PM Encryption v 1.0.0

As requested by Sully02, here: https://vborg.vbsupport.ru/showthread.php?p=636780#post636780
This nifty little hack encrypts your user's (and your), PMs when sent, and unencrypts them when they are read :)!
It also supports the downloading of the PMS, all PMs downloaded will be unencrypted.

Creator: Deaths
Live Demo: Theres nothing to see.
Screenshots: Nothing to see.
Support is in this thread, and preferably at vBadditions.com

I have included an Installer, which will encrypt all previously sent PMs!

Tested on 3.0.7, should work with all 3.0.x's.

Stats:
Files to Edits: 1
New Files: 0
Templates to edit: 0
Templates to add: 0
Dont underestimate this hack though, its not a mini-mod ;).

Follow the instructions in the install file, and everything should go just fine :).

Todo list:

Your suggestions.

There is no hack attached.

Lol, you're very fast ^^.

I still needed to get the threadid, for the "Click Install" link in the file ;)

Hi - what is the use in this hack? I can only think.. to stop admins using the "Read Your Users PMs" hack, or people with access to the database reading people PMs.

But it uses Base64. This is not encryption. It is encoding - ANYONE can decrypt base64 things - base64_decode(message) in php, $base64(message.txt) in mIRC.

This was requested by a member, so I created it.

And if you dont know this is base64, you can't decode it ;)

maybe... just prevent lamers admin to read pms ;)

Nice idea this hack, you can increase protection using your algo to crypt and to decrypt messages (instead using base64).

like

function cryptalgo($message) {
// blah blah
return $cryptedmessage
}


and..

function decryptalgo($cryptedmessage) {
// halb halb
return $message
}


etc..

I was thinki9ng about this myself, It would be better off to use mycrypt providing it is installed with your php.

Hmm, good idea.

I'll look into that, together with some other suggestions.

Hi - what is the use in this hack? I can only think.. to stop admins using the "Read Your Users PMs" hack, or people with access to the database reading people PMs.

But it uses Base64. This is not encryption. It is encoding - ANYONE can decrypt base64 things - base64_decode(message) in php, $base64(message.txt) in mIRC.Correct, using a base64_encode is NOT encrypting message. It is just used to create a binairy safe representation of a string.

Anybody can decode it. This will not protect private message from being read. The only way you could protect private messages would be to first exchange a private key, then use that to encrypt your PM's with someone.

http://us3.php.net/manual/en/ref.mcrypt.php :)

Zach, it does not matter which type you use. Whatever is used to has to translate the message back into plaintext, thus there is no point to this hack whatsoever.

Zach, it does not matter which type you use. Whatever is used to has to translate the message back into plaintext, thus there is no point to this hack whatsoever.
You could store the key and the encryption type in the database or in a file somewhere. Or even make it an extra option for two users to create their own keys to be shared with eachother.

Its more than possible to encrypt them so an external source who may gain access to your database will not be able to read their contents.

How is a user going to tell which encryption (or whatever you want to call it) you're using?

Ofcourse, anyone can translate it back, else this hack wouldn't even be possible.

How is a user going to tell which encryption (or whatever you want to call it) you're using?

Ofcourse, anyone can translate it back, else this hack wouldn't even be possible.
I didn't say it was easy, just possible.

@Zach thats a very nice guide, but users would need to install it first, wouldn't they?

EDIT I'm too slow today :/

I was replying to Trigunflame's post, but you just reply too fast :)

You could store the key and the encryption type in the database or in a file somewhere. Or even make it an extra option for two users to create their own keys to be shared with eachother.

Its more than possible to encrypt them so an external source who may gain access to your database will not be able to read their contents.

That's my point. If a person got access to the db, what is to prevent them from using the key itself.

All they would have to do is try different variations of encryptions, and arragements of the keys in relation to the data encrypted.

Whats worse, if they were a member at vbulletin.org, they will Know the arrangement of the keys, just by viewing this hack.

That's my point. If a person got access to the db, what is to prevent them from using the key itself.
Like I said, It does not need to be stored in the database. I would assume if someone needs something like that encrypted they will give the second user the key so they can decrypt it.

But would the user installing this hack also need to install Mcrypt, or did I just read that wrong?

But would the user installing this hack also need to install Mcrypt, or did I just read that wrong?

Mcrypt is compiled in most installations on *Nix.

And yes they would need it... however, there is no point to it. If you did use a key encryption, I would do it somewhat like;

encryption(plaintext password . PMData . passwordHashinVbulletin)

there has to be some form of user input, or they would be no point; as zach mentioned.

Hmm, I see.

Well, there is no real way of "encripting" something, and hiding it from the public, but still making it readable after that.
At least not in PHP.

Or am I wrong?

and use a JavaScript (client side) on the fly decryption?
I think something like a public and private password: RSA?

public password is stored in database, so anyone can crypt the message using adressee public pass.

When the message is ready to be decrypted and the user open it, a javascript prompt ask him the private password.
Then a function will decrypt client side the crypted message.

maybe... just prevent lamers admin to read pms

That made a whole lot of sense right there... seeing how the admin would have to install this in the first place to prevent himself, the lame admin, from reading pms... uh huh

Store the key in config.php and make it global.

One thing I found after testing this out...

The encryption works for storing it in the database, but when you reply to a private message, the text in the quote box is the encrypted message.

Edit - Removed quote so as not to confuse posters... I'm so used to the quote not showing up by default on my board.

Another thing I notice... When it quotes a previous PM in a reply, it has trouble parsing the apostorphes... They show up, but they are preceded by several slashes. I assume that's a side effect of the encoding.

Yes, the quoting is a pain in the ass.

If you'd want that to go away, there would be a number of additional edits in functions_newpost.php, and functions_bbcodeparse.php :/

I think PM encryption is one of the things that jellsoft may have thought about and decided it is pointless. If someone has access to your database they could do far worse than read private messages. Unless obviously it is the Administrator, But he/she could easily read the 'encrypted' message if they so desired.

If a user recieves a private/personal message they could always download it and delete the message. (Is the row in the database removed when the recipient and sender delete the message?).

Privacy depends on what your forum is about. For example if your userbase was largely under 13 years old and there were a few 40-50 year old males on your board then it may be prudent to actually check or screen messages. Obviously that is a stereotypical example and I am not saying that all 40-50 males are seedy... Rather it would be odd if they were on a board dominated by younger people.

Anyway it is a good idea though not really that useful...

Privacy depends on what your forum is about. For example if your userbase was largely under 13 years old and there were a few 40-50 year old males on your board then it may be prudent to actually check or screen messages. Obviously that is a stereotypical example and I am not saying that all 40-50 males are seedy... Rather it would be odd if they were on a board dominated by younger people.

your're right, of course.. and..

Privacy depends on what your forum is about.

But this is a coder forum and we like to talk about algos, vb coding technics and beer! :D
(not enought women around here... http://www.wellage.net/images/smilies/ehm.gif)

Haha, that last comment really made me laugh :D

I'm kinda lost on the point of this...

Is it to stop admins from reading pms?

Couldn't they just login as you? there's enough hacks to do that already..

It's different..

An admin with informatic skills and with an innocent mind would like to protect users against another bad admin..

A solution for that is to don't store the key to decrypt..

The hack encodes the PM's, and decodes them when received.

It has no real logic, but it was requested by a member, so I created it.

I believe he gave an explenation why he found it usefull, check the thread out. (link in first poist).

Is there any chance of a port of this to 3.5.x please?

I need to stop the designers/hosts/admins ability to access them in the database. :)

Is there any chance of a port of this to 3.5.x please?

I need to stop the designers/hosts/admins ability to access them in the database. :)
This doesn't actually work like it needs to, its not feature complete nor secure.

Really? ah well, that's a shame.

I would say this hack is fairly secure until someone discovers this thread, like with many vb hacks ;)