Difference between revisions of "SSL CA import instructions"
From Chat4AllFAQ
m |
m |
||
| Line 4: | Line 4: | ||
#Download the CA certificate from [http://www.chat4all.net/ our website]. | #Download the CA certificate from [http://www.chat4all.net/ our website]. | ||
#Save it somewhere you can easily find it. 'My Documents' or the mIRC directory are good options. | #Save it somewhere you can easily find it. 'My Documents' or the mIRC directory are good options. | ||
| − | #If you are already using a trusted authorities file for one or more different networks, then you need to [[# | + | #If you are already using a trusted authorities file for one or more different networks, then you need to [[#Append_CAs_in_Windows|append the downloaded certificate]] to the existing trusted authorities file. If you need a reminder on where this file is located; the trusted authorities button has the path in it. |
#Within mIRC, go to: ''Tools'' > ''Options'', then in the left list navigate to ''Connect'' > ''Options''. | #Within mIRC, go to: ''Tools'' > ''Options'', then in the left list navigate to ''Connect'' > ''Options''. | ||
#Provided you have installed SSL as described above, there should be an SSL button here. Click that | #Provided you have installed SSL as described above, there should be an SSL button here. Click that | ||
| Line 14: | Line 14: | ||
#This will probably mention "%h/ssl/CAs.pem", which means it's stored in ssl/CAs.pem in the weechat homedir (~/.weechat by default) | #This will probably mention "%h/ssl/CAs.pem", which means it's stored in ssl/CAs.pem in the weechat homedir (~/.weechat by default) | ||
#Download the certificate | #Download the certificate | ||
| − | #Save it in ~/.weechat/ssl/CAs.pem or [[# | + | #Save it in ~/.weechat/ssl/CAs.pem or [[#Append_CAs_in_Linux|append it to this file]] |
#Set the ssl_verify option for your Chat4All server entry to "on": | #Set the ssl_verify option for your Chat4All server entry to "on": | ||
/set irc.server.Chat4All.ssl_verify on | /set irc.server.Chat4All.ssl_verify on | ||
| Line 21: | Line 21: | ||
You might find some more instructions in this [http://dev.weechat.org/post/2009/12/01/SSL-certificates SSL post at weechat.org] | You might find some more instructions in this [http://dev.weechat.org/post/2009/12/01/SSL-certificates SSL post at weechat.org] | ||
| − | =Append CAs Windows= | + | =Append CAs in Windows= |
If you have CAs from other networks (like Freenode), you can append our Certificate Authority Certificate to the existing file. | If you have CAs from other networks (like Freenode), you can append our Certificate Authority Certificate to the existing file. | ||
| Line 28: | Line 28: | ||
#Save the trusted authorities file. | #Save the trusted authorities file. | ||
| − | =Append CAs Linux= | + | =Append CAs in Linux= |
If you have CAs from other networks (like Freenode), you can append our CA Certificate to the existing file. | If you have CAs from other networks (like Freenode), you can append our CA Certificate to the existing file. | ||
Revision as of 19:22, 27 September 2010
This article describes in detail how you can import our Certificate Authority Certificate into your IRC client. If the client you are using is not listed, please contact us in #help and we'll see if we can find out how to import it for you.
mIRC
- Download the CA certificate from our website.
- Save it somewhere you can easily find it. 'My Documents' or the mIRC directory are good options.
- If you are already using a trusted authorities file for one or more different networks, then you need to append the downloaded certificate to the existing trusted authorities file. If you need a reminder on where this file is located; the trusted authorities button has the path in it.
- Within mIRC, go to: Tools > Options, then in the left list navigate to Connect > Options.
- Provided you have installed SSL as described above, there should be an SSL button here. Click that
- Click on the empty button under 'Trusted authorities file'.
- Select the file you downloaded, and you are done. A reload of mIRC is not required; you should be able to connect.
weechat
- Locate your current trusted authorities file in weechat: /set weechat.network.gnutls_ca_file
- This will probably mention "%h/ssl/CAs.pem", which means it's stored in ssl/CAs.pem in the weechat homedir (~/.weechat by default)
- Download the certificate
- Save it in ~/.weechat/ssl/CAs.pem or append it to this file
- Set the ssl_verify option for your Chat4All server entry to "on":
/set irc.server.Chat4All.ssl_verify on
Now you should be able to connect to our SSL enabled ports without problems. You might need to restart your weechat before it uses the new certificates authorities file.
You might find some more instructions in this SSL post at weechat.org
Append CAs in Windows
If you have CAs from other networks (like Freenode), you can append our Certificate Authority Certificate to the existing file.
- Open our CA certificate in a text editor such as Notepad and copy the contents.
- Open the existing trusted authorities file in another text editor and paste our copied CA certificate at the top of the file.
- Save the trusted authorities file.
Append CAs in Linux
If you have CAs from other networks (like Freenode), you can append our CA Certificate to the existing file.
Assume our CA certificate is called ca.cert.pem, the existing trusted certificate authorities file is called CAs.pem and they are both in the same directory.
Execute the following commands:
#Backup the current trusted certificate authorities cp CAs.pem CAs.pem.backup
#Concatenate our certificate into the existing trusted certificates authorities cat ca.cert.pem >> CAs.pem
