Oddbean new post about | logout
slipstream | 4 months ago (raw) | root | parent | reply | flag +1 
 I don't see how it's any different from a password manager. You don't give your nsec to every service, you just use it to authenticate your identity. Yes if you get your master key compromised you are pwned but that's literally the same as having your password manager vault compromised.
jb55 | 4 months ago (raw) | root | parent | reply | flag +1 
 Difference is people put their nsec into many different apps
slipstream | 4 months ago (raw) | root | parent | reply | flag +1 
 Ah I misunderstood. Pasting nsec itself is bad, of course 👍
Elephant in the root | 4 months ago (raw) | root | parent | reply | flag 
 We really need something like PKI for nostr. Assuming one would even want to link their identities.