But should the easy solution be. If I see a note, and I quote it, the client should rebroadcast that not with my quote? Isn’t that just a thousand times simpler? It doesn’t solve everything, but gets rid of some issues.

Find better ones how exactly? Is there a central trust list?

thats exactly what we're trying to move away from

Gotta do your research. Find each of your relay's operators, read their privacy policies and terms and conditions. You need to know who you are "in business with" and what they are and are not doing with your data. Don't delegate that due diligence to anyone else. And always remember, if it's free, you are the product.

*cough cough* nostr registries *cough cough* @Laeserin 🇻🇦 *cough* *cough* first as an answer to centralized nips repository. Next as an answer to trusted relay operators and developers. Close will be our answer to DNS. Thoughts @Vitor Pamplona? https://wikifreedia.xyz/nip-event-register/npub1m4ny6hjqzepn4rxknuq94c2gpqzr29ufkkw7ttcxyak7v43n6vvsajc2jl

If you connect to a relay, that relay knows you connected (your IP address) and what questions you asked. This is EXACTLY like a web browser. Everytime you go to a website, that website knows you connected (your IP address) and what questions you asked (the URL). People who insist on hiding their IP address use VPNs or Tor. This works perfectly well with nostr just like it works for the world wide web. Trying to avoid connecting to some relays just makes nostr dysfunctional. This problem is outside of nostr, and nostr clients are just making the problem much more complicated than it needs to be by coding connect-based relay access control lists. Just tell the user to use a VPN or Tor if they are concerned about privacy. As for AUTH, that makes more sense to me. You shouldn't just AUTH to a random relay. But fetch a note... I don't see what the big deal is.

Agree on Tor and on Auth. But we don't have a good/easy solution for Tor yet. Most people just use their regular connections on the go. So, I see as a massive privacy risk.

Does reading from a relay and not writing to it offer any changes in privacy?

It depends on which filters you send and if you have to auth or not. We just have way too many filters bundled in one subscription to risk. Gotta redesign that part of the code :(

This is another * use case for proxy relays like filter.nostr.wine which can implement inbox/outbox without leaking your IP to untrusted relays * the others being performance and spam filtering

how does one build trust with a relay? does each relay have an about page that is accessible in a consistent way? View quoted note →