Thread - Nostr Hypermedia

Wondrej wondrejbtc@nostrplebs.com 5 months ago

Frens, may I please ask what you think about this? I spend a lot of time on Nostr, and yesterday I started wondering if my Nsec is still safe. I’ve been using Nostr for over two years now, and with this account, I’ve experimented a lot while trying to #grownostr Back then, I used to paste my Nsec into all kinds of new apps – many of which are now abandoned or no longer maintained. Some turned out to be pretty much useless, almost like a PUBKY. So now I’m asking: Do you think it’s a big risk for the future of this account? Would it make sense to start fresh one with a secure Nsec as a more “experienced” #Nostr user? Or am I overthinking it and it’s not such a big deal? Thanks y’all👾

Replies (16)

Marc marc@primal.net 5 months ago

I wouldn't worry about it yet.

Cameri🐦‍🔥 cameri@nostr.eco 5 months ago

That’s a tough one. If you don’t see it being used to spam others, consider yourself lucky. If I were you I’d rather continue using it unless there’s signs someone else is using it.

The Beave TheBeave@GitCitadel.com 5 months ago

It can be. I consider my nsec more valuable than my seed phrase. The fact you are thinking about this shows that you are coming to understand just how important cryptographically signed events will be in the future. My reputation is worth more to me, at least to the people I care about, than all the BTC in the world.

1 replies ↓

rapadu 5 months ago

Also, what’s the current best practice to ‘try out’ new apps. Don’t really fancy creating a ton of nsecs and maintaining them. Could get tricky with zapping and recognition. #askNostr View quoted note →

1 replies ↓

₿k karki@primal.net 5 months ago

lol bro nsec is definitely not as valuable as seed phrase

1 replies ↓

The Beave TheBeave@GitCitadel.com 5 months ago

For me it is. My reputation is even more scarce and fragile than BTC. So is yours.

1 replies ↓

₿k karki@primal.net 5 months ago

You’re telling me to have to choose between safeguarding seed word and Nsec, you’d choose Nsec? Bro please. Your reputation is your proof of work. Not an Nsec that is just one instance of your worldview. You can always create an event 0 redirecting people to new account as long as you still have the old Nsec. Also, we have WoT to mitigate imposter accounts and scammers.

1 replies ↓

Lucas M 5 months ago

Possibly. I'm no tech geek, but if they have been abandoned by their creator, what's to stop them from collect all their past users' nsecs and running off with them.

2 replies ↓

The Beave TheBeave@GitCitadel.com 5 months ago

Yup. Mostly because I think you are underestimating the importance of being able to sign things as attestation will become more important.

1 replies ↓

₿k karki@primal.net 5 months ago

If attestation is that critical, I’ll just push an OP_RETURN message. I think you’re overestimating nsec. American HODL spins up new account every now and then we still find him.

freemymind 🇨🇭 freemymind@NostrAddress.com 5 months ago

What plattform you use? I am mostly on Android sometimes on a Desktop. Best practice is to always use an nsec bunker. @Amber for Android or nos2x for Browser. (Is just what I use)

freemymind 🇨🇭 freemymind@NostrAddress.com 5 months ago

I think it is good practice to move your nsec to a Bunker now. But until you see notes posted by your nsec that are not yours, why would you create a new one?

freemymind 🇨🇭 freemymind@NostrAddress.com 5 months ago

Why would they? Only because someone stops a project, does not mean they are angry or happy to destroy stuff.

1 replies ↓

Wondrej wondrejbtc@nostrplebs.com 5 months ago

That what I though too! I’m like 50/50 after these wholesome answers. Need tok think about it for more time lol

Wondrej wondrejbtc@nostrplebs.com 5 months ago

To allocate my time into more safe spaces. Would you like to keep your bitcoin in a wallet where you're not sure who know your seed phrase? It’s kinda same implications

1 replies ↓

freemymind 🇨🇭 freemymind@NostrAddress.com 5 months ago

A Bitcoin seedphrase is a singleuse thing anyway. One should just not reuse them in general. But a Nostr nsec represents a pseudonym of you. So I think, when there is no proof that someone has my nsec. Why should I act as if it was compromised? I can only speak for me. But my nsec I would not consider very sensitive yet. None of my family knows my npub and would trust it therefore.