Replying to Avatar hzrd149

how dose someone spam a fake zaps? is there a bug in another client or are they just publishing unpaid zap receipt events?
Avatar
Derek Ross 2y ago

some clients do not validate that a zap actually happened, they don't verify signatures.

Reply to this note

Please Login to reply.

Discussion

Avatar
hzrd149 2y ago

but the zap receipt is not created by the client, the LNURL server is the one to publish the zap receipt when the invoice is paid

93
931debbe... 2y ago

From NIP-57: "The zap receipt is not a proof of payment, all it proves is that some nostr user fetched an invoice. The existence of the zap receipt implies the invoice as paid, but it could be a lie given a rogue implementation."

So all you need is a rogue lightning node.

Avatar
hzrd149 2y ago

yeah, or a user pretending to be a lightning node posting fake bolt11 invoices :)

Avatar
thesimplekid 2y ago

Does amethyst? It didn't at one point haven't checked in awhile

Avatar
Derek Ross 2y ago

Trending on Primal won't load for me so I can't see any notes that are trending to compare. Do you know of one?

Avatar
Derek Ross 2y ago

Yes, it does.

Avatar
QW 2y ago

Wait… so you’re telling me my “sats in the mail” are never coming? 🫠🫠

Avatar
Dimi 2y ago

🫂