Alby Hub on my own node seems like the best trade-off at the moment.
Discussion
Yep just need an Alby account and it's done. It is not totally non custodial though as if i'm not mistaken because Alby could potentially steal your sats by generating invoices to their own node but it's a good tradeoff
I think most thing interact with your lnd node like normal. I _think_ that they would really only be able to steal funds when someone uses lnurl or zaps to pay you cu that uses their services. I think...I haven't looked at the code but that's my understanding of how it works.
Yeah exactly. They give you an address and you trust that they generate an invoice for the right node on your behalf. Would be trivial to spot cheating though.
why are they generating an address on your behalf if you have your own node?
i guess I'm unclear on the concept.
Its the way zaps and LN addresses works. There is a web server hosting your address, when the payer pings that by tapping zap or scanning a QR etc, it tells that web server to generate an invoice on the connected node.
If you control the web server, you can control which node you ask to generate the invoice.
sorry
but why dont you run the web server yourself if you have the node online anyway?
DNS etc I suppose...
I was and it doesn't work reliably. LN node at home over Tor > VPS reverse proxy to host my LN address.
Payments went through most of the time, but the actual zap reports in Nostr almost never worked.
You could cut Tor out here and do a SSH reverse tunnel for far better reliability.
Wouldn't I need to expose ports at home then?
No, presuming you have the webserver on that VPS serving up the invoices, you SSH from the node at home into the VPS with a reverse tunnel and the VPS box is now able to hit the node at home through that SSH tunnel, without exposing ports at home.
Know of any guides to achieve this?
hey
just looking at this
https://unix.stackexchange.com/questions/46235/how-does-reverse-ssh-tunneling-work
rough if you try and avoid the cmdline by default 😜
Thanks man. I aim to remain a GUI warrior until my final breath.
there isn't a GUI afaik but tailscale works well for exposing private services in your network without opening ports at home.
In fact you just jogged my memory, it wasn't a Tor proxy I'm using it's this.
ahh yeah that makes sense. I wish start9 had a built-in integration with tailscale.
They've been teasing a network/connectivity upgrade for a while now. Hope it comes soon.
I use it on my start9 talking to lnd on my start9 and it works great. I haven't used it with zaps yet but I hear its easy to set up.
Its easy to set up and receive payments, but Zaps just always fail. Likely something to do with my tor/clearnet routing.
This solution is working well for me:
