[Gaim-e-developer] Gaim-E::Proof of Concept!

SourceForge Headquarters 1320 Columbia Street Suite 310 San Diego, CA 92101 +1 (858) 422-6466

OK...so I'm a little excited about the app. But I thought I would share t=
he=20
results of a sniffer trace on AIM traffic with gaim-e OFF, then ON. Only=20
three packets shown below (use a Fixed Width font for proper viewing).  I=
'm=20
know you knew the app worked, but for those who need proof forward them t=
his=20
email.  Guys, keep up the excellent work!

FIRST:: I type the following message with Gaim-E truned OFF:

=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D=
+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+

06/09-12:55:54.358867 192.168.1.103:37483 -> 205.188.8.53:5190
TCP TTL:64 TOS:0x0 ID:42794 IpLen:20 DgmLen:259 DF
***AP*** Seq: 0x2D809F39  Ack: 0x8D774183  Win: 0x3FC0  TcpLen: 20
0x0000: 00 04 5A 2F F1 A9 00 A0 24 AB A0 8F 08 00 45 00  ..Z/....$.....E.
0x0010: 01 03 A7 2A 40 00 40 06 FA C9 C0 A8 01 67 CD BC  ...*@.@......g..
0x0020: 08 35 92 6B 14 46 2D 80 9F 39 8D 77 41 83 50 18  .5.k.F-..9.wA.P.
0x0030: 3F C0 78 17 00 00 2A 02 00 8A 00 D5 00 04 00 06  ?.x...*.........
0x0040: 00 00 00 00 00 17 BC 5F 4E 77 FA CB 6C 05 00 01  ......._Nw..l...
0x0050: 08 63 68 72 31 73 38 30 38 00 02 00 B0 05 01 00  .chr1s808.......
0x0060: 04 01 01 01 02 01 01 00 A4 00 00 00 00 54 68 69  .............Thi
0x0070: 73 20 69 73 20 61 20 74 65 73 74 20 6D 65 73 73  s is a test mess
0x0080: 61 67 65 20 77 69 74 68 6F 75 74 20 74 68 65 20  age without the=20
0x0090: 75 73 65 20 6F 66 20 47 61 69 6D 2D 45 20 66 6F  use of Gaim-E fo
0x00A0: 72 20 65 6E 63 72 79 70 74 69 6F 6E 20 62 65 74  r encryption bet
0x00B0: 77 65 65 6E 20 74 68 65 20 74 77 6F 20 63 68 61  ween the two cha
0x00C0: 74 74 69 6E 67 20 70 61 72 74 69 65 73 2E 20 20  tting parties. =20
0x00D0: 4E 6F 74 69 63 65 20 61 6C 6C 20 69 73 20 63 6C  Notice all is cl
0x00E0: 65 61 72 20 74 65 78 74 2C 20 62 65 69 6E 67 20  ear text, being=20
0x00F0: 73 6E 69 66 66 65 64 20 6F 6E 20 74 68 65 20 77  sniffed on the w
0x0100: 69 72 65 20 62 79 20 53 4E 4F 52 54 2E 00 03 00  ire by SNORT....
0x0110: 00                                               .

=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D=
+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+

SECOND:: I type a similiar message with Gaim-E truned ON:

=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D=
+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+

06/09-13:01:53.313265 192.168.1.103:37483 -> 205.188.8.53:5190
TCP TTL:64 TOS:0x0 ID:42809 IpLen:20 DgmLen:416 DF
***AP*** Seq: 0x2D80A54C  Ack: 0x8D774277  Win: 0x3FC0  TcpLen: 20
0x0000: 00 04 5A 2F F1 A9 00 A0 24 AB A0 8F 08 00 45 00  ..Z/....$.....E.
0x0010: 01 A0 A7 39 40 00 40 06 FA 1D C0 A8 01 67 CD BC  ...9@.@......g..
0x0020: 08 35 92 6B 14 46 2D 80 A5 4C 8D 77 42 77 50 18  .5.k.F-..L.wBwP.
0x0030: 3F C0 72 C4 00 00 2A 02 00 94 01 72 00 04 00 06  ?.r...*....r....
0x0040: 00 00 00 00 00 1B 4F 32 15 49 FD 82 4E A9 00 01  ......O2.I..N...
0x0050: 08 63 68 72 31 73 38 30 38 00 02 01 4D 05 01 00  .chr1s808...M...
0x0060: 04 01 01 01 02 01 01 01 41 00 00 00 00 47 41 49  ........A....GAI
0x0070: 4D 2D 45 3A 45 4E 43 52 59 50 54 45 44 3A 52 5A  M-E:ENCRYPTED:RZ
0x0080: 73 55 6D 68 4F 33 61 77 79 31 2F 41 37 72 56 38  sUmhO3awy1/A7rV8
0x0090: 5A 46 42 50 4C 4A 37 6A 74 63 66 64 4D 4C 4A 75  ZFBPLJ7jtcfdMLJu
0x00A0: 70 6E 41 77 59 4A 6F 63 39 30 36 77 6C 6E 66 37  pnAwYJoc906wlnf7
0x00B0: 6F 71 4C 46 74 69 7A 4D 43 73 62 61 44 6B 78 67  oqLFtizMCsbaDkxg
0x00C0: 63 45 32 70 6B 36 4F 6F 6F 39 4C 55 39 62 61 41  cE2pk6Ooo9LU9baA
0x00D0: 53 6D 6D 68 7A 66 73 75 66 5A 47 50 36 50 6C 55  SmmhzfsufZGP6PlU
0x00E0: 39 66 4B 73 48 41 51 45 57 6F 52 34 4F 71 55 59  9fKsHAQEWoR4OqUY
0x00F0: 6A 54 33 44 61 62 38 51 75 63 45 7A 70 65 6E 49  jT3Dab8QucEzpenI
0x0100: 66 7A 70 69 47 64 71 56 36 48 31 78 63 64 31 36  fzpiGdqV6H1xcd16
0x0110: 4F 6D 35 6C 6B 72 59 38 4E 59 33 4E 58 2B 64 6C  Om5lkrY8NY3NX+dl
0x0120: 4A 64 49 5A 73 6A 69 39 4C 6B 6E 6E 74 4B 67 58  JdIZsji9LknntKgX
0x0130: 30 75 64 6F 32 66 4C 6D 74 56 4C 35 6D 57 42 4A  0udo2fLmtVL5mWBJ
0x0140: 67 5A 75 34 4F 53 59 44 34 31 4E 41 71 70 47 72  gZu4OSYD41NAqpGr
0x0150: 4D 6D 42 6D 37 74 49 36 58 76 4D 48 31 30 75 2F  MmBm7tI6XvMH10u/
0x0160: 4F 36 66 75 7A 65 43 46 46 47 47 72 61 6A 69 65  O6fuzeCFFGGrajie
0x0170: 6D 4C 6F 6E 6C 4B 76 4A 46 72 59 62 6A 39 49 52  mLonlKvJFrYbj9IR
0x0180: 46 39 67 69 30 73 2B 72 72 7A 76 77 63 7A 41 63  F9gi0s+rrzvwczAc
0x0190: 2F 47 76 42 39 51 72 31 79 56 46 72 73 65 58 6E  /GvB9Qr1yVFrseXn
0x01A0: 2B 33 68 69 5A 37 76 75 77 3D 00 03 00 00        +3hiZ7vuw=3D....

=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D=
+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+

THIRD:: Here's the transmission of the GnuPG Public key during the initia=
tion=20
of gaim-e.

=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D=
+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+

06/09-12:56:18.267004 192.168.1.103:37483 -> 205.188.8.53:5190
TCP TTL:64 TOS:0x0 ID:42799 IpLen:20 DgmLen:880 DF
***AP*** Seq: 0x2D80A074  Ack: 0x8D774231  Win: 0x3FC0  TcpLen: 20
0x0000: 00 04 5A 2F F1 A9 00 A0 24 AB A0 8F 08 00 45 00  ..Z/....$.....E.
0x0010: 03 70 A7 2F 40 00 40 06 F8 57 C0 A8 01 67 CD BC  .p./@.@..W...g..
0x0020: 08 35 92 6B 14 46 2D 80 A0 74 8D 77 42 31 50 18  .5.k.F-..t.wB1P.
0x0030: 3F C0 74 FA 00 00 2A 02 00 8C 03 42 00 04 00 06  ?.t...*....B....
0x0040: 00 00 00 00 00 19 BE 70 B5 73 3B 04 5C D3 00 01  .......p.s;.\...
0x0050: 08 63 68 72 31 73 38 30 38 00 02 03 1D 05 01 00  .chr1s808.......
0x0060: 04 01 01 01 02 01 01 03 11 00 00 00 00 47 41 49  .............GAI
0x0070: 4D 2D 45 3A 43 52 59 50 54 4F 4B 45 59 3A 4C 53  M-E:CRYPTOKEY:LS
0x0080: 30 74 4C 53 31 43 52 55 64 4A 54 69 42 51 52 31  0tLS1CRUdJTiBQR1
0x0090: 41 67 54 55 56 54 55 30 46 48 52 53 30 74 4C 53  AgTUVTU0FHRS0tLS
0x00A0: 30 74 43 6C 5A 6C 63 6E 4E 70 62 32 34 36 49 45  0tClZlcnNpb246IE
0x00B0: 64 75 64 56 42 48 49 48 59 78 4C 6A 41 75 4E 69  dudVBHIHYxLjAuNi
0x00C0: 41 6F 52 30 35 56 4C 30 78 70 62 6E 56 34 4B 51  AoR05VL0xpbnV4KQ
0x00D0: 6F 4B 61 46 46 46 54 30 45 35 51 53 39 50 4D 6B  oKaFFFT0E5QS9PMk
0x00E0: 70 55 4C 33 4A 30 56 30 56 42 55 55 46 71 5A 6C  pUL3J0V0VBUUFqZl
0x00F0: 4A 58 63 58 4A 33 61 31 4A 58 53 6E 68 44 65 69  JXcXJ3a1JXSnhDei
0x0100: 39 34 61 57 31 6F 63 30 46 45 4E 33 42 47 4D 31  94aW1oc0FEN3BGM1
0x0110: 63 32 59 69 39 69 4C 31 56 69 53 6D 68 78 54 45  c2Yi9iL1ViSmhxTE
0x0120: 35 6D 53 32 51 76 4F 41 70 6D 4E 58 64 52 55 55  5mS2QvOApmNXdRUU
0x0130: 4E 57 64 30 70 53 4F 47 39 44 61 45 35 50 55 7A  NWd0pSOG9DaE5PUz
0x0140: 68 30 4D 45 6C 30 4C 7A 4A 50 4B 32 70 70 5A 48  h0MEl0LzJPK2ppZH
0x0150: 56 75 52 33 46 6D 4D 45 74 79 52 33 52 79 4E 44  VuR3FmMEtyR3RyND
0x0160: 5A 47 4D 30 56 43 54 33 41 32 4D 6D 70 71 61 6D  ZGM0VCT3A2Mmpqam
0x0170: 78 42 55 54 4E 49 56 6B 46 4F 53 6A 67 7A 43 6E  xBUTNIVkFOSjgzCn
0x0180: 4A 4C 4E 46 67 7A 55 57 6F 76 5A 47 78 7A 52 6D  JLNFgzUWovZGxzRm
0x0190: 77 7A 61 58 63 34 4D 57 31 6F 56 47 52 53 61 54  wzaXc4MW1oVGRSaT
0x01A0: 68 74 51 33 4E 77 57 44 68 34 51 7A 46 6E 62 46  htQ3NwWDh4QzFnbF
0x01B0: 46 76 4E 57 68 6B 5A 33 42 45 4F 46 64 70 52 69  FvNWhkZ3BEOFdpRi
0x01C0: 39 76 61 57 52 57 57 6E 6B 79 5A 56 56 49 52 48  9vaWRWWnkyZVVIRH
0x01D0: 52 73 51 55 55 4B 51 55 70 51 64 6D 64 6E 63 56  RsQUUKQUpQdmdncV
0x01E0: 5A 57 56 45 64 4D 54 6E 5A 7A 4B 7A 64 56 61 6B  ZWVEdMTnZzKzdVak
0x01F0: 52 4C 5A 30 38 78 65 6D 73 72 52 48 42 79 54 47  RLZ08xemsrRHByTG
0x0200: 67 7A 62 6D 4A 48 59 57 70 68 5A 32 4A 6E 56 33  gzbmJHYWphZ2JnV3
0x0210: 68 5A 61 57 39 78 61 6A 52 61 65 6B 55 77 51 32  hZaW9xajRaekUwQ2
0x0220: 4E 32 52 33 4A 4A 4B 33 46 59 4E 67 70 4D 63 6A  N2R3JJK3FYNgpMcj
0x0230: 46 4A 57 6E 70 75 55 44 5A 36 4F 57 74 52 4C 32  FJWnpuUDZ6OWtRL2
0x0240: 46 42 56 6C 6C 4E 5A 58 46 72 54 58 6C 49 51 55  FBVllNZXFrTXlIQU
0x0250: 46 70 61 46 67 34 54 53 39 30 5A 54 6C 6E 51 57  FpaFg4TS90ZTlnQW
0x0260: 31 61 52 54 56 5A 65 46 46 33 62 6B 78 78 55 47  1aRTVZeFF3bkxxUG
0x0270: 38 78 62 47 39 70 64 33 56 43 53 6C 46 79 52 6B  8xbG9pd3VCSlFyRk
0x0280: 5A 68 43 6B 64 75 4D 57 46 74 52 45 68 79 53 6D  ZhCkduMWFtREhySm
0x0290: 4E 43 57 6A 42 6A 56 43 39 6A 64 56 68 7A 5A 6B  NCWjBjVC9jdVhzZk
0x02A0: 51 7A 5A 33 5A 4D 55 58 5A 6E 4E 54 41 7A 53 45  QzZ3ZMUXZnNTAzSE
0x02B0: 56 51 54 6D 39 54 4D 44 4A 4A 55 7A 46 73 4D 47  VQTm9TMDJJUzFsMG
0x02C0: 74 33 51 6E 5A 46 4C 31 64 79 65 45 4E 57 4E 47  t3QnZFL1dyeENWNG
0x02D0: 31 49 65 6C 4D 32 62 58 49 4B 54 45 56 79 53 32  1IelM2bXIKTEVyS2
0x02E0: 39 6B 4C 33 68 36 65 56 46 31 57 58 6C 58 56 6B  9kL3h6eVF1WXlXVk
0x02F0: 49 76 55 32 52 48 62 54 64 52 4E 6E 70 4C 55 47  IvU2RHbTdRNnpLUG
0x0300: 4A 6C 53 30 39 58 59 56 68 52 53 56 6C 31 57 6D  JlS09XYVhRSVl1Wm
0x0310: 63 32 4E 31 70 59 5A 79 39 59 62 45 67 72 65 55  c2N1pYZy9YbEgreU
0x0320: 4A 52 4E 54 64 44 54 7A 56 4B 61 44 59 31 65 51  JRNTdDTzVKaDY1eQ
0x0330: 70 79 5A 31 64 57 4C 30 46 61 64 47 35 69 56 47  pyZ1dWL0FadG5iVG
0x0340: 38 7A 4C 7A 45 72 57 6E 5A 48 5A 67 6F 39 61 55  8zLzErWnZHZgo9aU
0x0350: 45 34 54 51 6F 74 4C 53 30 74 4C 55 56 4F 52 43  E4TQotLS0tLUVORC
0x0360: 42 51 52 31 41 67 54 55 56 54 55 30 46 48 52 53  BQR1AgTUVTU0FHRS
0x0370: 30 74 4C 53 30 74 43 67 3D 3D 00 03 00 00        0tLS0tCg=3D=3D..=
=2E.

=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D=
+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+=3D+

-John
--=20
GnuPG Public Key: https://www.dndlabs.net/pgpkey/listing.php
Key Fingerprint =3D 73D0 EDCC D5ED A6C0 1324  A85E 4957 D3C6 FA6C F3AE