For now just assume they're not very secure
there's really no good devices out there that can perform the operations needed
you can pick a vendor and just trust them
For example you can choose Alby or something
It's the best we have for now
it only works so well
as long as people keep using these fake instruments then we have a lot of fake Bitcoin running around diluting the value
But because it's so easy to self-custody and so trivial to transfer globally that's never going to be a solution that works for the attackers
It's a limited attack and there's really no defense against it except just to make Bitcoin work better and be easier to vault
That's the kind of straight up competition that the Bitcoin community is really good at
pineal gland
if i can't execute a simply elliptic curve multiplication with my stored private key, i am forcing some protocol developers to *not use my smartcard*. smartcards and webcrypto apis must support multiply/tweak. optionally they can also support higher level and safer signing operations. but to *fail* to support lower level operations they are inviting disaster. (no schnorr sigs? paste a private key. no verifiable secret sharing protocol? paste a private key . no key-export-to-pubkey feature? you guessed it.)
#[0]
ultimately, it's not safe to put your private key anywhere. it should live on a yubikey or something and never leave unless explicitly exported to another public key (using a cert that verifies the hardware). but browsers and smartphones simply have shitty support for talking to device keychains and hardware devices. and a lot of this failure is caused by the cryptography community with increasingly opaque and bad standards (won't let me do a dh operation, because i might do it wrong)
so we all just paste private keys.
the entire cryptography community got something very basic wrong when X.509 came out
it's the same thing they get wrong when it comes to password security
every time you try to prevent users from using the gun you made to shoot themselves in the foot, you inevitable create a new class of users that just makes their own gun from scratch. which is arguably much more dangerous.
good example: frequent password changes lead to people making easy to remember passwords with minor differences on the end. or writing them down. or sticking them all on a notepad doc on their machine
better solution: require very long passphrases with no special characters. long == hard to break.
my first nostr project: https://github.com/earonesty/snostr
Agreed, without THC, it's just useless
fbi just announced that it was "most likely" made in that lab
you can request deletion from relays using a signed request with your private key. most listen.
you won't lose any of your followers tho, since you have the same private key
he should loading his old private key in iris.to and seeing what happens. i bet he gets a lot back
also, make a backup of your private key. if your're relying on a single app to store 100% of your identity, ngmi. just load it into a web app too or alby or something.
its not possible to delete followers as long as your pubkey is the same
how is it possible not to have your private key on like 4 devices by now?
that's the tags thing. i think there's already a NIP for that
no new messages needed. just a NIP so everyone does it the same way. will write one up if anyone cares and if #[4] thinks its worth doing
i wrote a proposal for it a while back: https://github.com/nostr-protocol/nostr/issues/129
wait, hold up? you didn't before? i've been using images on android/web for a month now.
most problems (especially those not resolved with diet and exercised) are caused by chronic infections. many cancers, likely alzheimer's, event heart attacks (look it up!).
but ultimately that's an immune system issue. we are exposed to pathogens throughout our lives. as we *age*, our immune system weakens then it all starts killing us. sure some people are born with weakened systems, and others were exposed to chemical damage. but most of us simply accumulate damage to the immune system as we age.
you can't fix that by "being exposed to less pathogens" or "training your immune system in advance". (masks, vaccines)
you can't fix it with diet and exercise. (it helps, but it's not a cure)
those are nice short-term solutions
the correct fix is to "rejuvenate the immune system"
that's the only long term and permanent solution