their argument against auth usually boils down to, they dont want the relay knowing anything. so they'd rather it be wide open to the entire internet so they won't have to expose their usage patterns...
yeah, they made a blog something about how they couldn't set protected flags because of lack of support in relays (hehe there almost isn't nips for relays that aren't supported in orly) and anyway, you need nip-42 to get protected events because that's the only way to actually check nip-70 tags actually are being enforced.
it's even deeper.
and as claude pointed out to me about this discussion, you either have to have auth or add a restriction created by the group admins that confine the activity to trusted relays. and even then, if they are wide open, the metadata is still wide open without auth.
that's why it's nice to know someone not only has written a Go marmot SDK now, currently finishing up the polish on a radically rewritten smesh client, which only uses marmot.
it's even deeper.
and as claude pointed out to me about this discussion, you either have to have auth or add a restriction created by the group admins that confine the activity to trusted relays. and even then, if they are wide open, the metadata is still wide open without auth.
that's why it's nice to know someone not only has written a Go marmot SDK now, currently finishing up the polish on a radically rewritten smesh client, which only uses marmot.
1
