Some security researcher guy in Colorado is spamming the network with gigabytes of posts because he "cares about the network" and has no gf, meanwhile Nostr devs are saying "web of trust", "proof of work", "zaps" on repeat while users are saying "how do I get this spam out of my notifications?" Then they say "just delete all your relays and stop talking to anyone go outside this is fine"
Discussion
Ok I thought you were talking about an actual Bitcoin issue there.
I want client devs to give users tools to filter on NIP05s. They don’t want to because it’s not a perfect solution.
It adds enough friction to solve ReplyGuy with onus on NIP05 providers or mass blocking his owned domains but it’s not perfect enough so rather than give us the imperfect tools and tweak with feedback they just let us deal with a maelstrom of shit instead.
They’re pissing me off a lot more than ReplyGuy is. Won’t be donating to the previous class of devs again based on how they’ve handled this.
Love this idea… there are a few Nip-05 domains I would block off the bat if I had the ability.
It’s the easiest way to empower users.
Empowering Users isn’t in the client devs repertoire any more though..
Are there no clients that do this? nostr:npub1n0sturny6w9zn2wwexju3m6asu7zh7jnv2jt2kx6tlmfhs7thq0qnflahe are there any downsides to implementing this on nostr:npub1n0stur7q092gyverzc2wfc00e8egkrdnnqq3alhv7p072u89m5es5mk6h0 ?
It’s probably useful to mute/block non-spam by nip05.
But for spam or attacks its a losing game, attackers can change nip05 very fast, and when you receive a post you have to first get the kind-0 profile, then check the domain, those are “expensive” checks and with spam you want to do as little work as possible.
With WoT you can discard a post almost immediately without even checking the signature. Proof of Work on the pubkey is also a very fast check but this has other problems.
So far I have not found other solutions that don’t require the defender to do more work than the attacker but thats the type of solutions I prefer to implement.
Domain names cost money. Mastodon is not spammed in this way because domain blocking works, and it is less work than the attacker. Checking nip05 isn't even that expensive.
Plus how is WoT not expensive? You have to fetch a bunch of kind 3s and build a social graph.
only has to happen once and can be done in background or when phone is charging overnight, updating also. When posts come in you just check against a set, its instant.
But its different for a mobile client vs when you are managing a server, I can see that
spot on 💯. I had to remove few relays until it is fixed ( 😮💨sadly). Whilst reply guy is gone I can still see a lot of spam bots on my feed. 😞
But your observation is on point. If I may add, some suggested IP based solution which threatens those innocent users who are using VPN! 😬🤓
You forgot “we’re still early”
Thats a Nostr problem not a bitcoin problem. But also, I'm not seeing any of his posts on my client.
Me either
“has no gf” 😂😂🤣🤣
…🥹🥲🥺😭…💔💔💔💔