// update file // Mircryption Updater .update file (first line of file should be a // comment) @info $LABEL LATEST MIRCRYPTION NEWS $MIRCVERSIONVAR %mc_updatenews_version $SETMIRCVAR %mc_updatenews_version $INSTALLNOVERSION #4.0 January 26, 2006 For the first time since its release in 2001, mircryption is having to release a security fix. Thanks to ircfuz and www.rainbowcrack-online.com, it was determined that an evil server can case mircryption to crash the irc client through a *buffer overflow*, which could also potentially be used to inject code into the process space. This attack cannot be conducted by a normal user and requires a compromised irc server, but we still consider this a serious risk and ALL mircryption users should upgrade immediately. Security Issue first reported to us on 1/27/06. Fix released on same day 1/27/06. #3.1 January 10, 2005 Major New Feature: Mircryption now supports (optionally) using Blowfish in CBC mode (Cipher Block Chaining), a more secure encryption method. Bonus secret special file for mircryption update users -> http://mircryption.sourceforge.net/Beta/AbuGhareb_ForAFewDollarsMore.mp3 #2.0 Novemeber 24, 2003 Hadez wrote a small script to have xchat mircryption autoset your master pass, see webpage. #1.9 September 26, 2003 new version of updater being tested part3(!). Hopefully this is final test. @ENDENTRY @mircryption.mrc $LABEL mircryption.mrc - main mircryption script $MIRCVERSIONVAR %mc_scriptversion #1.19.01 added variable to disable space-to-160 conversions (set %mc_multispacefix to no) fixed minor bug on line 2654 referencing $ename should have been %ename - thanks Cham now %mc_uniqueserverkeys = yes will ADD network prefixes to ensure uniqueness between servers when using mirc multiserve added ability to explicitly alias or dealias channel names, just set %mc_cnamealias_#CHANNAME #CHANNAMEALIAS nick tracking is now disabled by default #1.17.01 added variable for using different keys on different servers (do /set %mc_uniqueserverkeys yes) #1.15.01 For the first time since its release in 2001, mircryption is having to release a security fix. Thanks to ircfuz and www.rainbowcrack-online.com, it was determined that an evil server can case mircryption to crash the irc client through a *buffer overflow*, which could also potentially be used to inject code into the process space. This attack cannot be conducted by a normal user and requires a compromised irc server, but we still consider this a serious risk and ALL mircryption users should upgrade immediately. Security Issue first reported to us on 1/27/06. Fix released on same day 1/27/06. A redundant fix is being released, both in the shared library (.dll/.so), and in the mirc script. #1.13.00 adding ` to server separator list added switch for disabling stripping of server prefix (makes each added option %mc_cleansignal (set to yes to strip colors and change asc(160) to asc(32) before mircryptionsignalall trigger #1.11.29 mircryption now uses +OK style encryption for TOPICS if the user is set to use +OK mode in the channel. #1.11.27 new setup packages released; versions updated to match. #1.11.26 simpleexports dll functions were calling free instead of delete, thx drgreen #1.11.25 added flag %mc_enablenickcolorown (set to yes to enable nick coloring rules on your own typed text) #1.11.24 fix for bad version reporting #1.11.23 fish +OK topics now decrypted and announced on join (thx mistert) minor fixes #1.11.18 minor bug fixes (mirc complained about syntax error for some ungodly reason) #1.11.14 added new variable to disable nick coloring based on nicklist, just do '/set %mc_disablenickcolor yes' #1.11.13 now encrypted/decrypted text fully supports all coloring options from address book (alt+b) #1.11.12 fixed error in decrypting fish actions introduced in last version (error was "* Too many parameters: $right (line 758,..") #1.11.11 decryption now obeys nick coloring options from alt+b address book #1.11.10 added variable %mc_dontfixtitlebars for users who want to disable titlebar fixups (useful for slow machines?) set to yes to disable #1.11.09 fixed meow advert falsely reporting that people had old versions #1.11.07 fixed bug where using /me 'messageToSkipEncryption was sending text as non-action #1.11.06 made /etopic script-compatible with /topic (ie if you call /etopic #chan topic to set it wont warn of nocrypt, and /etopic #chan will display topic) running /topic #chan now properly decrytps topics #1.11.04 support function ($gotmircryptioncbc) for use with new cbc-enabled dh exchange #1.11.03 new commands (and menu items) for updating a window key to/from cbc (/mcbcup and /mcbcdown) #1.11.01 major new feature: cbc mode encryption (prefix keys with 'cbc:' diacritical bug in xchat fixed. #1.10.15 no more replies to ctcp by default - use your own ctcp reply function in a separate script if you want to reply to them #1.10.13 rearranged menu a bit FUCK BUSH #1.10.12 rearranged migration submenu channel name used in backlog decryptpad now shown on titlebar #1.10.11 from mircryption -> more commands menu, there is a new backlog decryptor - just paste a bunch of mcps ... lines and it will decrypt them #1.10.10 small typo caused mirc error in versions 6.16 and up #1.10.09 the reverse character (used for temporary disabling/enabling encryption for a statement) was broken on last update - sorry. #1.10.07 the "%mc_takeovernormal yes" setting was not properly showing the nicks of actions. #1.10.06 %mc_nonickbrackets can be used to remove <> around nicks when using "%mc_nonickbrackets yes" setting. #1.10.04 the "%mc_takeovernormal yes" setting was not properly indenting incoming text. takeover mode was not properly displaying plaintext notices. #1.10.02 meows in private pm query windows were not being replied to and were being reported as illegal. #1.10.01 fixed harmless syntax error introduced in last updated at line 1372 @ENDENTRY @mcboard.mrc $LABEL mcboard.mrc - news board client script $MIRCVERSIONVAR %mcb_scriptversion #1.09.07 added support for using cbc style keys with news board; you need this update iff you want to use cbc style keys with news board. #1.09.05 The newsboard was not checking for lines > 850 characters, which can cause mirc to crash a script and send text without encrypting it. This is a security risk if you try to add something to news > 850 characters or so. Important update. #1.09.03 Attempt to fix a multiserv issue where bot would not respond to you if you on multiserv. #1.09.02 Another fix for use with mcupdater helper script - version shown in update dialog if appropriate #1.09.01 Small fixes to make news board client more compatible with new updater. @ENDENTRY @mpgp.mrc $LABEL mpgp.mrc - mircryption pgp addon script $MIRCVERSIONVAR %mpgp_scriptversion #1.09.03 fixed bug naming .dll file - could cause problems if you have a . in your directory path to mircryption. #1.09.02 another fix for use with mcupdater helper script - version shown in update dialog if appropriate #1.09.01 Small fixes to make addon more compatible with new updater. @ENDENTRY //@mcpsFishDH.mrc //$LABEL mcpsFishDH.mrc - fish key exchange script //$MIRCVERSIONVAR %mc_sinnerdhversion //#1.00.08 //added support for cbc exchange if both client support it, and improved version reporting //@ENDENTRY @mcupdater.mrc $LABEL mcupdater.mrc - mircryption updater script $MIRCVERSIONVAR %mcu_scriptversion $EXCLUSIVE #1.09.36 after the updater updates itself, it was trying to redownload other files it had just updated. #1.09.34 updater now properly detects very old versions of mircryption (ie 1.0b7) and identifies them as needing update #1.09.33 fixed bug when downloading files not yet on users system. #1.09.32 when no files are found to update, you are shown your current verions. added /mcupdated (debug mode update) command to show all entries checked in update. #1.09.31 updater info news was only displaying the most recent news item, even if older items were not yet read #1.09.30 updater was causing the change passphrase dialog to pop-up on updating of .exe/.chm files due to improper calling of file-date touching dll function. @ENDENTRY @mircryption.dll $LABEL mircryption.dll - mircryption core dll $MIRCVERSIONVAR %mc_dllversion $NOTESINSTALL *After updating mircryption.dll you may be prompted to re-enter your master passphrase - this is normal. #1.15.01 Security release - fixes a potential buffer overflow that could be caused by a malicious server (not normal user). #1.11.02 some cbc decrypting bugs fixed #1.11.01 major new feature: cbc mode encryption (prefix keys with 'cbc:' #1.09.05 fixed a bug that was causing lots of 'magicid' keys (used internally to detect successfully master pass unlocking) in your keyfile; this fix will clean them and stop the problem. #1.09.04 added code to check for duplicate channel names when importing old keyfiles fixed lowercasifying of channel names in keyfile - could lead to errors when importing old keyfiles #1.09.03 a small fixe to work better with updater please note that the 1.09.03 upgrade may require you to restart your mirc (shouldnt happen with future versions). #1.09.02 added a file touch function to work with updater @ENDENTRY @MircryptedFileViewer.exe $LABEL MircryptedFileViewer.exe - Encrypted Log Viewer $FILETODATE MircryptedFileViewer.exe $NOTESINSTALL *PLEASE CLOSE THE LOG VIEWER BEFORE UPDATE IF IT IS OPEN #1043407514 latest Encrypted Log Viewer @ENDENTRY //@MircryptionSuite.chm //$LABEL MircryptionSuite.chm - Mircryption Suite Help File //$FILETODATE MircryptionSuite.chm //$NOTESINSTALL *PLEASE CLOSE THE MIRCRYPTION HELP FILE IF IT IS OPEN //#1048500653 //Lastest help updates //@ENDENTRY @MPgp.dll $LABEL mpgp.dll - mircryption pgp addon dll $FILETODATE MPgp.dll #1030334619 latest mpgp.dll @ENDENTRY @END