Default Port for Internet Relay Chat (IRC) via TLS/SSL
RFC 7194

Document Type RFC - Informational (August 2014; No errata)
Updates RFC 1459
Last updated 2014-08-07
Stream ISE
Formats plain text pdf html
IETF conflict review conflict-review-hartmann-default-port-for-irc-via-tls-ssl
Stream ISE state Published RFC
Document shepherd No shepherd assigned
IESG IESG state RFC 7194 (Informational)
Telechat date
Responsible AD (None)
Send notices to (None)
Independent Submission                                       R. Hartmann
Request for Comments: 7194                                   August 2014
Updates: 1459
Category: Informational
ISSN: 2070-1721

         Default Port for Internet Relay Chat (IRC) via TLS/SSL

Abstract

   This document describes the commonly accepted practice of listening
   on TCP port 6697 for incoming Internet Relay Chat (IRC) connections
   encrypted via TLS/SSL.

Status of This Memo

   This document is not an Internet Standards Track specification; it is
   published for informational purposes.

   This is a contribution to the RFC Series, independently of any other
   RFC stream.  The RFC Editor has chosen to publish this document at
   its discretion and makes no statement about its value for
   implementation or deployment.  Documents approved for publication by
   the RFC Editor are not a candidate for any level of Internet
   Standard; see Section 2 of RFC 5741.

   Information about the current status of this document, any errata,
   and how to provide feedback on it may be obtained at
   http://www.rfc-editor.org/info/rfc7194.

Copyright Notice

   Copyright (c) 2014 IETF Trust and the persons identified as the
   document authors.  All rights reserved.

   This document is subject to BCP 78 and the IETF Trust's Legal
   Provisions Relating to IETF Documents
   (http://trustee.ietf.org/license-info) in effect on the date of
   publication of this document.  Please review these documents
   carefully, as they describe your rights and restrictions with respect
   to this document.

Hartmann                      Informational                     [Page 1]
RFC 7194            Default Port for IRC via TLS/SSL         August 2014

Table of Contents

   1. Rationale .......................................................2
   2. Technical Details ...............................................2
      2.1. Connection Establishment ...................................2
      2.2. Certificate Details ........................................3
           2.2.1. Server Certificate ..................................3
           2.2.2. Client Certificate ..................................3
   3. Security Considerations .........................................3
   4. IANA Considerations .............................................4
   5. Normative References ............................................4
   6. Informative References ..........................................4
   7. Acknowledgements ................................................5
   Appendix A. Supporting Data ........................................6

1.  Rationale

   Although system port assignments exist for IRC traffic that is plain
   text (TCP/UDP port 194) or TLS/SSL encrypted (TCP/UDP port 994)
   [IANALIST], it is common practice amongst IRC networks not to use
   them for reasons of convenience and general availability on systems
   where no root access is granted or desired.

   IRC networks have defaulted to listening on TCP port 6667 for plain
   text connections for a considerable time now.  This is covered by the
   IRCU assignment of TCP/UDP ports 6665-6669.

   Similar consensus has been reached within the IRC community about
   listening on TCP port 6697 for incoming IRC connections encrypted via
   TLS/SSL [RFC5246].

2.  Technical Details

2.1.  Connection Establishment

   An IRC client connects to an IRC server.  Immediately after that, a
   normal TLS/SSL handshake takes place.  Once the TLS/SSL connection
   has been established, a normal IRC connection is established via the
   tunnel.  Optionally, the IRC server may set a specific user mode
   (umode) for the client, marking it as using TLS/SSL.  Again,
   optionally, an IRC server might offer the option to create channels
   in such a way that only clients connected via TLS/SSL may join.

   For details on how IRC works, see [RFC1459], [RFC2810], [RFC2811],
   [RFC2812], and [RFC2813].  Please note that IRC is extremely
   fragmented, and implementation details can vary wildly.  Most
   implementations regard the latter RFCs as suggestions, not as
   binding.

Hartmann                      Informational                     [Page 2]
RFC 7194            Default Port for IRC via TLS/SSL         August 2014

2.2.  Certificate Details

2.2.1.  Server Certificate

   The IRC server's certificate should be issued by a commonly trusted
   certification authority (CA).

   The Common Name should match the Fully Qualified Domain Name (FQDN)
   of the IRC server or have appropriate wildcards, if applicable.

   The IRC client should verify the certificate.

2.2.2.  Client Certificate
Show full document text