Yes. There is room for differing opinions on this issue -- in our view the "secure my funds only with my npub" -- is not safe enough. Here is our FAQ entry on the issue, in case this interests you: Can I log in with my Nostr account? We have carefully designed Rizful for maximum security. At the same time, we have found that too many Nostr users have poor security practices with their private keys. (For example, entering private keys into many websites and apps.) Since real money is involved, we don't allow users to login via Nostr, and we don't ever ask for your private Nostr key. A combination of email/password, plus optional two-factor authentication, is the battle-tested and secure way to protect your Rizful account. This approach ensures that, if you make a mistake with your Nostr keys in the future, your Rizful account won't be vulnerable. Please note that you MAY use a privacy-preserving email service, or a "hide my email" feature (like on iOS) when signing up for Rizful.