Geektoshi's avatar
Geektoshi
geek@primal.net
npub1m2jp...3wgu
If you don't believe it or don't get it, I don't have the time to try to convince you, sorry.
Geektoshi's avatar
Geek 2 months ago
Just submitted a follow up bugfix release to Signet to fix a memory leak in AdminCommandService and SSE event handlers. If you didn't use the DM commands, you could probably skip this update, but the SSE changes are worth the upgrade, even if it's just a couple new lines of code.
Geektoshi's avatar
Geek 2 months ago
Signet 1.6.0 is out! In this update, tons of security and resource usage improvements and bug fixes. Android client now has intents support so you can scan QR codes from your camera and share to Signet directly (or click/copy nostrconnect:// URIs). Created a new logging library and added a Logs page to web UI so you can trace logs without having to check the daemon console. I also added a lock all keys button to the Keys page, suspend/resume all apps button to the Apps page, and general UX improvements. Was originally going to just be a minor release (1.5.1) but with the other updates it was worth moving to 1.6.0 instead.
GitHub
GitHub - Letdown2491/signet: Signet is a self-hosted NIP-46 compliant remote signer for Nostr. This project is an extensive rewrite of nsecbunkerd. Companion app for Android available.
Signet is a self-hosted NIP-46 compliant remote signer for Nostr. This project is an extensive rewrite of nsecbunkerd. Companion app for Android av...
Geektoshi's avatar
Geek 2 months ago
Who can help me understand why Jumble is so chatty? These are all from having just a tab open, no interaction. Easily the most signing requests of any web client I've tested. Not sure who the dev is or I'd reach out directly. image
Geektoshi's avatar
Geek 2 months ago
Now watching, Indiana Jones and the Dial of Destiny...hope it's at least better than Tron: Ares :-)
Geektoshi's avatar
Geek 2 months ago
Android Intents gave me hell, but got it working. image
Geektoshi's avatar
Geek 2 months ago
Wow, Tron: Ares is ROUGH
Geektoshi's avatar
Geek 2 months ago
Initial Signet security audit going well. Found a couple issues high priority issues but nothing I would consider critical. Once I address the issues, I expect a 25%-50% improvement in memory and resource allocation so things should be even snappier, and of course, a bit more secure. The biggest failing in my book though is that when I upgraded key encryption from what nsecbunkerd was doing, I only upgraded from AES-256-CBS to AES-256-GCM. It's a definite improvement, but I will migrate to the NIP-49 XChaCha20-Poly1305 standard at some point since I'm a fan of strict spec compliance an it really is a much simpler algorithm. Once I get there, there will be no need for user interaction, I'll probably just do it on the backend on first key unlock and let users know the migration is happening. With that said, I expect Signet 1.5.1 to be out sometime tomorrow :-)
Geektoshi's avatar
Geek 2 months ago
And yet, people still pasting nsecs into clients because "normies"...Vitor with the truth bomb. IYKYK image
Geektoshi's avatar
Geek 2 months ago
Bought a new mini-pc...moving some services over
Geektoshi's avatar
Geek 2 months ago
it's 2026 and Nostr apps and websites still allow pasting nsecs...we are so early.
Geektoshi's avatar
Geek 2 months ago
It's time for a security audit then taking a few days off.
Geektoshi's avatar
Geek 2 months ago
I'm a huge fan of NIP-85 Trusted Assertions and WoT. Would love to have a system in place to establish trusted relays as well due to my work on remote signers, but NIP-85 does not handle this. While the below could really just be an extension of that NIP, here's a stab at it. Comments are welcome, it could use some tweaking for sure.
NostrHub
NostrHub | Discover and Publish NIPs
Explore official NIPs and publish your own custom NIPs on NostrHub.
 Tagging the maestro @Vitor Pamplona