Rene on Nostr: It depends... Was it in your own system? Which os was it? Do you have full control of ...
It depends...
Was it in your own system? Which os was it? Do you have full control of the machine? Did you trust someone else to install software? Do you use any clipboard assistant helper?
You know, if you have a compromised system, even if you type your nsec digit by digit you may get your identity stolen.
It matters how tech savvy you are to trust your system.
About using a signer, I think it is useful in browsers when you may follow a malicious link without realizing, but if you are on a mobile app signed by an app store... Putting your nsec on the nostr app or nostr signer app just changes who you're trusting.
I personally use KeePass on my systems to insert sensitive data, but every approach has its flaw.
If you can't relax after this episode, you may start a new profile, but if think of all the ways it can go wrong, this would mean nothing on a "safe" machine, considering your threat model.
Was it in your own system? Which os was it? Do you have full control of the machine? Did you trust someone else to install software? Do you use any clipboard assistant helper?
You know, if you have a compromised system, even if you type your nsec digit by digit you may get your identity stolen.
It matters how tech savvy you are to trust your system.
About using a signer, I think it is useful in browsers when you may follow a malicious link without realizing, but if you are on a mobile app signed by an app store... Putting your nsec on the nostr app or nostr signer app just changes who you're trusting.
I personally use KeePass on my systems to insert sensitive data, but every approach has its flaw.
If you can't relax after this episode, you may start a new profile, but if think of all the ways it can go wrong, this would mean nothing on a "safe" machine, considering your threat model.