how? every request has your pubkey in it too, not hard to narrow it down after a few ...

npub1fjq…leku

2024-07-20 11:35:55

in reply to nevent1q…7aca

how? every request has your pubkey in it too, not hard to narrow it down after a few messages, with a set intersection operation

the real privacy violation is in the IP address because that potentially gives your physical location, and then you prove you have the key apparently at that location by authing

so yes, you want to not auth to free/untrusted relays, but they still know your pubkey and can be pretty confident that at that location lives the nsec

so, if you care about location, you use a VPN or Tor

if you care about not giving away your identity, you uninstall the client and stop using it, you are going to identify yourself auth or not, this is an authenticated protocol

if you pay for the relay, and they are selling log data to third parties, you stop paying them and you stop using them altogether

if you pay a relay they have a much greater incentive to not betray your data to third parties and if they do, then they deserve to be blacklisted by everyone in the community for this

you can also run your own relays, because the protocol allows this kind of distributed access, and nip-65 facilitates this messaging pattern

Author Public Key

npub1fjqqy4a93z5zsjwsfxqhc2764kvykfdyttvldkkkdera8dr78vhsmmleku

Show more details

Published at

2024-07-20 11:35:55

Kind type

1 Short Text Note

Event JSON

{ "id": "85aea3ecf37f3eb737d07871d4be7fcd796d4a11891d38f355ad10054733a5c0", "pubkey": "4c800257a588a82849d049817c2bdaad984b25a45ad9f6dad66e47d3b47e3b2f", "created_at": 1721475355, "kind": 1, "tags": [ [ "e", "7fb969fbf61e277337428912dd3dd4684a61c7ae04f91439f225ee8b00e9a880", "wss://relay.nostr.net/", "root" ], [ "e", "869162d6c329003416f2ddd9f3cbdc27a3624c712956b77a0a56c7cbd95d0569", "", "reply" ], [ "p", "3bf0c63fcb93463407af97a5e5ee64fa883d107ef9e558472c4eb9aaaefa459d", "", "mention" ], [ "p", "726a1e261cc6474674e8285e3951b3bb139be9a773d1acf49dc868db861a1c11", "", "mention" ], [ "p", "00000000827ffaa94bfea288c3dfce4422c794fbb96625b6b31e9049f729d700", "", "mention" ], [ "p", "f821179bd5d691c61b4356336388adadc3cc1304f49e771a87c38de7ed4fd022", "", "mention" ] ], "content": "how? every request has your pubkey in it too, not hard to narrow it down after a few messages, with a set intersection operation\n\nthe real privacy violation is in the IP address because that potentially gives your physical location, and then you prove you have the key apparently at that location by authing\n\nso yes, you want to not auth to free/untrusted relays, but they still know your pubkey and can be pretty confident that at that location lives the nsec\n\nso, if you care about location, you use a VPN or Tor\n\nif you care about not giving away your identity, you uninstall the client and stop using it, you are going to identify yourself auth or not, this is an authenticated protocol\n\nif you pay for the relay, and they are selling log data to third parties, you stop paying them and you stop using them altogether\n\nif you pay a relay they have a much greater incentive to not betray your data to third parties and if they do, then they deserve to be blacklisted by everyone in the community for this\n\nyou can also run your own relays, because the protocol allows this kind of distributed access, and nip-65 facilitates this messaging pattern", "sig": "7145fb394c3ef50ced842b2743eec272e97f91baccf85e4bebc09fa6591a6cdfd5a7fa0724962d1722c524fb1d8334bb37dfdf37bf232f163d74fc469d206835" }