People look at this and see nothing wrong with using DNS-based image urls or url-based relay hints inside our posts. They are never going to come after our content, right? Riiight?
PSA: The functionality of multiple Fedimint federations is significantly degraded due to severe DNS issues.
It seems to be the case that some federation guardians have an XYZ domain that the DNS registrar has taken over. Freedom One and Bitcoin Principals appear to have one guardian offline due to this.
Unfortunately, despite the server and keys for these guardians being intact, there is no way for the DNS of a guardian to be swapped out after the fact. We became aware of this issue last week and then became aware that multiple federations are experiencing this: https://github.com/fedimint/fedimint/issues/5482/
Given the critical state of these federations, with one guardian out of four being permanently offline, it's essential that if you have funds in these federations, you should withdraw them immediately. Unfortunately, we're unaware of other public federations, so you must withdraw to another lightning or on-chain wallet.
From our experiences, intermittent/connectivity issues can occur with guardians, and this may result in errors if not all three remaining guardians are consistently online. No other guardian of these federations has XYZ or other domains like it. So, if you're having issues, please try again later.
Unfortunately, not much can be done on the Mutiny side, so we're removing the federation setup flow in the UI as a first step. Sorry for the inconvenience.
Discussion
Truth.
What are some alternatives that people can use that work at scale?
Numeric IPs also suck, but may still be less confiscatable than DNS.
CIDs? E.g IPFS? The app could check for a local gateway and fall back to a list of public gateways.
Namecoin?
I like blossom's approach. https://github.com/hzrd149/blossom/blob/user-server-list/buds/03.md
Could do the same with nip96.
IPFS would work as well but I prefer http unless the file is extremely popular
nothing, Nostr is already immune to DNS failures even though it assumes DNS works most of the time
Two of my relays require DNS, and essentially all the shared images and videos I see.
Nostr itself can work without DNS (as long as Tor is up, for my Onion relays), but man, think of the memes?
The memes must flow. And whoever controls the memes, controls the universe.
THANKS TONY
If only Nostr could fix the DNS issue!
nostr:npub1nxy4qpqnld6kmpphjykvx2lqwvxmuxluddwjamm4nc29ds3elyzsm5avr7 are we using DNS-based image urls π
most of the internet uses dns
funny how idk exactly what it is but had to do something to connect this site i built for a fren from (hosting place) to place where he bought domain (namecheap) had to put 4 nameservers on his domain settings
idk what i did exactly but i did it 
Most of the Internet is not trying to replace big tech and the fed at the same time.
I am.
followed π€
You might like our company: https://vaporware.network
Note our GitHub organization name: https://github.com/deathtothecorporation π
when you put it that way it seems like a bigger challenge then just shitposting, zapping, and hodling
How else do you get a name to your link? But before you allow the Nostr FUD to overtake your imagination, know that DNS is actually decentralized. This includes a bunch of dot servers and a bunch of TLDs owned and cared for by multiple entities, jurisdictions and countries. πΆπΎπ«‘
DNS is the first thing countries do when they need to take you down. You just need to give them an excuse and you will lose nostr.build forever. Then none of our links inside our notes will work anymore. In many cases, countries don't even need to go through court to get you offline. I have seen many domains being lost (redirected) in my lifetime. It's super easy for them to go through.
Then donβt use a single domain that relies on the same country. Same as a fucking electric grid. Same as anything for that matter. Why do you think big providers have their NS servers in 3-5 different jurisdictions? Did we learn anything from not keeping your eggs in the same basket? πΆπΎπ€―π€―π€―
I want to know how nostr.build avoids DNS issues. Learning from you. π«‘
We donβt. The links are static and signed in the notes. There is no interest from any sponsoring entities to support any further development in that domain πΆπΎπ€·ββοΈ
Wouldn't it be possible to use nostr itself as a DNS alternative?
Like, create an identity as "static name" and link your public IP to it's profile, done!
Or something like that, idk shit about DNS, most of the time I've no idea what I'm doing.
Where do you think IP addresses are coming from? πΆπΎπ
.sv from El Salvador πΈπ» can be a good place to host wallets I guess πΆπΎπ€·ββοΈ
Yes I think we should have an event kind that allows somebody to cryptographically bind an IP address and port (SocketAddr) to a relay's keypair. But we would need:
1) Relays to have keypairs
2) Nostr to reference relays by keypair instead of by url
3) A means of distributing the binding event (because of the chicken-and-egg problem) maybe just blast them, or maybe a DHT.
It's a great idea for nostr2, so nostr2 won't be dependent on DNS and shoudn't need to be dependent on SSL certificates issued by CAs that nobody really trusts anyways.
We should talk.
This is the same network design we are using at https://vaporware.network
Our open source Operation Function π€ Nostr Relays
True: ThePirateBay, LibGen and SciHub show it can be done, with enough lawyers and money, and customers engaged enough to follow you around as the Feds play whack-a-mole.
Would be reassuring to have other options, though.
DNS is more decentralized than Nostr and IP assigning entities. Even fucking North Korea has its TLD that works πΆπΎπ€―
"A little yes", as my old boss used to say.
95% of the world lives outside the reach of the First Amendment, and 95% of internet users use their ISPs' regulated DNS server.
Countries like Australia and France DNS-poison as a matter of course.
1.1.1.1 and 8.8.8.8 are win, but outside our circles they are little used...
For sure. Because there are so many resolvers out there, itβs mind boggling πΆπΎπ€―
Good luck teaching my mum how to setup custom DNS resolver on her own.
(I've tried. And she has two university degrees, and cares about freedom.)
Nostr.build will survive a DNS takedown, like ThePirateBay did. But that's only possible with a tech-savvy and motivated core audience.
Give your mum this link! πΆπΎπ«‘
Doesn't Blossom fix this?
Iβd be more concerned about registrars. There a shit ton of crap ones out there. Still using Gandi myself. But Iβd love to hear what others use in a privacy mindset. I know they were acquired and may not be the company they once were. They still beat the hell out of most IMO.
Use multiple with multiple TLDs. One is always vulnerable πΆπΎπ«‘
If you are using the Brave Browser, centralized DNS is not a problem anymore.
To get a STATIC content, just type on the url bar:
ipfs://[hash-here]
To get a DYNAMIC content, just type on the url bar:
ipns://[pubkey-here]
The great news about this is that we can use nostr pubkey for this self-signed certificate!!!!
More info here:
I'm just glad these issues are happening so that devs figure out solutions.
This is an actual problem.
We need nostr-addresses, a la tor hidden addresses.
No reliance on traditional DNS. Make our own.
This is what I meant before about hosting "nostr-based websites".
I woild query a relay, and the relay would check a routing table of sorts, and send me the correct way.
Handshake amongst others are working on decentralized DNS. A fork of Bitcoin. https://www.youtube.com/watch?v=h505L7A_Z8g
I think the more likely threat is for content hosting companies like nostr.build to start posting banner ads &/or trackers over everyone's memes. As far as state level attacks It would be far more difficult to censor if we all just hosted on our own domains. Kind of like removing one raccoon in your attic versus an entire termite infestation. A custom domain option from companies like nostr:nprofile1qqsfnz2sqsflkatdssmeztxr90s8xrd7r07xkhfwaa6eu9zkcguljpgppemhxue69uhkummn9ekx7mp0qyt8wumn8ghj7un9d3shjtnddaehgu3wwp6kytcpzamhxue69uhkummnw3ezuendwsh8w6t69e3xj7srn6f7x would be something worth paying for once people realize the value in "owning the path" to their content. It would also protect consumers from outrageous rate hikes because they would be able to migrate their content and keep past notes true.
Example:
Last chance, follow me to follow you back . Iβm serious