Damus
Vitor Pamplona profile picture
Vitor Pamplona
@VitorPamplona
Reminder: NIP-04 DMs have a security flaw.

With significant use (DMs + private zaps + zap payment requests via wallet connect + private lists), an attacker with sufficient hash power can brute force your private key.

Please consider migrating to the new DM with GiftWraps as early as possible.

We also invite all white-hat cryptographers out there to try to break the new system. The sooner we can stress test the design, the better it gets.
4348❤️50🤙16❤️3🧡3👀1👍1
Brunswick · 148w
How does one switch to the new protocol?
Ƒʉͫcͧкͭιͪηͣ 𝕵𝖔𝖍𝖓 ⚡️⚡️ · 148w
Wtf
Melvin Carvalho · 148w
Explain how?
crimsonleaf363 · 148w
We're all going to get rekt aren't we?
Akito · 148w
Which is why I wonder, how so many people are still using it.
hodlbod · 148w
Migrating isn't a solution yet unfortunately. We're working on auditing it, and/or exploring a SimpleX integration.
ZEUS · 148w
Can you provide more details?
Ryley Schaeffer · 148w
Exciting news!
Mimi · 148w
Não entendo nada disso. Que que eu faço?
alphakamp · 148w
Sufficient hash power? Haha that's anyone that has significant mining hardware🤔
MartianX · 148w
Is a nostr private key generated using the same algorithm used for generating bitcoin wallet private keys ? Why don't nostr use 12 or 24 or 24 plus seed phrase type of key generating support?
benthecarman · 148w
This is fake news. It's just diffe hellman.
nobody · 148w
How significant is significant?
AngryMulbear · 147w
What we really need is some sort of revocation scheme to recover from an inevitable key leak.
SMS · 147w
Why morherfucker? What the system do to your weak and pathetic ass to be attacked? Hurt that pathetic ego of false cored understanding?
Easy Does It · 147w
I'm too dumb to understand
Newton · 147w
Is this post for lay people like me, or for programmers? I didn't understood the technical things in this post. What should I do as a general user, nostr:npub1gcxzte5zlkncx26j68ez60fzkvtkm9e0vrwdcvsjakxf9mu9qewqlfnj5z? I feel anxious.