Replying to Avatar cloud fodder

Clearly have been gossip too much and I'm no longer sure if by inbox, you mean the nostr DMs or just public comments/events, or both 😂

Many problems with nostr DMs, is why even with auth, most people agree that they suck in current form. There is no key rotation or 'forward secrecy', and a compromise for either parties key, means leak of all messages. Auth is barely a bandaid. Some clients trying to innovate with giftwraps, but I haven't seen this working despite claims it's implemented in coracle and amethyst for 'advanced dms', also not sure about the rotation there. Private groups, those do have key rotation, just in coracle only and unaudited by a security team afaik.
Avatar
Laeserin 1y ago

I use SimpleX.

Reply to this note

Please Login to reply.

Discussion

Avatar
cloud fodder 1y ago

Ok cool, so then yes, for the public events, your plan is a good idea, it's what I would think everyone would want..

and I am simply trying to ask around to see if client devs lives could be made easier by a field in the nip-65 relay list, that clients can show their users "hey, if you wanna message the inbox of this person, here's a link/payment/etc". For some reason they're really stuck on these free access relays for inboxes.. might have to habla.

Avatar
ᴛʜᴇ ᴅᴇᴀᴛʜ ᴏꜰ ᴍʟᴇᴋᴜ 1y ago

free access to relays for pulling only DMs and only ones that have your pubkey on them still needs auth and solves most of the spam problem

Avatar
ᴛʜᴇ ᴅᴇᴀᴛʜ ᴏꜰ ᴍʟᴇᴋᴜ 1y ago

just account the accesses to the paid user npub also on them, or add a database record alongside them that identifies the sender so they are billed to them either way

honestly, giftwraps solve no problem at all

Avatar
Laeserin 1y ago

You're sorta talking over my head, I'm afraid. I can't figure out the auth thingy. Who authorizes who when? I need a diagram, or something.

Avatar
cloud fodder 1y ago

Auth is for controlling reads. Without it currently, anything can be read.

Avatar
Laeserin 1y ago

Ah, yes. Yes, there's no way to limit reads. No way to be private.

Avatar
ᴛʜᴇ ᴅᴇᴀᴛʜ ᴏꜰ ᴍʟᴇᴋᴜ 1y ago

auth is just asking you to prove ownership of a public key

this acts as at least a temporary identity for a session

at best a way to prove you deserve to access privileged data (your DMs)

it is identical in every respect except algorithms to how all password authentication systems work - it's not the password that is stored, it is the hash of the password...

NIP-42 is like CHAP, which is used for dialup and ADSL internet, it sends you a random string, you generate a response, and only teh valid password produces a valid response

Avatar
Laeserin 1y ago

Ah okay.

Avatar
cloud fodder 1y ago

My current approach is, do what it does now for writes (whitelist/payments) with the addition of auth in the coming months, it can also control reads with these same rules. I will also add fine grain acls for kind lists. This should cover everything I can think of. (DM circus and all).

Avatar
ᴛʜᴇ ᴅᴇᴀᴛʜ ᴏꜰ ᴍʟᴇᴋᴜ 1y ago

yep, that's what i'm in the process of building... i also have already got a failover for auth to use it as a secure CLI via DMs, which is part of where my irritation with the lack of NIP-42 comes from - if no NIP-42, then i have to build out a whole second channel to enable secure administration functions and i just refuse to duplicate things for no reason