Oddbean new post about login | logout If you can see this, Tor is now inside of Amethyst. No more Orbot.
Woah ... you are amazing.
Wow!!! nostr:nevent1qqsfn4wcs9xlyktruaag68k8408j4djzhsapwmsrjr29pfdhz75ts5cppemhxue69uhkummn9ekx7mp0qgsyvrp9u6p0mfur9dfdru3d853tx9mdjuhkphxuxgfwmryja7zsvhqrqsqqqqqpu8kt24
Grande atualização!
Waaaaaaat 👀
👀👀👀 nostr:nevent1qqsfn4wcs9xlyktruaag68k8408j4djzhsapwmsrjr29pfdhz75ts5cpz9mhxue69uhkummnw3ezuamfdejj7q3qgcxzte5zlkncx26j68ez60fzkvtkm9e0vrwdcvsjakxf9mu9qewqxpqqqqqqztxqud5
Oh damn we on #Tor ⚡⚡⚡
Tor in Amethyst is a fantastic idea, but I still see this note in Damus.
Are you not supposed to?
I dunno, what's it mean "if I can see this"? Was it published to an onion relay? If so I assume it was republished, which defeats the demonstration of tor-in-nostr.
Or does it simply mean that the original post doesn’t expose the authors IP address to any relays. I’m trying to understand what all this means too.
Correct. It just transfers through Tor instead of the regular web. Everybody else can see it as soon as it reaches any open web relay.
So Amethyst on TOR will only relay to a relay on TOR, not on naked web? And then we should hope that this relay also has a naked web address so that other clients can download the note?
When Amethyst on iOS?
Did you package and run the binary inside of the apk?
Yeah, the "new" package they are offering seems to have worked quite well for the past few hours. I didn't notice any crash from the lib itself, which was fairly common in the past.
https://guardianproject.info/code/tor-android/
nostr:nprofile1qqsrf5h4ya83jk8u6t9jgc76h6kalz3plp9vusjpm2ygqgalqhxgp9gpzfmhxue69uhk7enxvd5xz6tw9ec82cspzpmhxue69uhkummnw3ezuamfdejszyrhwden5te0dehhxarj9ekxzmnytql6f0 consider nostr:nprofile1qqsyvrp9u6p0mfur9dfdru3d853tx9mdjuhkphxuxgfwmryja7zsvhqpzamhxue69uhhv6t5daezumn0wd68yvfwvdhk6tcpz9mhxue69uhkummnw3ezuamfdejj7qgwwaehxw309ahx7uewd3hkctcscpyug feedback as an extra input in favour of uptading the TOR library in nostr:nprofile1qqsrf5h4ya83jk8u6t9jgc76h6kalz3plp9vusjpm2ygqgalqhxgp9gpzfmhxue69uhk7enxvd5xz6tw9ec82cspzpmhxue69uhkummnw3ezuamfdejszyrhwden5te0dehhxarj9ekxzmnytql6f0 wallet!!! nostr:nprofile1qqsxg45ph8gx0vdrvtzta6xal7v86frx6jvstsnvhrlvtehmwwh4epqpz4mhxue69uhk2er9dchxummnw3ezumrpdejqz8thwden5te0dehhxarj94c82c3wwajkcmr0wfjx2u3wdejhgqg6waehxw309ahx7um5wgh8xct5wd68yctvd9sjucm0d5gajr69 also has succesfully implemented in #robosats
There is indeed a PR with the same code in Robosats fully working for Android https://github.com/ZeusLN/zeus/pull/2268 the only problem is iOS, which is becoming some sort of headache 😅
Are you also starting and stopping Tor on onResume and onPause? I thougtht it would create some issues, but it seems to be working just fine.
This is crazy Amethyst is now a #Tor P2p app nostr:nevent1qqsfn4wcs9xlyktruaag68k8408j4djzhsapwmsrjr29pfdhz75ts5cprpmhxue69uhkummnw3ezuendwsh8w6t69e3xj730qgsyvrp9u6p0mfur9dfdru3d853tx9mdjuhkphxuxgfwmryja7zsvhqrqsqqqqqpd545as
Hell yes. Is it active for everything, or just onion relays?
everything
👀 nostr:nevent1qqsxpf7dzlkacazkk2r9703vs6mn4y78rszpxy79elg8fkwmgpvz9vqpzamhxue69uhhyetvv9ujumn0wd68ytnzv9hxgtczyr02k7w6lgwzhe955mf6egf40dk25zm5f06x44ff5khyvs5g270xsqcyqqqqqqgxz6dlc nostr:nevent1qqsfn4wcs9xlyktruaag68k8408j4djzhsapwmsrjr29pfdhz75ts5cppemhxue69uhkummn9ekx7mp0qgsyvrp9u6p0mfur9dfdru3d853tx9mdjuhkphxuxgfwmryja7zsvhqrqsqqqqqpu8kt24
Released yet or just in your test env?
Can somebody explain how or why this is a big deal i would love to understand more. Its sounds important
I second this emotion
I agree. Eli5 please
The option to have baked-in privacy to a widely-nostr client is significant. Without this, users are dependent on making sure they have an always-on VPN (or Orbot) enabled. Otherwise your IP is shown to pretty much every relay, all the time. Needless to say, terrible for privacy, dealbreaker for anonymity (think journalists under oppressive regimes). The always-on VPN can be unreliable on mobile devices. Orbot slows all your web traffic and some websites/apps block the traffic entirely, so many people disable it (to do mobile banking, or just get on Reddit, for example) and don’t always remember to turn it back on. Just a host of opportunities for it to be a problem unless you’re meticulous about it. Granted, one probably needs to enable Tor in Amethyst the first time around, unless the default setting is on (Vitor, could that be the default?), but still, this is a big step toward privacy-by-default in freedom tech tools. There may be another impressive quality of this, having to do with being able to send events to relays over Tor regardless of whether or not the relay normally accepts Tor connections. I don’t know (because I haven’t read the spec and likely wouldn’t understand it, if it’s all code, anyway), but by the wording of the OP it sounds like there may be something to this as well.
Yeah i have always had a vpn on when using amethyst so i guess thats good. I do see people i follow that are NOSTR OGs i would consider and they always said they wont reply to DMs for privacy and security reasons i believe. Does this Tor integration help that as well?
The #Tor is inside #Amethyst ⚡️ https://image.nostr.build/dd3eee9c11e766a40ff2da37d1ce26e54a5e419691490c17d75b8abd5d464805.jpg nostr:nevent1qqsfn4wcs9xlyktruaag68k8408j4djzhsapwmsrjr29pfdhz75ts5cprpmhxue69uhkummnw3ezuendwsh8w6t69e3xj730qgsyvrp9u6p0mfur9dfdru3d853tx9mdjuhkphxuxgfwmryja7zsvhqrqsqqqqqpd545as
Please release an iOS version!
nah.. I avoid centralized stacks.
Would you consider nip-60/61 (built-in ecash support) centralized stacks? Seems like a grey area for me as the nips aren't centralized but allow the user to choose between centralized mints.
Maybe. I don't like turning amethyst into a wallet, but maybe this can change...
Baller
While it's great to have the feature, privacy focused users should not rely on it and use Orbot instead. Orbot avoids that an app leaks the IP address while Tor-enabled leaves it to the dev of the app to enable tor for all calls and not only for some.
Humm.. good point. Is Orbot really that good? I had cases of leaking IP with Orbot. If the dev is not carefu with connection setup (mostly issues with dependencies doing the connection), it can leak indeed.
I'm not an expert on Orbot but in which case and how could an IP leak using Orbot, assuming Orbot routs all the activated app's communication only over TOR? And how can an app developer fix this reliably? And how can the user know the client dev fixed it reliably 100% all the time with every update? I'm talking out of the experience where an app used an installed Orbot to talk to some servers then a new dev team introduced other servers but did not care about using Orbot when the still available TOR option was activated, misleading the user to assume to be private where they are not.
Orbot utilizes android's VPN API so I assume it controls the full applications network stack (or full device if configured that way). Still I think androids VPN stack has some holes. nostr:nprofile1qqsyvrp9u6p0mfur9dfdru3d853tx9mdjuhkphxuxgfwmryja7zsvhqpzamhxue69uhhv6t5daezumn0wd68yvfwvdhk6tcpz9mhxue69uhkummnw3ezuamfdejj7qgwwaehxw309ahx7uewd3hkctcscpyug Can the in-app component cooperate with an ambient orbot? Best of both worlds?
Not necessarily. Orbot runs with and without VPN mode.
You shouldn't give privacy advice if you don't know what you're talking about.
It depends on whether Orbot is used as a VPN or as a proxy. In the former case, the application cannot escape Tor, in the latter case it can of course, avoiding using the proxy. So Orbot as VPN is safer than current Amethyst's implementation, while the new built-in support has the same robustness, but avoid a dependency and all the troubles related to the configuration, offering a better experience to the user.
rely on orbot as proxy put pretty the same trust in app devs not leaking ip. Using it with orbot as vpn put this trust into the os.
It would be useful to have an indicator in the app whether it's on tor or clearnet, so I can be sure about what connections I'm using.
It's likely going to be using both at the same time for the vast amount of users.
It only does that if you are using orbot as a vpn
iOS plz
Sorry, no time for centralized stacks.
Fair enough, but it's a big market
I'm too dumb to fully understand what this means but it's provocative and it gets me going nostr:nevent1qqsfn4wcs9xlyktruaag68k8408j4djzhsapwmsrjr29pfdhz75ts5cpz4mhxue69uhhyetvv9ujuerpd46hxtnfduhsygzxpsj7dqha57pjk5k37gkn6g4nzakewtmqmnwryyhd3jfwlpgxtspsgqqqqqqs6huscy
My .onion relay node doesn't seem to connect without the Orbot.
🤯 nostr:nevent1qqsfn4wcs9xlyktruaag68k8408j4djzhsapwmsrjr29pfdhz75ts5cpz4mhxue69uhhyetvv9ujuerpd46hxtnfduhsygzxpsj7dqha57pjk5k37gkn6g4nzakewtmqmnwryyhd3jfwlpgxtspsgqqqqqqs6huscy
😃
Excelente trabalho, Vitor!
Can't connect to any Relay after turning on the tor feature.
Probably you don't have Orbot running as proxy. This update will remove this additional step.
Oh cool thanks for the advice. Now it works.
cool man
BLESS YOU VITOR MORE NATIVE TOR PLEASE CLIENTS & WALLETS TAKE NOTE nostr:nevent1qqsfn4wcs9xlyktruaag68k8408j4djzhsapwmsrjr29pfdhz75ts5cpz4mhxue69uhhyetvv9ujuerpd46hxtnfduhsygzxpsj7dqha57pjk5k37gkn6g4nzakewtmqmnwryyhd3jfwlpgxtspsgqqqqqqs6huscy
🥵🔥
So, if now tor is pre Baked in amethyst, how can i disable it? Its just a question, and where can i see if its really active? Does it have a feedback?
WHAT? I CAN'T SEE ANYTHING!!
nostr:nprofile1qqsgfhhxuemwtwm8kjk5uppv7uxtmp5pz4wm2dv59lxx5pfnsk98ysqpz9mhxue69uhkummnw3ezuamfdejj7p9kx2h
Nice too see. Thank you!
How it started nostr:nevent1qvzqqqqqqypzpvkkwr098vnkj8qvxsqzykm9cddzd5rqjw7vg86gllr3uzg8l822qqs0353ucwf767cg5pu6kymne8vfwm0ysw277rmv89qla2ec49hzn9crhtwus How it's going nostr:nevent1qvzqqqqqqypzq3svyhng9ld8sv44950j957j9vchdktj7cxumsep9mvvjthc2pjuqqsfn4wcs9xlyktruaag68k8408j4djzhsapwmsrjr29pfdhz75ts5cyeds83 4 days 🤯
Congrats! Nice work
Amethyst - juicy, crisp, pleasing acerbity https://i.nostr.build/ViI55Q66syxhvK26.jpg h/t nostr:nprofile1qqsyvrp9u6p0mfur9dfdru3d853tx9mdjuhkphxuxgfwmryja7zsvhqpzamhxue69uhhv6t5daezumn0wd68yvfwvdhk6tcpz9mhxue69uhkummnw3ezuamfdejj7qgwwaehxw309ahx7uewd3hkctcscpyug nostr:nevent1qqsfn4wcs9xlyktruaag68k8408j4djzhsapwmsrjr29pfdhz75ts5cpzamhxue69uhkzarvv9ejumn0wd68ytnvv9hxgtczyprqcf0xst760qet2tglytfay2e3wmvh9asdehpjztkceyh0s5r9cqcyqqqqqqgz4gq3p
I saw you write it while you wrote it. Inspired by the npub most of us know a well. 🤭 nostr:nevent1qqsrc2dz2fpu0gtcyhk8fy5jkqvphuzw7z8rhm5yqalzrfzgeyhg6dqpz3mhxw309akx7cmpd35x7um58g6rsd3e9upzql0rmmudyyveckk8hqnntjemd76gxl0mc0xnzv9cluy965xrsj6rqvzqqqqqqyuac9cm
Halt! You have committed an international violation of state sovereignty. This shall be taken as a declaration of war. Cease and desist now, or suffer the consequences next time you visit a French airport.
Can people with no background in coding understand and adopt it?
That's the goal
if you can see this, you can also see the tip below: https://m.primal.net/KmEV.jpg
I see it but have no idea what it means
Same.
woohoo.... excellent job Vitor
Unfortunately some image hosting sites block #tor with #cloudflare. nostr:nevent1qqsr5qg5d6etnctuln47gzgs2xtt87xv6yrarudqj8jugluw7dtxk4qpz4mhxue69uhhyetvv9ujumn0wd68ytnzvuhsygpcvpv02ran4dnelx72uaxhx802dyu8g6ydxpj22p80tu8atn0vhypsgqqqqqqsqruwv5
