PABLOF7z @PABLOF7z - 1y
How many bitcoin apps have your private key? How many nostr apps have your private key? All it takes is a single compromise to get rekt. A single one.
corndalorian @corndalorian - 1y
I wish it was as easy to transfer my Nostr identity to a new npub under a new private key as it is to transfer my UTXOs to a new address under a new private key.
SinedinZigan @SinedinZigan - 1y
Would be great if there was automatic new key within a customized time
NVK 🌞⚡️ @NVK - 1y
When KISS rotation we came up with? Parent signs for child... Everyone more SAFU.
NIP draft almost ready 🙌 Should be finished by tomorrow.
it will be-ish. nostr:nevent1qqsv7glvws804u72yhpa9um5cnc63tgxzwuqaakcqgvhsjvxnn6vxcgppemhxue69uhkummn9ekx7mp0qgs04xzt6ldm9qhs0ctw0t58kf4z57umjzmjg6jywu0seadwtqqc75srqsqqqqqpxaa04w
by having your private key 🤷♂️ not sure I understand the question; but any wallet that allows you to sign any transaction has keys
right answer 👑
Primarily thinking of someone’s social graph/connections. Content can be republished, although that could be a hassle too. Social graph can be rebuilt too, but again it would be a hassle, whereas with typical social accounts you’d just reset your password and move on with the same account.
💜🫂
Neo ⚡️ @neo - 1y
👀
You slacking Pablo
I have no idea what you’re saying, lol. All I’m saying is that it would easier for users if the experience of changing key pairs on Nostr was more like changing your password on Twitter. It would also make Nostr more useable for companies, organizations, and anyone who is human enough to make mistakes with their online accounts.
Gigi @Gigi - 1y
I noticed that too, which is why I've limited his internet access so he can focus on NIP writing.
We should drop him at an isolated island without any internet. Maybe that would do.
😂😂😂😂 psyops, psyops everywhere
is there a sauna?
I don't see one. https://image.nostr.build/c3160d060a47ad377107d637be949e33637c0a313a8c4e7bc5422536d47b83b9.jpg
1 sat ⚡️
22M BTC ⚡️
you fat-fingered again; slide in my DMs for a partial refund
semisol @Semisol - 1y
Let’s word it this way How do they distinguish someone that compromised your account from yourself when they try to do key rotation
Ok I think I see what you’re saying. I assume “they” in this situation is whoever is coding the mechanism for key rotation? Idk the best answer to that because if your old key is required to migrate to the new key, which would make sense, then if the old key is compromised anyone who has it could perform that migration/rotation. So there would need to be a means of authorizing the migration/rotation that doesn’t depend on the compromised key, and that ideally you as the user could keep safe offline unless needed for such a situation.
they being the code of client