Nostr Web Client

I mean... I guess... People use passwords anyway so I don't see this as a huge ask?

And maybe I'm out of the loop, but what exactly is the "pants crapping" that's happening about deVine?

Nah, nsec is like the password for your Bitwarden or 1password, it is much more than just a password for an individual social media website. And if you have a lightining address it is like throwing your credit cards in the mix as well, you simply shouldn't use it on experimental clients (which is most of Nostr). Yes, reusing your Gmail password on vibecoded sites is bad, and this exactly why people shouldn't do it. The problem is the path not to do it in Nostr is broken.

TL;DR on deVine is that press and some big timer YouTube channels like Linus Tdch ztips got wind of it and a gazillion folks tried to join at once. Basically too many users / too heavy of a worjload for existing relay software and available relays. There was a room with the usual folks trying to provision relays for it (Gleason et all) but if you don't have the infrastructure for the normies to flock in all of the hype is wasted.

Reply to this note

Please Login to reply.

Discussion

Cykros 2w ago

If you have a lightning address...with NWC.

An nsec that you use with separate lightning wallet to pay invoices just controls your online identity, not your money. And NIP-05 is supposed to address that possibility, but admittedly it doesn't seem to do it the best.

Anthony Accioly 2w ago 💬 1

The main problem is that a lot of Lightning, ecash, etc. wallets allow you to associate an nsec to unlock the wallet. Not many people pasting their nsecs into random vibecoded apps are security-conscious enough to use a separate Nostr key, so if one of those vibecoded apps leaks nsecs, you can pretty much scan the respective lud16 for half a dozen popular wallet domains and, more likely than not, hit the BTC jackpot.

Cykros 2w ago 💬 2

Oh yea, if you're raw dogging your nsec around like that, good luck.

The more I've looked at NWC the more I think I'm just going to keep paying the invoices manually with my existing lightning wallet. It was annoying when I was using speed wallet but now that I can see who zaps me using Zeus I'm pretty content with the flow as is. A little friction with the flow of money is often a good thing.

ZEUS 2w ago 💬 1

You can send zaps out with ZEUS with NWC in our next release. No need to reveal your nsec to us.

Receiving remains the same.

Rich Nost 2w ago 💬 1

What are the trust tradeoffs when choosing a nostr relay for NWC? What information about my node am I giving up to relay operators or assoiating with my npub?

ZEUS 2w ago

Only what you broadcast publicly. You use a new key pair for each NWC connection..

Cykros 2w ago

I did hear that and will be taking a look, but not actually sure it's something I'll be using regularly. I sort of like a bit of friction in sending money -- call me old fashioned.

But I do appreciate y'all giving us options :-).