Seriously who the hell is behind this? 🤬
Not happy about this as I’m sure others aren’t.
#asknostr
#damus 
Discussion
Dude! WTF!
Exactly! I think I’m going to leave Nostr for a while due to this!!! 🤬
Hey I don't know you, but before you go.
Tis is not a problem with nostr.
Lists like these are constantly being built and sold behind closed doors, except those lists have a lot more nightmare fuel and end up in the hands of things worse than what lurks on darknets.
It's a design flaw in the Internet.
nostr is just being transparent about the problem.
So um.. The only real solution is to leave the Internet and enjoy IRL, at least until a replacement emerges.
Hope it helps. :-)
Someone did something like this last February too. They made a note where when you clicked on it, it would tell you your IP.
The data is public 🤷♂️ I’m not technical enough to know what should be done other than to use a VPN
Think it was this event from January 10th last year. Conclusion last year.....Use a VPN online. It's not 100% perfect, if someone really has skills but at least keeps a certain amount of distance between you and a potential snooper.
Check out the user post from January 10th 2023. Easy to scroll because he only has a few posts. It still works. You are seeing your own IP/data. It isn't doxxing you to others only to yourself. If you change your VPN server it will reflect in the IP address dynamically.
nostr:npub1hrc008qk3rvteut0xvazc4sh5tpex4rfew75an3e3pttrglhamsqnw648j
nostr:npub1sn0wdenkukak0d9dfczzeacvhkrgz92ak56egt7vdgzn8pv2wfqqhrjdv9 uses Tor to connect to #nostr and hide IPs/location.
I do sometimes but nostr becomes quite slow :(
Cannot use Tor on IPad
But you know, this is pretty much the norm nowadays: every fucking website, every pixel and cookie is tracking you. This bot only makes visible, but it a sad state of the internet. :(
Remember #nostr is extrimly public, and it's safe to assume that other places are too, BTW: you favorite news website, some useful forum, popular social network.
At the minimum I would review the list of relays that you are connecting. By connecting to a relay you are implicitly trusting the admins that they don't use your IPs.
You could use the free version of proton VPN at the bare minimum to hide your local IP from publically available info.
I don’t think I can in Oz
What about Tailscale?
Never heard of this Corn, will check it out now thanks 🙏💜
I think it lets you connect up to 2 (or 3?) devices on the free plan. I hadn’t heard of it either until I setup an Umbrel bitcoin node. It’s available as an app on Umbrel so you can remotely connect to your node.
is this why snowden stop posting here?
Probably and I wouldn’t be surprised
No nostr:npub1sn0wdenkukak0d9dfczzeacvhkrgz92ak56egt7vdgzn8pv2wfqqhrjdv9 uses For, no IP leaks possible
*TOR
🤔 so everyones gotta use TOR now? will that work with every client? hope this gets fixed soon
#Amethyst has a Tor option in the settings 🤔
are you using it? does it make the client slower?
Using it now, no noticeable difference ¯\_(ツ)_/¯
In fact I might say it was faster lol
But please remember I am an idiot
im gonna buy a hobo android today then, if im not feeling lazy
I would imagine the iOS clients will do similar if they haven't already? 🤔 Again, I am totally clueless
Can’t use tor with iPhone or iPad
Ah. I did notice looking at snort in the brave desktop browser it has an option in the URL bar to open in Tor. But didn't seem to work for me (I probably just don't know how to use it)
maam you gotta throw away all your apple devices lol nostr is only for nerd b!tc0in3rs that uses android device/s on grapheneOS on TOR
No, please I love my Apple devices! 🥹
Marie, use this it has tor https://apps.apple.com/us/app/fully-noded/id1436425586
I've also been using the Tor/Orbot option on Amethyst since yesterday and haven't noticed any slowdowns.
It makes image loading Sloooow, but text is the same
is this ip leak from relays or client?
this is a very serious crisis. cc devs who might wanna help nostr:npub1xtscya34g58tk0z605fvr788k263gsu6cy9x0mhnm87echrgufzsevkk5s nostr:npub18kzz4lkdtc5n729kvfunxuz287uvu9f64ywhjz43ra482t2y5sks0mx5sz nostr:npub12262qa4uhw7u8gdwlgmntqtv7aye8vdcmvszkqwgs0zchel6mz7s6cgrkj nostr:npub1gcxzte5zlkncx26j68ez60fzkvtkm9e0vrwdcvsjakxf9mu9qewqlfnj5z
nostr:npub1gcxzte5zlkncx26j68ez60fzkvtkm9e0vrwdcvsjakxf9mu9qewqlfnj5z is one dev who's telling everyone this right up front.
https://github.com/vitorpamplona/amethyst?tab=readme-ov-file#privacy-on-relays--nostr
Why is this news? It's 2024 and people still don't know their IP is public? Follow nostr:npub1f6ugxyxkknket3kkdgu4k0fu74vmshawermkj8d06sz6jts9t4kslazcka FFS.
dude this is so arrogant, I know my IP is exposed to relays. point is why tf this info could be sprawled by another bot?
because clients load images. People can DM you with an image and it will know you loaded it. One thing we could do is not load images from non-friends.
It's not arrogant. It's very basic privacy. If you don't hide it, it's out there. Bots will crawl it. Nature of the beast. No, it's not "right" but it's always been a fact. I'm just seriously shocked at all the surprise about this. Hide your private keys or you'll get got. Hide your IP or you'll get got. Same.
Emotionally, I feel you. It's a violation. I understand. But bots were grabbing your IP 30 years ago.
for starters I think you should disconnect some suspicious relays, I see 20 in your list
Reminder to use a VPN whenever possible.
nostr:note1xz9dafwst8q9r0cdtgdsc37nzrz2nqyunha6y8aaj2nqmufrzs0q8hq85m
This is not new to me. I already expecting this is going to happen anytime.
Well, This is why i connect
#nostr behind
#bostr proxy instead.
If you have an unused server, Put
#bostr and make your nostr client connect to it. It's really worth a time.
nostr:note1hkctdngsw7aurf36daqn6xuqvjpqleazv6l5tzl8q0j5hsawk7ysjupt3w
It was me 🙏
Can set up mullvad vpn and use sats to pay for it pretty easily.
1. Go to mullvad.net and set up an account.
2. Download the Mullvad app if you’re using a mobile/iPad etc and use the a/c number from step 1.
3. Go to https://vpn.sovereign.engineering and choose the “HECK YEAH” option of buying a voucher without logging in.
4. Buy the voucher using sats and then WRITE down or COPY the voucher code.
5. Go back to your Mullvad account and under the “Account” section choose “Add time to your account”. Choose voucher, enter the voucher code you wrote down/copied.
6. Done.
7. Shout out on nostr when you get to the part of choosing a country/server to use on Mullvad as it’s a bit headfuk the first time.
8. :)
Have we confirmed how this was done yet?
Direct message with an image hosted somewhere the sender can check logs seems most likely?
Or someone operating a relay you're connected to - but that's a given.
Pretty sure the solution involves onions.
it's not relative to nostr, IP protocol is open and available to everyone that connect to their server, everyone with their own relay can see that information the same as any other internet service(website, any app, etc), it's why better to use VPN or any proxy, they still will have your IP but in this case they will have only VPN's ip address
Wow someone's telling people my VPN providers IP address?
