Nprofile is an npub with the possibility of embedded relay info
Google has made passkeys the default sign-in option for all users, as part of efforts to move towards passwordless authentication. Passkeys enable users to sign into apps and websites using biometric sensors, such as fingerprint or facial recognition, PIN, or pattern. They are phishing resistant, more secure than passwords, and remove the need for multi-factor authentication. The shift towards passkeys is part of a wider industry trend to reduce reliance on passwords. #CyberMonth #Passkeys #PasswordlessAuthentication #BiometricAuthentication
https://www.infosecurity-magazine.com/news/google-passkeys-default-sign-in/
Not until I can use passkeys on my luggage.
https://eden.nostr.land lets you enter your pubkey and displays a invoice as QR code after selecting your plan.
I'm not saying it's a bad flow. It's a good start and amazing that we can do this with uncensorable cash, however it's not a single tap or a long-press and another tap. Imagine a profile with a note for each plan saying how much to zap. I must be missing something.
Anyone know the skinny on bluewallet? Bluewallet.io
Very nice. I just meditated in a park and had a big lunch. Someone is sitting too close to me but I'm making peace with it.
Your heart will be touched by someone special this week.
The best kinds of truths are the uncomfortable ones. 🫠
Malicious in the sense of surveillance/phishing. So say someone sends you an email with a link pointing to `/notes?relays=wss://bad-relay.com/myemailinbase64`, you click on it and your client auto-signs an AUTH challenge, bingo bongo they have correlated your email/pubkey. Basically an injection attack. As it happens, nostr:nprofile1qqs8hhhhhc3dmrje73squpz255ape7t448w86f7ltqemca7m0p99spgpp4mhxue69uhkummn9ekx7mqprpmhxue69uhhyetvv9ujuumwdae8gtnnda3kjctvqythwumn8ghj7enfd36x2u3wdehhxarj9emkjmn9keq8hx pointed out that this is already possible using nprofile/nevent 😬
Somewhat related, can correlation also be made between contacts and subscription filters? I'd love to know more about the client relay connection.
Malicious in the sense of surveillance/phishing. So say someone sends you an email with a link pointing to `/notes?relays=wss://bad-relay.com/myemailinbase64`, you click on it and your client auto-signs an AUTH challenge, bingo bongo they have correlated your email/pubkey. Basically an injection attack. As it happens, nostr:nprofile1qqs8hhhhhc3dmrje73squpz255ape7t448w86f7ltqemca7m0p99spgpp4mhxue69uhkummn9ekx7mqprpmhxue69uhhyetvv9ujuumwdae8gtnnda3kjctvqythwumn8ghj7enfd36x2u3wdehhxarj9emkjmn9keq8hx pointed out that this is already possible using nprofile/nevent 😬
AUTH doesn't seem widely used. Do clients sign them automatically?
Nostriches, you know what to do.
Now if I could just get everyone else to do the same!
Lots of opportunities for those who can plan and make simple budgets :)
https://cointelegraph.com/news/bitcoin-asic-manufacturer-bitmain-pauses-employee-salary-payments
Pause your payroll if you want payroll
Only if you ride max leverage with zero down variable rate like a degen. If you go fixed rate reasonably levered it's just fair play.
As chicks they make a fun warbling sound
Did a calculation once on how many web requests you could serve for a satoshi and it came out to like eighty-seven thousand. Look at us zapping all this internet power around like nothing!
Who likes Russian jokes?
bitcoin has a network, banks do nyetwork
Who can you trust
And who are your friends
Who is impossible
And who is the enemy
- LCD Soundsystem