Vitor Pamplona's avatar
Vitor Pamplona _@vitorpamplona.com 1 year ago
> Losing keys.. So, you prefer to give your keys to a company that can do anything as if they were you... That is not safer or more private. The company can and is tracking you everywhere. > Metadata DMs on Nostr don't leak metadata anymore. Just use the new one. It has been live for over a year. > IP address Proton doesn't protect you against IP leakage. Every time you connect to any server, your IP leaks, including Proton's.
↑ Parent

Replies (2)

Ava's avatar
Ava ava@nostrplebs.com 1 year ago
Ava's avatar Ava
Currently NSEC is acting as a one key to rule them all concept. People are plugging their one key into all kind of apps, some secure, many not. If any of those apps are compromised, your entire account and every thing you logged into is compromised. This is akin to using one password on all your accounts. It's bad OPSEC. What I mean is we need a way to create multiple keys based on that ONE key pair, similar to creating a unique password for every account. This way, if one Nostr based app is comoromised only that "baby" key is compromised and not the "master" key that it came from. An option to "freeze" these keys or delete would be even better.
View quoted note →
Vitor Pamplona's avatar
Vitor Pamplona _@vitorpamplona.com 1 year ago
You can't create a wallet without creating a proton account, which is controlled by them. You have to give them ability to control your id.