Connecting with SSL Encryption

Introduction

This is a guide to help you configure your IRC client software to connect to AfterNET using SSL encryption. Our primary focus is on hexchat, because that is what we use most, but it should help you get going with mirc and other software as well.

Why encryption

Our SSL encryption support is intended to protect you from those on your local network intercepting passwords or reading your conversations. Essentially we want you to be able to login to your account(s) over wifi and speak poorly of your boss without fear of snooping. It is NOT end-to-end security and you should never use IRC to discuss company secrets or anything truly of value. The government, and people with physical access to our hosting facilities could still spy on you.

Enabling encryption

Our servers have SSL enabled on ports 6697 and 9998. We support only TLS1.2 which means some older clients will not be able to use SSL if they can only do SSLv3 or TLS1. See our Clients page to find a client that will work for you.

Configure your software to connect to the server named irc.afternet.org on port 6697 or 9998 and select the 'use encryption' checkbox.

Certificate Authority

Our server certificates are signed by StartCom, which should be a trusted authority by default for most people, but you can add them by using the certificate at https://www.startssl.com/certs/ca.pem