Oddbean new post about | logout
mleku | 2 days ago (raw) | root | parent | reply | flag 
 so many of those API calls are things you can do with a reverse proxy instead and not clutter up your relay
mleku | 2 days ago (raw) | root | parent | reply | flag 
 also, there is this API transport called "SSH" and it works with an api called Unix Shell.
cloud fodder | 2 days ago (raw) | root | parent | reply | flag 
 the acl mgmt?  i was curious if youd seen this nip or were thinking of implementing..
mleku | 2 days ago (raw) | root | parent | reply | flag 
 yeah i just bumped into it yesterday for the first time and most of it is really muddling domains, and not using existing data

i already have an access whitelist control that simply uses protocol follow and mute events to construct the list for access control, for example, there is no need to have a second database for this, you see what i mean?

IP blocking is a different thing but again it would be simpler to just make a shim that filters this access and configure it through its own interface, this is another API call i see in there, again, it doesn't honestly belong in the API of a relay because it can be more efficiently done at the network layer, same as access control can be done using nostr's event types
mleku | 2 days ago (raw) | root | parent | reply | flag 
 regarding the IP access control list, you may have heard of a little thing called "fail2ban" which is the kind of IP address rate limit/access control system i would recommend, if a relay really is getting that much unwanted traffic there are dedicated tools and ratelimiters for this that shield the relay
cloud fodder | 2 days ago (raw) | root | parent | reply | flag +1 
 yeah the OP was wanting create relay api.  which a relay itself, cant really have.

thanks for the explanation of this list updater/etc, gives me some stuff to think about.  i have always been running essentially two apis.  one over nostr events, and one http.  so i think about it a lot 😅