Nostr Web Client

I compared a few key signers, did a little side-by-side on them. What really surprised me is that some browser add-ons just store the user's nsec in plain text right in the browser's local storage, where it could be read by other add-ons!

No such problems with #NoorSigner, since it runs locally in the file system and talks to the #NoorNote client over Unix socket IPC. That said, it came out that NoorSigner was using the weaker XOR encryption instead of the more secure AES. And I fixed that up today, it'll be in the next release, insh'Allah.

mister_monster 2w ago 💬 1

What all desktop key signers did you compare?

Reply to this note

Please Login to reply.

Discussion

[ mslm dvlpmnt ] 2w ago

I’ve added key.band later on because somebody mentioned it. But that’s all for now. I basically just did this comparison to see if there are maybe some good practices I might've missed when implementing NoorSigner.