Replying to Avatar Tim Bouma

#dnspub enables instant global DNS resolution (except for Turkey) of your npub info. If you have published a kind 0 event for your [npub], the corresponding URIs become globally available within seconds (except for Turkey)

_nip05.[npub].npub.dnspub.xyz

_lud16.[npub].npub.dnspub.xyz

_nip05.[npub].npub.dnspub.xyz

_name.[npub].npub.dnspub.xyz

_display_name.[npub].npub.dnspub.xyz

_website.[npub].npub.dnspub.xyz

_banner.[npub].npub.dnspub.xyz

Why is this a big deal? DNS is baked in at the OS level, so without any additional software, it's possible to find out info about any npub. For example, the npub of nostr:npub1a2cww4kn9wqte4ry70vyfwqyqvpswksna27rtxd8vty6c74era8sdcw83a - resolvable everywhere (except for Turkey)

Avatar
Thomas 3mo ago 💬 2

Can we do DNSSEC?

Reply to this note

Please Login to reply.

Discussion

Avatar
Tim Bouma 3mo ago 💬 1

It actually does DNSSEC for the root domain dnspub.xyz and then I do a hop to an insecure subdomain ‘npub’ which is under my control. All of the DNS resolvers, do the DNSSEC check and are ok to continue to resolve. I plan to add in the RR_SIG record, but that’s a heavy lift in getting it right, but possible and the goal!

Avatar
SwBratcher 3mo ago 💬 1

I like the naming conventions you landed on. Clean and to the technical point. 🤙

Avatar
Tim Bouma 3mo ago

It’s generic enough that if you want to slip in your own additional profile data, say, geohash, it would be immediately available as _geohash.[npub].npub.dnspub.xzy

Avatar
Tim Bouma 3mo ago

I'll be enlisting the help of a DNSSEC OG to get the DNSSEC all the way to the leaf.