Damus
Open in Damus
walker · 51w
Parker really doesn’t like Nostr lol https://i.nostr.build/5NsTMyF9Yeb31fyk.jpg
Sirius profile picture
Sirius @Martti Malmi
Surprisingly, I don't recall a single instance where anyone's Nostr account was hacked. Entering your private key into an insecure app would be the most obvious way how that could happen.

Compromise of a popular app would be bad. Maybe we'll need app and device specific keys signed by other keys of yours at some point.

However, Nostr doesn't have the traditional attack vectors associated with passwords, email, SMS and third party account recovery, which is already very good.

walker @walker · 51w
Parker really doesn’t like Nostr lol https://i.nostr.build/5NsTMyF9Yeb31fyk.jpg
66❤️9🤙61💯1🚀1🥜1
Common Sense · 51w
we’ll definitely need multisig with separate devices
Ben Justman🍷 · 51w
isn't that a pretty reasonable point he made? whether it comes true or not we'll see, but it seems reasonable
Mephi · 51w
Yep, my accounts have only ever been compromised when a third party service has allowed it to happen.
LeviJohnson.net · 51w
I could be wrong, but I think in this instance Parker doesn't know what he's talking about. And doesn't seem to grasp the significance of digital identity, in that, even if my digital identity on Nostr is anonymous, I can still get paid in Bitcoin and verify my messages.
Cykros · 51w
NIP-05 could be implemented better at the client level to make it obvious what's going on at the NIP-05 level. Like, what domain someone is verified through, and perhaps more importantly, if it has changed. For someone like myself, it's whatever, but for a more public personality, where you have you...