Can someone explain to me why the #primal client recommends that "You can improve your account security by installing a Nostr browser extension, like Alby."
...& that Alby says that "It is not recommended to sign into a Nostr client by pasting in your private key. It is insecure."
Thanks
#asknostr #grownostr
Hey Jason, good question!
Exposing your nsec with various Nostr clients might expose your keys to a risk of doxxing it and you need to trust all of them.
Alby is an open-source app (so you can see what happens with the keys) that runs in your browser, signs nostr events offline and then uses Nostr with your nsec without ever sending the key through the web.
Thanks for explaining. That helps.
