Nostr Web Client

you are essentially stopping users from being able to use DMs properly with this "security model" of yours, you know that, right?

ᴛʜᴇ ᴅᴇᴀᴛʜ ᴏꜰ ᴍʟᴇᴋᴜ 11mo ago

and yes it is a privacy risk... the data gets decrypted into the app's memory and some XSS breach would allow cleartext of messages to leak

yes, it is!

but by proactively preventing people from doing this by refusing to do stuff like - not encrypting the configuration, you make it really hard for users to have another choice than the one you have forced on them

Reply to this note

Please Login to reply.

Discussion

ᴛʜᴇ ᴅᴇᴀᴛʜ ᴏꜰ ᴍʟᴇᴋᴜ 11mo ago

i log out, and i have to go through all the configurations to re-enable proactive auth and all that other shit and it's the one thing that i hate about nostrudel, and this is the root of it