agreed. if a friend hands me a quarter, i'd probably chuck it in a wishing well
if a friend zaps me 1k sats, i will smile
i just zapped myself
are we allowed to zap ourselves?
just bought a chipotle gift card with lightning
many of you know this,
but you can use https://btcmap.org/map to check where you can spend your sats, in the real world! π₯³
(for the new users)
is all you need. send them some real cash. that's it.
most people get turned off and think we have a hidden motive if we present bitcoin like a religion
no need actually. anyone, if someone hacks pomcan_1, they can't do anything useful with the lightning address, besides send you more money π€ͺπ
all of the aussie nostriches are so cool and wholesome. now i want to visit australia π¦πΊ π»
yep! in the early days, new web clients were spawning everywhere and many people quickly figured out you could do elementary (script kiddie) xss injection and steal cookies
however in this phase, web clients are more mindful of this and things like alby helps a lot
π
put a lightning address on this one too so i can zap you
yep. the security is in the hands of the client.
apple in general is extremely good with handling this, actually mobile in general.
however, if a web client is poorly coded, you can trick the website into loading a script. if you can run a script on the browser, you'll be able to steal cookies / private keys etc
however, if you're using mobile, then the security risk of nostr is the same as any other social media that allows exchange of free form text
exactly!!! just like, when i use a centralized lightning wallet, i'm still able to send money to people using completely decentralized lightning nodes
open networks are cool βΊοΈ
just good old fashioned open source + encrypting and persisting in local storage
for apple: application storage is sandboxed and no other app can read that persistence.
this mixed with encryption (and decrypted at app launch), is honestly really solid
for android i am not sure how app containers work, but for react native AsyncStorage supports encryption/decryption
also, this is still good. someone might think this kills the purpose, but it's still interoperable
our messages will still exist on all the relays, we can leave any time and go to another client ! ^.^
a good way to handle this (for less experienced users), would be "non custodial" nostr experiences
like "non custodial" wallets
app -> service -> nostr
where service handles the aggregation, and only sends you the compressed / aggregated data
for advanced, technical users, maybe we can use clients that directly connect to nostr!