seeing this YES is when it finally hit me after about a week playing around here. #nostr is the absolute killer app of social, and because of the endless collaborative possibilities between projects and the open publication of content duplicated on decentralized relays, I think it will eventually displace everything else that’s trying to compete with xitter, reddit, ig and the rest. I have experimented with a few other apps like wavlake and fountain, and you can easily log into these apps with your nostr identity, enabling sharing of information, like what you’re listening to on #wavlake to be transmitted over to your nostr profile. Unbelievably cool. I know this isn’t news to many of you, but I thought sharing my noob realizations here might spark a flame for someone else new, because none of this is obvious at first glance.

The one fear I have is the single point of failure in the nsec key, and what happens if someone gets a hold of yours. Is there a permissionless 2FA that can be introduced to the login process? I saw Damus has the ability to sign some kind of termination event on your account if, say, someone started rogue posting with your stolen key, but I don’t know how the relays handle this or if other clients would still let them post as you. Someone could decrypt all your DMs with your key, etc. I suppose signing apps are one answer, where you only import your nsec key once, then use that app to sign an event that proves it’s you in order to log into other apps, but this key slinging is a bit scary, and should be treated with the same seriousness as guarding a seed phrase to a cold wallet. More is needed here to protect nostriches from key loss/theft.

tl;dr: it takes the purple pill about a week to dissolve in your gut.