Thursday, January 9, 2014

by Dave Thomas
Recently my good friend John posted a tutorial on how to use Pidgin with OTR in order to completely encrypt your Instant Messages. Which is essential if you're concerned about the government reading your chatlogs. However, is Pidgin with OTR really worth it if you're just an average user, not concerned with security as much as you are with ease of access? In my opinion, while Pidgin does offer several advantages over the native chats clients it aims to replace, it can be a bit of a bear to customize and certainly wont be replacing Skype anytime soon.
Pidgin is, by far the best replacement I've found for Facebooks chat client, which is a horrible monster that eats RAM and generally sucks. Pidgin is smaller, easy to set up and efficient. It also works with Bonjour, AIM, Jabber and all other manner of chat servers. The OTR pluggin, which allows for you to encrypt all your chats over XMPP, the protocol used by Facebook and Jabber to name a few, is easy and quick to install and works completely on its own with very little effort. As long as you and the person you're talking to both have OTR installed it'll run all the encryption automatically and you don't have to touch anything. Even someone who doesn't necessarily know how to use a computer to its fullest potential should be able to install and use Pidgin and OTR with little to no help, making it the most user friendly encrypted chat client I've ever seen, on top if his, the ability for it to work over Facebook makes it accessible to anyone who has an account, meaning your grandma, your parents and whoever else can use it without having to make any accounts or fumble with any encryption keys.
Speaking of grandmas, Pidgin does look like something you'd find on your granny's Windows '98 machine. It's ugly. And while it's possible to make it less ugly (Note I didn't say attractive) with minimal effort, it's more than your average user would want to do, or even know how to go about doing. The tutorial on Pidgin's website is clear enough, but I personally still jacked it up three times before I got it working; I don't know if that's a testament to my inability to follow directions or the tutorial isn't good. Further, the API that is was used to create Pidgin's GUI is the same API used to create most of the dialogue boxes for all manner of free software, Deluge, GIMP, ect. So changing the design of Pidgin has a some weird effects on those, such as altering the fonts.
Personally I like Pidgin with OTR, sure it's not going to be killing Skype anytime soon, but it is a nice alternative to the chat clients out there today and it's good for consolidating various services to one central location. OTR is much easier to set up than encrypted email or something like that, and it's capable of encrypting on sites you almost definitely already are a part of. Overall it's very simple and easy to configure and I would recommend it to anyone, not just people looking for a good encrypted chat client, but to anyone who wants an easier, better way to manage all their chats in one client.~


at No comments:

Tuesday, January 7, 2014

Hello and welcome to techplus your place for tech plus new. This tutorial is going to be centered around encrypted instant messaging. We are going to show you how to sign up for a XMPP service (like jabber). Install the IM client pidgin, and the OTR (off-the-record messaging) plugin. So that you can start having secure communications with your peers. This tutorial is for Windows 7 if you are on Linux check out riseup.net's tutorial on OTR https://www.riseup.net/en/otr#introduction-to-otr.

First we have to make a jabber account. Due to migrating databases register.jabber.org isn't allowing new account registration at the time of this tutorial so we are going to make our accounts on http://www.jabber.co.nz/about/ https://wtfismyip.com/jabber/register Make sure you remember your username and password because you will need it!

UPDATE 01/9/2014 5:07PM: Lately me and Dave have been experiencing trouble connecting to jabber.co.nz and for this reason will likely be moving to a different XMPP server. If you experience trouble try to find another server yourself. Here is a list https://list.jabber.at/ our recommendations will follow shortly.

UPDATE 01/10/2014 9:22PM: We've decided on a jabber server that works for us and amended the tutorial to reflect that. wtfismyip has an US based jabber server (which you can also connect to via their hidden service, if you don't know what that is we'll discuss that at a later date) that appears more stable than jabber.co.nz. The picture below has been changed to reflect this decision.


https://wtfismyip.com/jabber/register
This picture was originally - http://imgur.com/WPRHAy1

second we are going to download pidgen https://pidgin.im/ just click "download now" and it should redirect you to the sourceforge download page. Once you have it downloaded go ahead and install it. Make sure you install it as an administrator (if you don't know if you are logged in as admin just right click the .exe and click "run as administrator." You need to do this because the OTR plugin seems to need administrative privilages to work and won't see that you have pidgin install otherwise.

https://pidgin.im/

Thirdly we are going to download and install the OTR plugin. Off-the-record messaging is the encryption plugin that will allow you to have secure conversations. Go to https://otr.cypherpunks.ca/ and click "Win32 installer for pidgin-otr" at the bottom. Then install it. If you did everything above correctly then we should be ready to go!

https://otr.cypherpunks.ca/

Start up pidgin and add your account. The options are pretty self explanatory as mentioned above we are using XMPP as the protocol so just use jabber.co.nz wtfismyip.com as the Domain and make sure your username and password are correct 
Once you've successfully logged into your account go into tools > Plugins and check "Off-the-Record Messaging"



Now you have to get one of your friends to follow all the steps you just followed and then you can begin chatting with them securely. To add your friend go to Buddies > Add Buddy. Then type in their username@jabber.co.nz username@wtfismyip.com (or whatever XMPP server they're using) also make sure to type in an alias because otherwise you will see a large string of numbers after their name. Now click Add.


Now you can start chatting with your friend over OTR just right click their name and click IM or double click their name. If both of you have it configured correctly it should start automatically. Happy chatting!



If you have any problems contact us at techplus1010@gmail.com

~ John Martinez
at No comments:
  It's that time of year again, CES 2014 is in full swing and as usual, the casual user and enthusiast alike have things to be excited for. One of the more interesting products discussed at CES this year was Samsung's new “Smart Home” service. This new service will allow you to control and monitor your home from anywhere via a single app. The service is slated for launch sometime in the first part of this year will be compatible with a variety of to-be-announced third party devices, and will initially feature three key components: Device Control, Smart Customer Service, and Home View.

 
    Device control aims to... well give you control of your devices, which is nothing impressive, or is it? What makes Device control unique is the manner in which you can control your devices; through a central application on your smart TV, smart phone, or, God forbid, your smart watch. According to Samsung you'll be able to control your appliances, lighting, and who knows what else via a single application that spans across all of Samsung's smart devices. One interesting feature of this is the ability to give your house voice commands; you can literally tell your house you're going to sleep and your house will adjust lighting and such accordingly, which is pretty impressive. Presumably the app will be fully customizable, so users can designate any number of personalized presets.
    Smart Customer Service is a feature I found really interesting. Basically it syncs all your devices to the central app and tells you whenever one of the devices needs maintenance. Further it will also inform users when you run low on “Consumables” (Food, drink, toiletries?). This is a relatively simple feature, but super handy.
    Home View, the third feature of Smart Home will allow users access to cameras in various devices in the their home. With this you will be able to observe your home, live from anywhere in the world.
    Smart Home is indeed very innovative, but I for one am not going to be jumping on the Internet of Things bandwagon any time soon. Call me old fashioned, but I find it discomforting that a single application could have so much power over literally everything I own. What if I lose my phone or my smart watch, does that mean anyone who finds it will have access to the control center for my entire home, and worse yet, cameras that can be activated remotely. What's more, how do I know that I'm the only person with access to my controls? What is the government was to to subpena Samsung for access to those cameras or the controls of my home? What's to stop some Fourteen-year-old blackhat from hacking into my fridge?
    Long story short, I'm not going to be jumping at the chance to turn my house into an all consuming Samsung botnet until I see some more information in the coming weeks and months. I want to know what measures Samsung has gone through to make Smart Home tamper proof; what they have done to protect my home from outside interference, because while having full control of your home from a single app is cool, having someone else control your house from a single app is 100% less cool.~ 
at No comments:
Subscribe to: Posts (Atom)