Replying to Avatar Girino Vey!

nostr:npub1utx00neqgqln72j22kej3ux7803c2k986henvvha4thuwfkper4s7r50e8, a proposal for the WoT-Relays, to allow for newbies: CAPTCHA.

The idea should be, we add a page with a captcha and a place for the user to paste their npub. If they answer the captcha correctly, user gets added to a whitelist for a limited time (say 24h).

If user tries to access the relay and is not in the whitelist, nor in the WoT, relay responds with both an "auth" request and a private message pointing to the url of the captcha page.

When validating events, check for both WoT and whitelist.

If user tries to abuse the captcha page (3 bad captchas in a minute, or 10 bac captchas in an hour), blacklist them and their IP address.

Avatar
utxo the webmaster 🧑‍💻 1y ago

What does nostr think of this idea?

nostr:nevent1qqs8yu4puxn06vs8dmrv5mdp0wrfgkq00acj28chl3ta3hru3fljewgpzdmhxue69uhhwmm59e6hg7r09ehkuef0qgsrl7kr5my9n6423nwaktrsq2nwzzenal4e95p9k9826mu294jkv4crqsqqqqqpcj7lrd

Reply to this note

Please Login to reply.

Discussion

Avatar
🟠 isolabellart 1y ago

Very interesting 🤔

Avatar
Derek Ross 1y ago

I responded to the GitHub issue. It seems like it's out of scope and not WoT.

Avatar
Derek Ross 1y ago

Iike the idea though.

Avatar
SUPERMAX 1y ago

Same

Avatar
Girino Vey! 1y ago

Like you said in github: make it optional. Some WoT will be "open", others "closed".

Avatar
Derek Ross 1y ago

I believe this discussion moves towards what type of relay do you wish to run. A relay of verified humans or a relay of trusted humans?

Avatar
El Presidento Ben 1y ago

use the captcha from google as a great punishment

Avatar
Girino Vey! 1y ago

that's an easy one. you're missing a colon on line 8

Avatar
Dawn 1y ago

I like it. If nothing else, it could be a good bandaid until other solutions have time to get worked out.