Matt Lorentz

Starting a thread to coordinate a test of my social-key-backup tool with nostr:npub1pmwz736ys3mfhjdld4r36xqwfc5qkz7dwxdkmfu3qqd7kucvludsrm4nu6 and nostr:npub1sq8qlc7cvwxw8a662mkcvh0em9hunkwd9a642r0s6l6urkzx3v9snyt84g

nostr:npub1ye5ptcxfyyxl5vjvdjar2ua3f0hynkjzpx552mu5snj3qmx5pzjscpknpr is there any way for me to report impersonators from Nostrudel?

I'm still looking for a few more folks to help me out with this! nostr:nevent1qvzqqqqqqypzp59pl7u8vxuhfnky5wlge09ja948pyxu73jll6kg8x4yegsvnfv7qyg8wumn8ghj7mn0wd68ytnddakj7qghwaehxw309aex2mrp0yh8qunfd4skctnwv46z7qpqw5c95jkutjg08hxfqm4jpgyrzwqq4tehufz8q5n0jmjhgaxaqars5e8gaz

I'm looking for a few people to help me test my social key backup tool for Nostr! Hoping to get at least 4 folks. I'm not going to actually back up my real key to you, I just want to run through the process with others and make sure it works for other people. You'll need python installed and some familiarity with the command line. If you'd be willing to help me out with this tomorrow please reply to this or send me a DM! And I'm considering creating a Nostr group for comms, lmk if there is a group chat tool you like.

I just completed a successful recovery of an nsec using my shamir's key sharing CLI. It's so satisfying as a programmer when you finally get your encryption and decryption code working together. The script is very basic, I'll probably rewrite it in Rust, but it proves out the core concept and gave me a lot of ideas about how to make this actually accessible to normal people and what other features and services would be nice to bundle with it. I'm still trying to come up with an umbrella term for this family of things (social key backup, social key migration, threshold-based consensus, etc.). The best I've come up with so far is "social keys" but I'm not sure if that makes sense. Does it makes sense to you?

Also I submitted my first git PRs via Nostr yesterday, it was pretty easy with ngit and https://gitworkshop.dev!

I set up nak bunker on my home server in docker yesterday, so I finally have a Nostr signer running on my own hardware. If anyone is interested in the compose file it's short enough that I'm just going to paste it here: services: nak: build: . command: bunker --persist --sec your-nsec-here wss://nos.lol volumes: - docker/nak:/home/nakuser/.config restart: unless-stopped I haven't taken the time yet to figure out how to use ncryptsec or something to keep my nsec encrypted at rest, if someone figures out how to do that in docker lmk. nostr:nevent1qvzqqqqqqypzqwlsccluhy6xxsr6l9a9uhhxf75g85g8a709tprjcn4e42h053vaqyg8wumn8ghj7mn0wd68ytnddakj7qgswaehxw309aek7mr0vdhjumnv9uqzquuun49tscjtut7c07czxrpex2hkwyyqv6s9r8w0je3ug745p0jr2rpqg7

Testing publishing from my new remote signer.

So I've been fascinated by Shamir's secret key sharing algorithm for several years, and I'm pretty convinced that self sovereign identity, while cool, is not actually the best option for decentralized social networks. Especially the incarnation of self-sovereign identity that relies on you keeping a secret, and also that secret must be stored on a computer. Like instead fully custodial or non-custodial keys I would rather my friends and family being the ultimate authority on which key is mine. I would do this with my Bitcoin wallet and other keys but *especially* my Nostr key because Nostr is a social network, so the real value is in the social connections we have on here. So in the worst failure mode where all my friends and family betray me and steal my identity... my social network is already dead. There was a group of folks who built a tool for breaking your key into shards and backing it up your peers on Secure Scuttlebutt several years back (https://darkcrystal.pw/). I've always wanted a version of it for Nostr and now that I'm a free agent I'm going to give it a shot. If you're interested in helping or trying it out when it's ready let me know in a reply or DM.

DWeb Camp is in Canada this year. Will I see any of you there? https://dwebyvr.org/camp/

If you are checking socials because your internet things are broken, you are not alone. Google Cloud is basically down.

It's been about 1 month since I started my solopreneurship journey aiming to do six product experiments in six months. I launched https://spoilerfree.gg about 10 days ago and have been monitoring the metrics on it since then. So far I haven't met my target of a 5% conversion rate, so I'm moving onto the next thing! I wrote some rough notes about it on my weblog. If you have any advice, thoughts, or questions I'd love to discuss! https://mattlorentz.com/weblog/2025/05/27/spoiler-free-gg-retro.html

Last week I wrapped up my employment with nostr:npub1wmr34t36fy03m8hvgl96zl3znndyzyaqhwmwdtshwmtkg03fetaqhjg240 and the gang at Verse Communications. Over the past 3 years I got to work on https://planetary.social, https:/nos.social, and more recently a communities-focused social app codenamed Plur. Working to build healthier social media with such a diverse team and community was such a transformative opportunity for me, and I'm sure I'll always look back on it as an inflection point. For now I'm taking some time to work on my own projects. Probably not Nostr-related for starters, but I’ll share more when there is more to share :)

Passkey update: Bitwarden, Firefox, and Safari all seem to play nicely together now when it comes to passkeys. I’ve been creating and saving passkeys into Bitwarden whenever a site prompts me to set one up. Signing in with them works how I would expect. It’s not really a different UX from signing in with a username and password using a password manager. And I think I’m defeating the purpose of passkeys by storing them in a central vault, but hey if websites won’t log me out or ask for 2FA so often that’s a trade I will happily make. The accounts I really need secured get the Yubikey.

nostr:npub1gg5uy8cpqx4u8wj9yvlpwm5ht757vudmrzn8y27lwunt5f2ytlusklulq3 frostr is so cool. Is it possible to recover your key from the bifrost if you lose it?