Replies (85)
Replayed in DM.
I saw Jameson Lopp take a dig at DMs on Mastodon the other day (which I already knew about). The message should be don’t use DMs for anything important on any social media platform. I’m new to Nostr so still learning how it works so thanks for pointing this out.
Try SimpleX.
The doctor has a point.
View quoted note →But how will I know how your trade is going?
Yes, I wrote a note on this the last week, I'll repost it here:
A piece of OpSec advice for #nostrplebs:
#Nostr is fantastic and wonderful, but its resilience against censorship comes with inevitable trade-offs:
Nostr is entirely public and open.
Every single event you broadcast to the relays can be consumed by anyone in the world, and this doesn't just include the notes.
For example, I can know with whom you've exchanged DMs and at what time (though the content of the messages remains encrypted).
I'm not saying that #nostrices should hide who they are and what they think, quite the opposite!
Just be cautious not to reveal personal information that could get you into trouble.
Merci beaucoup et ça m'étonnera toujours à chaque fois que j'entends, lis voit ce que l'être humain est capable de faire et me demande pour quel intérêt.. Dans la chaîne l'être humain peut être l'une des espèces la plus dangereuse du fait de sa propension à surfer avec ses aspects dantesques
Let's attach a
@SimpleX Chat recommendation to this
Désolée que cela puisse vous arriver.. Toutes mes félicitations.. Merci d'avoir avec nous, cela me envie de retourner aux études. Bonne journée à tous n'oubliez surtout *ce qui ne va vous tue pas vous beaucoup plus fort *💜
Use dm to send your simplex invite
Nostr has never promised privacy. I often try to push for more privacy in nostr, but it's often an unpopular opinion. "tracking" is pretty standard, I am told. It is, but there should be an alternative. NIP-04 goes a long way, but it would be even better if it was transpoted in a more private way, over HTTP or with privacy respecting sites or relays.
We're you sending nudes?
Clients could have a little warning when opening DM section about the reality of DMs. 🤔
View quoted note → This is ridiculous. Nostr DM's aren't the most secure thing ever but they are encrypted. Who cares if they can see who you message? The content is what matters and no one can see that.
timing attacks can be fairly sophisticated
We should boost
@SimpleX Chat imo.
🤔🤔
imho, similar standards of privacy should also apply to zaps.
This is the solution right here
I don't get why the Nostr community (clients & relays) has given up on supporting NIP-42. It'd prevent random users from doing this (but not the operators of the relays you use). Nevertheless feels like low hanging fruit.
@semisol @fiatjaf you authored the NIP, any insights on this?
GitHub
nips/42.md at master · nostr-protocol/nips
Nostr Implementation Possibilities. Contribute to nostr-protocol/nips development by creating an account on GitHub.
This is important yall!
I’m guilty too.
This applies to me as well. 👇🏾👇🏾👇🏾👇🏾👇🏾
View quoted note →Thats why I directly this DM stuff.
A few months ago.
If you used simplex couldnt someone also post a screenshot of that chat?
How often do you plan to burn accounts and start fresh? Is this the solution here. This plus no changing on nsec means horrible privacy and security.
View quoted note →What is a giftwrap?
you need to be a party of that chat to do that. The nostr dm meta data is public for any third party to map and visualize / track.
Messages are encrypted, but reciever and timing is public in nostr dms.
Oh i thought someone posted the dm content. Yes metadata for dms on nostr has always been available.
At the same time i dont see a HUGE problem because.. they are DMs, not PMs.
Direct message, not private message.
Aight, then we got that sorted out :)
Indeed sir.
Fair point. The DMs might be a good place to share contact info to private messages, for instance. So I agree with you here.
DMs are just for sharing SimpleX links. 😅🤣
Based 🗿
Maybe disabling DM’s on nostr apps can be a very useful feature.
I’d disable DM’s in a heartbeat
Months ago a relatively large figure on nostr publicly said they were going to ask another user if they could reveal their identity in relation to a questioning post from a third party.
They then proceeded to DM the public profile of the anonymous user using nostr DMs with public metadata. It was a relatively insignificant thing and the identity was shared publicly after so I didn’t raise this as a big deal, but it was still a fail from someone who should have been aware of the issue.
dawg, you realize you're just one "cyber pandemic" away from the metadata *and data* of your twitter dm's being public right?
Yeh it’s pretty bad for privacy. Surely there’s a way to fix this overtime?
I'm a noob but figured the whole Nostr environment was (mostly) secure...welp...
Does oxchat fix this with private and secret dm?
Same thoughts on Nostr DMs, avoid.
View quoted note →Put simplex link in your profile 🫡
Never should have beem created in the first place imo. Many great messaging options, like Simplex. Keep nostr simple imo
Wait until you see the zap metadata.
I don't reply to DM's, I don't reach out via DM's either. ✊🏽🍊💊⚡️
View quoted note →isn’t it ridiculous when anyone gets obsessed and stalks someone?
a strange kind of mental weakness.
The protocol is able to handle it simple, i think. But too simple got privacy threatening.
Yes but we're still small.
Interesting view. Does this change your mind,
@calle?
In which sense based?
Hahahahahahahaha
Follwoing you right now. 🫂
See Amethysts for example. Can't explain technically at the moment. h/t
@Vitor PamplonaKeet.io just launch beta and its awesome.
Keet and Greet Beta
pear://keet/yrbionfcjybapcuf6fusx96idy9skttaf8zpoyh8iitx7pgz5gjcre8zktxhmcmbw1u77899txynynsofjhuiqrek8pdrhrf8mibgn6tzds64cuf
nostr dm's are a mistake should be hidden until a method of hiding the metadata is deployed
View quoted note →Is there a NIP for that?
View quoted note →Signal and Session
never discuss anything confidential in DM
once u meet use other apps
nostr DM was never design should NOT made for hiding conversations
It's a feature not a bug
Great Idea 🤙 DONE 👍
nostr was never done that way by intention
Thanks for the heads up! 🫡
Why is it unpopular? Is it not possible? And if it is why aren't we given the option at least?
Good to keep in mind!
btw:
View quoted note →I imagined a prompt reply with a SimpleX link on any message, no matter what xD
I'm in Amethyst right now, but still don't fully understand. I appreciate the effort of guiding me towards an example though :)
Yeah no Meta Data gets people killed
runs like shit for me, laggy and slow and buggy
No. Thats the old version. Version 2.1.2?
Ask questions.
Don't trust, verify
View quoted note →yep latest runs way worse for me
is your room still up?
Yes. 40+ 🍐🍐
cant join, new version sucks
Sooooo... I won't be getting my 2 BTC then?
True
DM lewat nostr adalah buruk . mengapa?
View quoted note →
