The right way to attack nostr is to outline the attack, release the code, give some time to prepare then carry it out in short controlled bursts
But it does need to be attacked and poked if we want it to actually work imo
Discussion
The right way to defend the Nostr is to call the cops on the spammers
You actually think this way?
An attacker just wants to see nostr burn.
If it canât withstand deliberate attack then it wonât last in its current form and we might as well learn where it breaks before building critical systems on it.
You are expecting every attacker to give you the blueprints on a silver platter. We were lucky with Emoji guy
Nostr has been getting spammed for years now and relays still haven't changed
Iâm not expecting anything. Iâm saying we learn from each attack and the more notice we get the better.
The situation nostr:npub1utx00neqgqln72j22kej3ux7803c2k986henvvha4thuwfkper4s7r50e8 describes is strictly better than a scenario where nobody ever telegraphs the attacks in advance. Itâs a common practice in cybersecurity called âred teamingâ and helpful if well intentioned people attack before malicious ones do.
Ok but relays have been around for a few years now and nothing changed except for the terrible WoT concept
There are paid relays and other filtered relays out there. WoT can work as long as youâre not trusting Reply-guy types.
Weâre lucky that Nostr is an open protocol and anybody is welcome to build their own clients and relays on top to filter out the spam. Itâs easy to criticize but most of the devs are building and running this infrastructure in their spare time for free so we should be thankful it works at all honestly.