One day there will be a security exploit and many nostr private keys will be compromised. Bots will be publishing bad content under your name/key. Make sure you are ready for this scenario and can change keys easily and tell people about it.
Login to reply
Replies (4)
If this is true, it's true for bitcoin private keys too, no?
Yes but we don't keep our bitcoin seeds online.
What I'm thinking is the following. Few people follow good key security practices and basically just copy and paste their key into various apps and experimental sites, which could eventually be attacked.
Even I have had moments when, in a rush to try out some new service, I ended up putting my private key there just to see what would happen... which isn't ideal. Ideally, I should be using something like Amber, for example.
So I consider my experience here to be quite temporary, and I know that at some point I'll have to migrate to a new key.
Even the fact that I'm publicly writing this message here is a way for me to protect myself for the inevitable moment when my key gets compromised and some malicious person or bot starts posting inappropriate things under my key. At least now I’ve left a record 😁
hi Seiiti! Did you create SimpleX account?
Here is mine :-)
https://simplex.chat/contact#/?v=2-5&smp=smp%3A%2F%2F1OwYGt-yqOfe2IyVHhxz3ohqo3aCCMjtB-8wn4X_aoY%3D%40smp11.simplex.im%2F-KI9PCazBimo-s0Z5zgk-CkremPsSaE-%23%2F%3Fv%3D1-2%26dh%3DMCowBQYDK2VuAyEAu_8HhooCQDNyXu-zqMr-2H7DSyT6HqX6SRrZOt-NNUw%253D%26srv%3D6ioorbm6i3yxmuoezrhjk6f6qgkc4syabh7m3so74xunb5nzr4pwgfqd.onion