Damus
Vitor Pamplona profile picture
Vitor Pamplona
@VitorPamplona
Reminder: NIP-04 DMs have a security flaw.

With significant use (DMs + private zaps + zap payment requests via wallet connect + private lists), an attacker with sufficient hash power can brute force your private key.

Please consider migrating to the new DM with GiftWraps as early as possible.

We also invite all white-hat cryptographers out there to try to break the new system. The sooner we can stress test the design, the better it gets.
4348❤️50🤙16❤️3🧡3👀1👍1
Brunswick · 147w
How does one switch to the new protocol?
Ƒʉͫcͧкͭιͪηͣ 𝕵𝖔𝖍𝖓 ⚡️⚡️ · 147w
Wtf
Melvin Carvalho · 147w
Explain how?
crimsonleaf363 · 147w
We're all going to get rekt aren't we?
Akito · 147w
Which is why I wonder, how so many people are still using it.
hodlbod · 147w
Migrating isn't a solution yet unfortunately. We're working on auditing it, and/or exploring a SimpleX integration.
ZEUS · 147w
Can you provide more details?
Ryley Schaeffer · 147w
Exciting news!
Mimi · 147w
Não entendo nada disso. Que que eu faço?
alphakamp · 147w
Sufficient hash power? Haha that's anyone that has significant mining hardware🤔
MartianX · 147w
Is a nostr private key generated using the same algorithm used for generating bitcoin wallet private keys ? Why don't nostr use 12 or 24 or 24 plus seed phrase type of key generating support?
benthecarman · 147w
This is fake news. It's just diffe hellman.
nobody · 147w
How significant is significant?
AngryMulbear · 147w
What we really need is some sort of revocation scheme to recover from an inevitable key leak.
SMS · 147w
Why morherfucker? What the system do to your weak and pathetic ass to be attacked? Hurt that pathetic ego of false cored understanding?
Easy Does It · 147w
I'm too dumb to understand
Newton · 147w
Is this post for lay people like me, or for programmers? I didn't understood the technical things in this post. What should I do as a general user, nostr:npub1gcxzte5zlkncx26j68ez60fzkvtkm9e0vrwdcvsjakxf9mu9qewqlfnj5z? I feel anxious.