Nostr Web Client

I see, I probably should’ve worded it better. I felt like app permissions and bad encryption practices fall into this bucket, cause if attacker gets a hold of your server or orchestrate a MITM attack, they’ll be able to get their hands on stuff users wouldn’t want them to.

brito 9mo ago

As rule of thumb, never store private keys in plain text and always aim to have them decodes at the client side.

Assume everything will be leaked. There is always a balance between usability and privacy.

The only thing private on NOSTR tends to be private messages and the private key.

Reply to this note

Please Login to reply.

Discussion

No replies yet.