Alex Gleason on nostr

Open in Damus

nice one! do you know why the address is different than the one that deezy.place generates? and btw. sending should also work with the extension, there are all necessary signing methods available.

Alex Gleason @Alex Gleason 1760884955

The generic signing method in Alby is a major security vulnerability. People don't know what they're signing or how much. We need a dedicated signBitcoinTransaction method.

2❤️1

Offbeat Neglected Prawn · 26w

I apologize for my ignorance, but what is wrong with that?

that basically says the user is a security vulnerability or we have a too complicated system where users need to sign events that they don't understand? :) (at the same time users complain they get asked too much) and any signing prompt is imo better than handing over the private key. generally th...