wassup, long time no see :D

Hm.

What if there's a DNS hosting for only TXT records, and the rest would be passed through the original DNS provider. 😅

Hm. 🤔

Max 3500 records.. 🤦‍♂️ ON CLOUDFLARE!

Even for Pro.
Even for BUSINESS!
EVEN FOR ENTERPRISE!

Even worse, there's not a single other DNS hosting provider that's easy and allow more than that shit.

Earlier this year i definitely remember it was 10k for the Free plan.

It's a cartel. The whole industry has insane pricing for some 1-3k records, if at all.

The only left is AWS Route 53 but.. don't want to deal with them either, maybe as a last resort.

That's just ridiculous.

So.. what #Bitcoin Lightning Nostr providers, like Nostrplebs, use? Even if it's CF, it's not scalable, and pretty soon would need to ask for higher and higher prices for your users.

In my case, i want to do similar thing but also give them off-chain ENS name to that domain (foo .wgw .lol), which also requires a TXT, so it's 2 records per registered user.

Nightmare.

What's so the problem having 10k or more DNS records?!
I don't get it. I like to plan, that's why i can't just start doing it and "scale as you grow" cuz 200 is just ridiculous and the whole thing can actually fail cuz i don't want to pay insane numbers.

#AskNostr #DNS #Web #dev

Which makes me thing.. we gotta have Nostr usernames, Bitcoin/Lightning usernames based ONLY on `.well-known` folder and files.

hahahha Love it 😅

Magic Links (just a shittier 2fa) style logins are just fvckin awful, depending on the awful, terrible, and dangerous tech called Email.

What's magic links? It's the thing that sends you email to verify presence.

Can't stress enough how awful everything connected to email is. I lost access to MULTIPLE services because of this shit.

TOTP 2FA is far better and safer.

What's TOTP/HOTP?

HOTP = Hmac-based One-Time Passwords
TOTP = Time-based One Time Passwords

A service, site, app, or your, generate a unique "key" that you have to add into an Authenticator app (like Google Authenticator, Bitwarden, 1password) gives one-time pins/passwords/passcodes. That's done with the magic of cryptography and it's actually safe & secure, proving presence.

TOTP is lovely. It's based on HOTP, where it is based on a counter - the counter should change to be able to get anoother one-time pass/pin/code. TOTP uses time for that counter, and it's actually "one-time" and cannot bruteforce or hack it.

Passkeys are the future. But what's Passkeys?

It's similar to TOTP 2FA, instead it's hardware-based generation. It's a way to sign/verify using cryptography built into your device. Every device nowadays has it. Call it Secure Enclave or whatever - that's it.

Passkeys = biometrics login (face id, touch id, fingerprints)

The State of the art. Resistant to phishing attacks. And so much more.

We are still 1 year before mass adoption, because we are waiting for WebAuthn Level 3 to land.

Until then people land in thhe latest versions of iOS and Android.. USE TOTP 2FA!

We talk about password-less future, but what about email-less?! Every site, app, and service MUST drop emails and passwords. Just username and TOTP code - that's all! That's how TOTP 2FA becomes 1-factor auth that's actually secure.

Here's the catch tho. The greedy assfvcked and broken capitalism never gonna allow dropping email, it's a heaven for marketers and scammers. And YOU, THE PEOPLE, are not what matters. They don't care about you, but your data and spamming you and telling you what to do, what to buy, and what to think.

🤷‍♂️