Subnostr

FOSS is not immune to software vulnerabilities. In fact, clever ABCs have probably seeded "in plain sight" exploits that compromise a user without tainting the open source code. This is the reality we are working with.

Reply to this note

Please Login to reply.

Discussion

uncleJim21 2y ago

What can we do as a community to mitigate this risk?

Ike 2y ago

Generate your own seed entropy

uncleJim21 2y ago

That should be done regardless of fedboi poison pills in FOSS. I want to know what can we do at the review level to detect before an exploit happens or even afterward to patch it

hodlbod 2y ago

Yes, and I think this is especially a risk with something like nostr. When it comes to security and privacy, the worst implementation in use sets the standard. Luckily, there's limited damage you can do to users on nostr.