If you can delete your notes, then guess what, you can be censored and even banned almost. Because if you can delete notes in your client, your client can to, and doesn't need your permission.
Discussion
💯
Just beware of the silly stuff! 🔫
I am not at all trying to show distrust for our devs, but what happens when an untrustworthy dev comes along? Also as the plebs say, Don't trust, verify. GN 🫂
Using a signing app, like amber, I can refuse permissions to sign delete events.
Yeah, but are you really going to manually sign each event in your client? Also what happens when new people join, and don't understand this stuff.
You don't manually sign things, Amber does. I would just set it to automatically refuse delete requests. Alternatively, just run your own relay, and set it to not delete.
New people will have to learn, just like we all have.
Yeah, but how much you trust your signing app? I don't know just a thought.
nostr:nprofile1qqs827g8dkd07zjvlhh60csytujgd3l9mz7x807xk3fewge7rwlukxgpz4mhxue69uhhyetvv9ujuerpd46hxtnfduhszrnhwden5te0dehhxtnvdakz7qgswaehxw309ahx7um5wghx6mmd9usjfpck is trustworthy I think, plus Amber is open source. Giving a single app my key, instead of all of them, results in less attack surface for my nsec to be exposed.
You should follow nostr:nprofile1qqsyawyrzrttfmv4cmtx5w2m85702kdct7hv3amfrkhagpdf9cz46mgprpmhxue69uhkv6tvw3jhytnwdaehgu3wwa5kuef0qy3hwumn8ghj7enfd36x2u3wdehhxarj9emkjmn99ulkwmr0vfskc0tpd3kqzythwden5te0dehhxarj9emkjmn99ue3v4az and read everything she posts about security and privacy.
I'm not doubting that, still just saying it's less safe overall and could cause issues down the road. I will have to look into Amber again, thanks for the suggestion.
Not wrong, privacy and censorship resistance are at odds with each other, the same is the case with bitcoin, but atleast both of them have one thing in common: All data is collected against a pubkey.
You don't have to tell the world that your meatspace identity is the pubkey, or have different pubkeys for different jobs.