VitorPamplona on nostr

Open in Damus

@VitorPamplona 1693950790

Reminder: NIP-04 DMs have a security flaw.

With significant use (DMs + private zaps + zap payment requests via wallet connect + private lists), an attacker with sufficient hash power can brute force your private key.

Please consider migrating to the new DM with GiftWraps as early as possible.

We also invite all white-hat cryptographers out there to try to break the new system. The sooner we can stress test the design, the better it gets.

4348❤️50🤙16❤️3🧡3👀1👍1

Brunswick · 139w

How does one switch to the new protocol?

Ƒʉͫcͧкͭιͪηͣ 𝕵𝖔𝖍𝖓 ⚡️⚡️ · 139w

Melvin Carvalho · 139w

crimsonleaf363 · 139w

We're all going to get rekt aren't we?

Which is why I wonder, how so many people are still using it.

hodlbod · 139w

Migrating isn't a solution yet unfortunately. We're working on auditing it, and/or exploring a SimpleX integration.

Can you provide more details?

Ryley Schaeffer · 139w

Não entendo nada disso. Que que eu faço?

alphakamp · 139w

Sufficient hash power? Haha that's anyone that has significant mining hardware🤔

MartianX · 138w

Is a nostr private key generated using the same algorithm used for generating bitcoin wallet private keys ? Why don't nostr use 12 or 24 or 24 plus seed phrase type of key generating support?

This is fake news. It's just diffe hellman.

How significant is significant?

AngryMulbear · 138w

What we really need is some sort of revocation scheme to recover from an inevitable key leak.

Why morherfucker? What the system do to your weak and pathetic ass to be attacked? Hurt that pathetic ego of false cored understanding?

Easy Does It · 138w

I'm too dumb to understand

Is this post for lay people like me, or for programmers? I didn't understood the technical things in this post. What should I do as a general user, nostr:npub1gcxzte5zlkncx26j68ez60fzkvtkm9e0vrwdcvsjakxf9mu9qewqlfnj5z? I feel anxious.