Oddbean new post about | logout
 Putting your nsec into anything that's not open source and peer reviewed for security seems like a really bad idea. But I'll bite. Walk me through the key custody process from nsec entry to later retrieval @pablof7z. I found the repo for nsecbunkerd but is your client site open source? if so please provide a link.

By the way on the nsecbunkerd github page it looks like you're storing the keys in plaintext with no file permissions set. Feel free to jump in here @hodlbod @semisol @broadmode 

https://m.primal.net/HRix.png
 
 That thing you’re looking at is the testing client to send test events… 
 Ok thanks for explaining. Where is the repo that you used to make this site? https://nsecbunker.com/ 
 Not public yet; we’ll be later tonight when I’m back home 
 Ok is it available now? 
 not yet; holiday here so can't work on things today 
 I don’t understand if it’s a finished product and you’re asking people to put their nsec into it then you should just have to change the settings to public. That takes two minutes.  
 I thought #nostr was where honey badgers congregated but I guess it’s just lemmings.

People putting their nsec into a site that is not open source and not reviewed for security. Sad!

#bitcoin people are better than this.
nostr:note1sz6pkpmzkzy2f2fvgyxhlgzays6y68a3v0txs2katw3cm5q8nhqsa2kvn3 
 Autism fixes this