How come they are not decentralized? They are all over the globe...you can fire one up right, put it behind Tor and that should do it. Am I wrong? nostr:npub1f6ugxyxkknket3kkdgu4k0fu74vmshawermkj8d06sz6jts9t4kslazcka
Discussion
Because each relay has a single known controlling individual. A single KYC’d throat to choke.
Distributed isn’t decentralized
words of wisdom! we need true p2p and this requires some sort of content filtering. fortunately there is a way: #peercuration https://github.com/baumbit/peercuration?tab=readme-ov-file#peercuration
Well.. I don't fully get it. No central point of control over Nostr network and protocol is to some degree centralization I think.
1984.is hosting is your friend :) non-kyc hosting and other cloud services you can pay for with btc or monero and access only via tor.
✊🏼
Better than nothing, sure. But why do you think the hosting company will not take the relay offline if demanded?
Why do you think they will not deliver the IP addresses of the poster’s npubs, if demanded?
Centralized hosting providers are also one throat to choke.
Yes they will comply with a court order if they lose appeals but they won’t know who their customers are.
There are configurations and Debian packages that keep your servers from logging ip addresses and other PII.
They might not know who their customers are. But they can take the service offline or they can spy on the users if they want to or are compelled. You won’t know because you can’t verify. This is why I’m saying that the service isn’t decentralized.
There is nothing preventing this, but someone has to do it. And someone will, at least when the attacks starts. We could go even further though… and will need to integrate #peercuration
If it’s not “private by default” then can it ever be safe for regular users?
Or does a newbie introduction to nostr now require a lesson in VPNs and onion routing?
Relays can track IPs. This does not mean they are not decentralized. Use a VPN and/or Orbot/Tor. I agree with nostr:npub1wmr34t36fy03m8hvgl96zl3znndyzyaqhwmwdtshwmtkg03fetaqhjg240, we need to advertise the onion and dns addresses of relays and have and normalize relay setups that use onion and Tor by default.
Thx. I thought I lost the meaning of decentralization means. I agree with the rest and great that discussions are taking place.
Distributed isn’t decentralized. The only reason this is debated is because nostr hasn’t faced any real attacks yet.
You seem to be saying that the solution for average folks is to understand onion routing and use VPNs. That seems unlikely and impractical. For average folks, if it’s not safe by default then it’s not safe at all.
Im pretty regarded and even I can use a VPN and Orbot/Tor. Heck I can even use Tails and TOR.
But yes Nostr should be more secure by design. More to the standards of #Monero which is so secure and easy that my Grandmother can use it and be safe.