Oddbean new post about | logout
 It's about time for the IP reveal spam to come back. People need to get their privacy shit in order. 

Big problems I see with #Nostr right now, that are all exploitable:

- Users don't know or understand how absolutely critical it is to protect their private key at all cost.

- Users don't know or understand about managing or self-hosting relays.

- Users don't know or understand what data/metadata their lightning/ecash wallets have, and will provide to anyone who asks.

- Users don't know or understand what data/metadata their relays have, and will provide to anyone who asks.

- Users don't know or understand what data/metadata their image hosting services have, and will provide to anyone who asks.

- Users don't know or understand about using Tor or a VPN to protect their IP address.

- Users don't know or understand which devices/clients will help them prevent any of the aforementioned issues.

Some of this isn't provided publicly, so it may not be possible for the average user to know these things. Also, I absolutely include myself in some of them, so this isn't some holier-than-thou bullshit. I'm just putting it out on the table for visibility.