[Bug 1456778] [NEW] default configuration for irc clients should use ssl servers
David Monniaux
1456778 at bugs.launchpad.net
Tue May 19 19:32:10 UTC 2015
Public bug reported:
Ubuntu 14.04.2 LTS irssi 0.8.15-5ubuntu3
irssi installs a default list of IRC networks and servers, all using
unencrypted communications. This allows eavesdropping, e.g. if people
access the Internet from an insecure wifi connection. This allows
eavesdroppers to record conversations and nickserv passwords and
possibly to impersonate the legitimate users.
Many of these networks (e.g. OFTC, Freenode) now provide SSL servers.
They should be configured in the default irssi configuration file that
is installed if the user has none.
** Affects: irssi (Ubuntu)
Importance: Undecided
Status: New
--
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to irssi in Ubuntu.
https://bugs.launchpad.net/bugs/1456778
Title:
default configuration for irc clients should use ssl servers
Status in irssi package in Ubuntu:
New
Bug description:
Ubuntu 14.04.2 LTS irssi 0.8.15-5ubuntu3
irssi installs a default list of IRC networks and servers, all using
unencrypted communications. This allows eavesdropping, e.g. if people
access the Internet from an insecure wifi connection. This allows
eavesdroppers to record conversations and nickserv passwords and
possibly to impersonate the legitimate users.
Many of these networks (e.g. OFTC, Freenode) now provide SSL servers.
They should be configured in the default irssi configuration file that
is installed if the user has none.
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/irssi/+bug/1456778/+subscriptions
More information about the foundations-bugs
mailing list