Maybe it’s time for nostr communities to… chat on nostr? Is it in the cards for Damus to support public and private group chats? #[8]
Discussion
Would def move / mirror our telegram group chat over to Nostr.
Had support for that but people complained the chat view was confused so i removed it
I think so too. Unfor looking to github reveals that public and private group chats still need a quite lot of work. So they might not work until long time - like a month 🤣
Keen to see this, maybe in a separate app? I think it could steal market share from slack and discord, there groups just want simple team/group chats.
* where
Something like this? https://thearcapp.com
Needs a lot of improvements.
I dig it. 😯😲
I don’t know what it is, but I dig it. 😌🤙
Something like, yes. I’m running the TestFlight build, but it seems to have stagnated.
Anigma is a telegram style client on nostr, but pretty sure it had security issues re: keys being leaked or something along those lines
anigma is a most definitely a scam. it leaks your privkey on *purpose* and overrides your lightning address
If that’s true, then it’s unfortunate that nostr.com is apparently built on Anigma?
If you go to anigma it does show a disclaimer at the top telling you not to use a private key you aren’t comfortable leaking. I’m curious why they would put that disclaimer up there and not just fix the issue.
Looks to be #[10] repository on GitHub. He’s only on 3 relays here so not sure he’ll see this.
The creator quit supporting it after a bunch of security vulnerabilities. It's a shame, but this is voluntarism warts and all. https://twitter.com/super_testnet/status/1604973673836056576
Afaik the creator was not a javascript front end expert.... it was vanilla js in page and a fun experiment. I don't think it was intended as a scam.
All solutions are temporary until we can keep our private keys truly secure instead of having to input them into clients.
More people should checkout NIP-49, encrypted private key import/export. So far the only client I know that implements this is the Gossip client by #[13] Worth checking it out.
It's fairly trivial to fix anigma: escape innerhtml and implement window.nostr, so that it doesn't need to store any private keys. I'm not sure why no one has done it, maybe I'll do it this weekend.
rogue code can still decrypt your dms if the plugin is set to auto-decrypt
how would it override a lightning address? :|
Does anigma only leak if you are attached to it?