Nostr Web Client

The problem with people like Parker is that they’re incorrectly concerned about follower count, even though he didn’t say that directly. They’re worried about reach and engagement because that’s what is required in order to be relevant/monetized on platforms like X.

If the worst happened on nostr and you had to switch to a new key pair, the people who care most about keeping in touch with you would know about it out pretty quickly, and would vouch for you so others know how to find you and to disregard the old npub. Sort of like switching to a new email if you lost access to the old one.

nostr:nevent1qqstgu6hed6fu5tppz3guu3f6d4h79p87ykkhd2949aqmr30ajd953gpzemhxw309ucnjv3wxymrst338qhrww3hxumnwejsnu0

Reply to this note

Please Login to reply.

Discussion

₿ujuX 10mo ago

Still would be a headache either way to switc npubs due to issues like that. I hear you tho. I know that I am more aligned with Nostr's philosophy then mainstream centralized social media accoutns, hence why I dont you those ones. If it wasn't for Nostr I wouldnt even post online.

corndalorian 10mo ago

Changing any contact info is a bit of a pain. Not saying it can’t be made better on nostr, but it’s not a disaster if it happens. That’s all I’m saying.

₿ujuX 10mo ago

Ya, I hear you.

Foxfire Mushrooms 10mo ago

Yeah it’s seriously not a big deal if your nostr gets compromised and you have to switch it, even if you’re a famous person. Theres no comparison to that and bitcoin.

corndalorian 10mo ago

Right. Imagine if Jack switched to a new key. Once a few reputable people confirmed it, and/or he verified it outside of nostr, everyone who cares would refollow and life would go one. lol

Bertha 10mo ago

Parker’s dislike of Nostr is “strange” given Zaprite’s goal seems to be “bringing bitcoin payments to individuals and businesses around the world”

tolot 10mo ago

True.

I would add that there'some nuance here to discuss about. I don't think Parker is pointimg at this by any means but I see that as a possible issue. That is:

Nostr privkeys and money privkeys are the same in terms of information security, but are widely different in terms of what an attacker is imcentivized to do if he/she steals keys from somebody.

When you get into possession of a bitcoin mnemonic that is not yours and has some fpunds in it (extremely unlikely by chance, but doable by other shady means) you have the incentive of emptying immediately the wallet by moving all UTXOs to on or more keys controlled by you.

If you steal Nostr keys, you don't have incentive to immediately use them for fraudulent purposes. That means that "nsec farming" is doable if considering the incentives structure.

Thus, you never actually know if your keys are truly exclusively yours or not. You can only understand that you were hacked only when the attacker starts signing notes on your behalf.

In fact, this is not different from what happens in classical social media, so no surprises here. But overall I would argue that it's true, incentives are alligned differently somehow.

corndalorian 10mo ago

Then just don’t use social media at all. Don’t use the internet. Do everything with paper. If someone’s threat level is that high then they ought not to be doing anything so risky.

Dan Wedge 10mo ago

if I was nefarious and found a repeatable way to move bitcoin I wouldn't do it as I received the wallets phrases. I would Que up transactions in a batch & exploit all at once one large pull before the exploit could be identified.

tolot 10mo ago

Yes, but you never know how low UTXOs will sit there without moving. If you find free money, you don't generally way for some other to turn up. You grab them and leave.

That's what exploiters do. They even push it a bit further...generally they fat finger the transaction fee, just to be sure to not being outbidden and to be included in the first block.

You're right for the general consideration that, if you're sufficiently sure that your victims are likely to let funds in their wallets long enough, you'll go for the patient path. But I would argue that's pretty uncommon and surely less incentivized than what'd happen with Nostr privkeys.

tolot 10mo ago

That's not a solution. The solution is probably close to the "external signer" thingy. But it's not so wide spread and some nsecs were generated way before external signers were a thing. It's a matter of awareness btw...running away from risk is not a good choice, being aware of it is ultimately the best choice. That was the goal of my riffing...I didn't mean "fuck it lets use paper"

beejay 10mo ago

I must have this person muted, bc the quoted note cannot be displayed

Ben 10mo ago

Bitcoin Sikho 10mo ago

that post doesn’t mention anything about follower count 🤷‍♀️

he’s complaining about losing your identity on nostr as decentralised and due to which you can’t get your account back, but that’s not a big issue as people will switch to the new id of the hacked acc when it’s ready

i think he doesn’t understand nostr

corndalorian 10mo ago

No one has a nostr account. There’s no such thing.

🇵🇸 whoever loves Digit 10mo ago

I do

Bitcoin Sikho 10mo ago

you know what i mean when i say an account (npub)

corndalorian 10mo ago

A key is not an account.

corndalorian 10mo ago

Your identity is not your key pair.

node 10mo ago

🎯

McCoy 10mo ago

Agree. A bit worse than changing your email/phone, but fixable. Web-of trust can be reclaimed.

Lost/hacked nsec would work like this:

✅create new key pair;

✅reach out to your most *popular* followers;

✅they use their established trust to verify your new npub. ✅Word spreads fast to their WOT…. on and on

With walled garden central control you would have to rely on central authority to reclaim, with NOSTR your fellow users who have built their own trust can assist. This fix strengthens as network grows.

🇵🇸 whoever loves Digit 10mo ago

I don't think anyone cares that much about keeping in touch with me

Moid 10mo ago

I lost access to my first Nostr account.

It is a bummer, but the issue for me was never losing the account, it was getting censored by centralised entities.

What I would say is, those centralised entities ( Specifically Twitter ) do have more reach - agreed - but more than that is is where you can really challenge ideas.

This place is like preaching to the converted. Nothing wrong with that, but the differences extend beyond whether you own your identity on a given platform or not. ( IMO )

corndalorian 10mo ago

You overestimate the importance of your voice outside your immediate circle. It’s a symptom of thinking having “followers” on social media means anything.

Moid 10mo ago

I do no such thing.

My point is simply that most of us would not be here, were it not for Twitter. We stumbled ( or I did ) on people almost by accident.

That does not happen here.

I care not for follower count, nor likes or retweets.

This is the difference between perception and perspective.

corndalorian 10mo ago

You don’t have more reach on X than here. Who cares about your (or mine) opinion enough for you to have influence on them beyond those you immediately interact with? No one. Delusions of grandeur. Social media has made everyone think they’re an influencer and celebrity. Get over yourself.

Moid 10mo ago

It isn’t me I am talking about lol.

What part of that is too difficult to grasp?

Jesus, the man posting memes for zaps tells the quiet account to get over himself 😂

corndalorian 10mo ago

Clearly you think I care about your opinion. Like I said, delusions of grandeur.

royster⚡️ 10mo ago

Like water on stone, the power of the GM protocol will eventually wear him down.

GM nostr:nprofile1qqs8dzjwlrgdzltmgmmzg50l3jpr3hxv357hj03rjut5jsfm5ugtv9gn0vuws