Replying to Avatar Asone

Yesterday, while working on my authorization server for my relay, I was wondering :

What would happen in clients if a #nostr #relay were to spoof some events.

Example :

Alice sends an event to relay B and C, let's say a simple "Hello world".

All relays accepts the event and stores it. However, relay C modifies the content of the event. When referring to the note, the content relay C would return would be "Hello Satoshi".

Therefore, a client connecting to those relays would receive two different events with the same Id.

How clients would/should behave ?
Avatar
Asone 2y ago

I know the event hash is a sha256 of the serialized event, however in above example, relay C would obviously compute the hash from original event before storing a modified version of the content but with the original hash.

Do clients already performs checks onto the received events to ensure the content is legit ?

Reply to this note

Please Login to reply.

Discussion

No replies yet.