Skype is a great service. It allows a free solution for VoIP to VoIP calls, and cheap VoIP to landline calling. However, a very disturbing, little known fact that might push you away from Skype does exist. If you closely read the terms of service agreement, it clearly says that Skype is allowed to decrypt your messages whenever they please. Here at Null Byte, we tend to enjoy our anonymity, don't we?
A solution to our issue would be end-to-end encryption. This means that we would need to share a password with a contact, and create a private encryption key. Our messages would be encrypted and sent across the network, unreadable, and finally reach its destination, only to be decrypted by the receiving party. One issue, however, lies in this solution—Skype doesn't have extensible plugins.
Pidgin is a great, mutil-platform, multi-protocol instant messaging client. It supports nearly every protocol by default, and has a very dense list of plugins. Here are a few of the default protocols:
- IRC (very rough)
- Facebook Chat
- Google Talk
- And more...
With the use of the great Pidgin instant messenger, and the Skype protocol, we can use end-to-end encryption on our messages in a breeze. This will protect us from Skype potentially snooping through our sensitive messages. That's our mission in this Null Byte!
- Skype account
- Windows, Mac, or Linux OS
Step 1 Download & Install Pidgin
Text in bold is a Linux terminal command.
Let's get our software installed, the method varies slightly based on platform.
- Download Pidgin from the official site.
- Double-click the installer.
- Check and uncheck the options that you want to keep.
- Click Next > Next > Next > Finish.
- Download Pidgin here (Look into Adium, a native port of pidgin for Mac).
- Run the installer normally, selecting and unselecting your needed options.
- Download the Pidgin source code.
- Extract the tarball.
tar zxvf <pidgin package>
- Configure the installation.
- Compile and install Pidgin to your system.
make && sudo make isntall
Step 2 Installing Skype4Pidgin
Skype4Pidgin is an addon that allows us to utilize the chat features from Skype via Pidgin. However, this will allow us to use Skype in conjunction with Pidgin's great plugin list.
- Download the plugin for Windows.
- Run the installer.
- Download the plugin for Mac OSX.
- Extract the zip file and double-click SkypePlugin. AdiumPlugin to install it.
- Download the plugin for Linux.
- Copy the file to the plugin's directory for Pidgin.
cp libskype.so ~/.purple/plugins
Step 3 Install OTR
OTR stands for Off-The-Record, which is a plugin for Pidgin that provides end-to-end encryption for you and your contacts. It requires that the person you are chatting with use the plugin as well.
Installers and Source
- Add your Skype account to Pidgin's accounts.
- After the plugin is installed, right-click the Pidgin tray icon and click Plugins.
- Scroll down and check the box next to OTR to enable it.
- Click Configure Plugin.
- Select the account you are using from the drop down menu.
- Click Generate and wait.
The next time you chat with someone, make sure that they are using Pidgin with the OTR plugin, and select Start Private Conversation from the chat window to ensure the session is encrypted.
Want to start making money as a white hat hacker? Jump-start your hacking career with our 2020 Premium Ethical Hacking Certification Training Bundle from the new Null Byte Shop and get over 60 hours of training from cybersecurity professionals.