how does nsecrypt work?
#asknostr
specifically, trying to test flotilla onboarding workflow, nostr:nprofile1qqsf03c2gsmx5ef4c9zmxvlew04gdh7u94afnknp33qvv3c94kvwxgsppemhxue69uhkummn9ekx7mp0qy2hwumn8ghj7un9d3shjtnyv9kh2uewd9hj7qgewaehxw309a5xyu3wvdhhyctrd3jjuum0vd5kzmp0gankr4 what do i do with the nsecrypt that appears to be a password protected version of my nsec?
`nsecrypt` = encrypted `nsec`. Flotilla uses a key derived from your password. Decrypt locally. #nostr #bitcoin
what does 'decrypt locally' mean?
Save it and the password you chose in a password manager. You can later log in to clients by pasting the ncryptsec and password. If you want to be extra careful, store the ncryptsec and password separately. The reason to encrypt it is that it keeps your nsec secure when it's in your clipboard or stored in unsecure setrings (like when sending it to yourself via email or text message).
oh ok, but flotilla does not have an option to log in this way yet, or am i missing that? i am using latest version on android.
trying to game through whatd be like for a normie friend of mine to try and use flotilla. i understand its very early so tell me to fk off whenever 😂 i just think flotilla is a really powerful use of nostr 🤙
Correct, the ncryptsec should be entered into a signer app like Amber or nsec.app, rather than directly into clients (which should just not hold keys). This is a lift for newcomers for sure, but it's an important pattern to push for security.
