Researching NIP-46 capable Nostr signer apps. Amber

GitHub

GitHub - greenart7c3/Amber

Contribute to greenart7c3/Amber development by creating an account on GitHub.

and

Nsec.app - Nostr Key Storage and Remote Signer

are both awesome, but they are coupled with the UI and notifications, cannot just be left alone on a server. The nsecbunkerd repo

GitHub

GitHub - kind-0/nsecbunkerd: nsecbunker daemon

nsecbunker daemon. Contribute to kind-0/nsecbunkerd development by creating an account on GitHub.

would be the self-hostable software needed, but it seems to be not under active development currently @PABLOF7z Are there any other alternatives which can just run and sign as pre approved? The use case is sharing the ability to post (and other stuff) without giving up the private key. #asknostr

Paying #BOLT12 offers with LND to CLN on my #Raspiblitz 🥳 Using the new LNDK release with LND:

GitHub

lndk update to v0.2.0 and refactor by openoms · Pull Request #4726 · raspiblitz/raspiblitz

Yubikeys need to be protected from loss, theft and evil maids due to this vulnerability

Ars Technica

YubiKeys are vulnerable to cloning attacks thanks to newly discovered side channel

Sophisticated attack breaks security assurances of the most popular FIDO key.

To the #Nostr skeptics out there: I don't want a global feed. I want to own the whole stack.

Thank you for your inputs it seems from experience Strfry

GitHub

GitHub - hoytech/strfry: a nostr relay

a nostr relay. Contribute to hoytech/strfry development by creating an account on GitHub.

is the most efficient. Not surprised, it is in C++. Let's have it on the #Raspiblitz too. Next question for #asknostr: I find the LNbits Nostr Client

GitHub

GitHub - lnbits/nostrclient

Contribute to lnbits/nostrclient development by creating an account on GitHub.

incredibly useful for #privacy. It is basically a Nostr level VPN which helps not expose my IP address to any other servers except my own and it just works on clearnet. Quote: nostrclient is an always-on extension that can open multiple connections to nostr relays and act as a multiplexer for other clients: You open a single websocket to nostrclient which then sends the data to multiple relays. The responses from these relays are then sent back to the client. Are there any alternatives which are more efficient? Building the best social media stack here, help a brother out! In return when works for me I will make it work for you on #Raspiblitz. View quoted note →

Anyone running multiple relays have compared their performance? Currently I am using the #LNbits extension which adds a nice GUI to

nostr relay: nostr relay

(

Client Challenge

It also readily available on the #Raspiblitz. I also run it on a VPS and it is a bit much (together with the nostr client I use as a multiplexer) for single core and 1GB RAM. Now will set it up on an RPi5 with 8GB RAM and 2TB NVMe and just carry on using it if it is not overloaded. The tradeoff is that the calls will be tunneled to my self-hosted (but way more powerful) Raspiblitz instead of running directly on the VPS.

First time I see the login page of my ISP router after uninstalling IVPN on Linux. Don't get me wrong

https://www.ivpn.net/en/

is my favourite public VPN (no info for accounts, can be paid with cash, lightning and monero for the freaks), but it doesn't mix well with my Tailscale - WireGuard connections. No problem I can use some of the numerous VPS-s I can log into to be a Tailscale exit node to spoof the IP address of my devices and servers. They can be shared too. A quick guide from the source:

Tailscale

Use exit nodes · Tailscale Docs

Learn how to quickly configure exit nodes to route traffic through a specific device in your tailnet, and configure devices to use an exit node.

#networking #privacy

You can follow hashtags (at least on Amethyst). See one like #asknostr and just click on it to follow. It really made my feed more lively, loving it. Have you got any nice tags to recommend?

To broadcast a raw transaction over Tor anonymously you have the command 'torthistx' available in all of your #Raspiblitz terminals. To use it simply copy a raw transaction from Sparrow Wallet for example and paste it to the terminal after: torthistx It will return the TXID. #torthistx

A quick summary on regreSSHion https://cert.europa.eu/publications/security-advisories/2024-066/pdf Most home nodes are not exposed to the public internet, but any cloud server or VPS is at high risk. Log in and check the openssh-server version with: apt list openssh-server See the safe versions for Debian (most distros on RPi are Debian based):

CVE-2024-6387

for Ubuntu (the most used on cloud servers):

Ubuntu

CVE-2024-6387 | Ubuntu

Ubuntu is an open source software operating system that runs from the desktop, to the cloud, to all your internet connected things.

in many occasions autoupdate (aka unattended-upgrades) took care of it already, but if not run manually: # update the apt store sudo apt update # look for openssh-server updating sudo apt upgrade -y # restart the ssh service to update the running code sudo systemctl restart ssh #regreSSHion #security

Hold off updating Bitcoin Core to v27.0 if you have LND connected. Will be fixed in the upcoming LND v0.17.5 soon. Source:

X (formerly Twitter)

Olaoluwa Osuntokun (@roasbeef) on X

🚨 attention lnd node operators that have upgraded or are considering upgrading to bitcoind 27 🚨 due to stricter validation for sendrawtransa...

⚡ Version 1.11.0 of RaspiBlitz released ⚡ Now supports RaspberryPi 4 & 5 with NVMe PCIe drive. Many updates: Bitcoin 26.0.0, LND 0.17.3, Core Lightning 24.02.1, LNbits 0.11.3 .. and new documentation. Download:

Download / Flash | RaspiBlitz

Downloading the Software

X (formerly Twitter)

/rootz (@rootzoll) on X

⚡ Version 1.11.0 of RaspiBlitz released ⚡ Now supports RaspberryPi 4 & 5 with NVMe PCIe drive. Many updates: Bitcoin 26.0.0, LND 0.17.3, C...

GM. Happy Easter! Don't fall for April Fools today.