Nostr View

mleku @mleku - 24d

for the clowns like fiatjaf and others who seem to not understand that relays have a MORAL OBLIGATION to require AUTH for DMs it says right here in the current version of NIP-42 https://images.mleku.dev/9L/nip42-2025-03-10%2015-46-56.png and i am gonna quote the exact commit ref as at this point now so nobody is confused: https://github.com/nostr-protocol/nips/blob/e6552476aa2e5ca7256be572a9aa226ec8a022ee/42.md what does that say in the highlighted line there? huh? why is this not already understood to be the obligatory standard for protecting users privacy? because the clients sure as fuck don't seem to understand it, #nostrudel doesn't respond nicely when it asks for kind 4 and 1059s along with other shit and then refuses to keep querying the relay because it gets an OK,false,"auth-required" response and i had to change my #realy flow so it just strips out those privileged event kinds that can't be seen without auth proving you are party to them and it still misbehaves about this, i think it's getting NOTICEs still that say that the client is asking for stuff it hasn't authed to see but nope, no, these assclowns still don't get it they clearly don't read a thing they even write in their own fucking documents please, don't expect me to be kind about this gross violation of user privacy, go, actually fuck yourself, with a giant fucking barbed pole

1
0
3

mleku @mleku - 24d

also, yes, the response that #realy sends is CLOSED not OK,false,"auth-required:...." - and, it does fulfill the request FIRST before it sends that message back, with the sensitive event kinds ignored for what it does return, so there is something wrong with the client logic, it's not my fault and their stupidity is the whole reason why nobody uses nostr messages come to think of it, another reason is that i'm pretty sure almost no relays properly implement delete so you can't delete your DMs either, and they mealy mouth waffle about "it's out, it's out" yeah but the relay should not either refuse to delete it nor allow it to be reinstated when the author sends a delete event it's just not ok to be pretending that they are just not doing it because of lowest common denominator malicious behaviour of others that's not how honor works, guys, and the fact you don't understand that makes you very much suspect for being trusted with other people's data, and certainly nobody should be running your software if they actually have a fibre of ethics in their body

1
0
3

mleku @mleku - 24d

once again, hzrd149 has broken #nostrudel and frankly that's why i almost exclusively use #jumble now got tired of unpredictable behaviour with my relay, which requires auth to post, and nostrudel now apparently, according to my colleague is not ... you know... authing... good going kids, just build those extra features to announce to please the commissar and they will keep giving you your wages

1
1
3

mleku @mleku - 24d

also it's probably because i altered #realy to process queries but remove privileged types when the client is not authed, but it then sends, after the results, a CLOSED auth-required message as it can and should do according to an example even in nip-42 but commie nostr client devs don't do that... reading... stuff, you know, because they might hurt someone's feewings or disobey the Doctrine of the Fiatjaf or something or maybe Jack or whatever

1
0
3

mleku @mleku - 24d

i'm pretty much over this clown show, that's partly why right this moment i am busy implementing a sane, clear and unambiguous HTTP API for nostr, specifically a query for fetching a list of IDs because those already anyway override any other fields in a filter, but that probably isn't obvious by looking at the nip-01 explanation of it, because it's mashed together with graphql-like filter queries i fix de problem, and some clients will adopt it, i will write a clear API document, and we will leave the clown show circus in the dust

0
1
3
Showing page 1 of 1 pages