. Register your password (without  brackets) in the input field at the bottom of the window that pops up:
/msg nickserv register [password]
The email address that you select will not be given out by staff, and is mainly used to allow us to help you recover the account in the event that you forget your password. For this reason, you are required to use a real, non-disposable, email address. Upon registering, you will receive an email with a verification command that you will need to run to complete the registration process. Failure to verify the account will cause it to be automatically dropped after about 24 hours.
Check that hidemail is on:
/msg nickserv set hidemail on
Configure XChat proxy
Open XChat and go to Settings -> Preferences -> Network -> Network setup -> Proxy server and enter
Use proxy for: IRC Server Only
Configure a new server
Set up the new “TorifiedFreenode” server in the serverlist of XChat:
Set up sasl authentication
Download the CAP_SASL script cap_sasl_xchat.pl (save as …). Then place the script in the ~/.xchat2 directory. Make it executable.
Open XChat and go to Window -> Plugins and Scripts and check that it is loaded. If not, in the window that pops up click “Load”. Go to the .xchat2 directory and select the cap_sasl_xchat.pl file. Click “OK”. It should now be listed in Window -> Plugins & Scripts
In the status window type:
You should get this response:
SASL: usage: /sasl set <net> <user> <password or keyfile> <mechanism>
Next, enter below command to use SASL with “TorifiedFreenode” (which has the p4fsi4ockecnea7l.onion IRC server) entry, use nick and password which you use with Tor (without  brackets):
/sasl set TorifiedFreenode [your_Freenode_Nickname] [your_Nick_password] PLAIN
Block CTCP, DCC commands and inquiries sent toward your IRC client software:
/ignore *!*@* CTCP DCC /ignore * CTCP DCC
Configure the following internal variables:
/set irc_hide_version ON /set dcc_auto_chat 0 /set dcc_auto_resume OFF /set dcc_auto_send 0
You can now start up XChat and select your “TorifiedFreenode
” network from the list, and click “Connect” on the lower-right. This will attempt to connect to “
10.40.40.40” through your Tor proxy, and present the cached SASL auth to Freenode when it connects.
- You can follow any responses to this entry through the RSS 2.0 feed.
- Both comments and pings are currently closed.