Been away for a while, what's the general of status of moderation nowadays ? Have some relays implemented some kind of relay-sided moderation features or is it still the wild west with paid relays having less spam ?
That's also a problem with the GDPR (european data privacy and stuff laws), which I think (not a lawyer) impacts at least relays hosted in the EU.
The HTTPS certificate needs to correspond to the relay's domain and be signed by a valid entity. But I wouldn't be surprised if chinese software had a Governement-issued root certificate authority, which means the gov could craft certificates that'd be "valid"
Yeah, I'm unsure how that could be implemented, unless you're (like SSH haha) encrypting the client<->relay comms (which might also be on top of HTTPS, as most relays run websockets over https) using the server's "known" pubkey
Is this in order to make sure a proxy relay wouldn't shadow ban the user or filter what they receive ?
I guess we could draw inspiration from SSH on that one, storing the server's pubkey the first time we connect there and then make the server answer a challenge every time we connect. But anyone can connect to a relay (without trying to pose as it) and listen to public events
The only thing preventing making an instagram-clone built on nostr is the image hosting situation right now 😂