Innocent Bystander on Nostr: Privacy reminder. #nostr is *very* public, by design. It's meant to be broadcast. ...
Privacy reminder.
#nostr is *very* public, by design. It's meant to be broadcast.
#mastodon users had concerns about DMs not being encrypted and readable by instance admins.
But here, anyone can "log in" and get a read-only view of anyone else's account on Nostr with just their public key (available in their profile). See your follows/followers/zaps/etc... as you would.
Be careful with logging in to arbitrary web clients as well, with your private key, as you've essentially handed that service owner the ability to be you. You may trust them, but if they then get compromised, so does your private key.
Stay safe out there friends.
#infosec #privacy
#nostr is *very* public, by design. It's meant to be broadcast.
#mastodon users had concerns about DMs not being encrypted and readable by instance admins.
But here, anyone can "log in" and get a read-only view of anyone else's account on Nostr with just their public key (available in their profile). See your follows/followers/zaps/etc... as you would.
Be careful with logging in to arbitrary web clients as well, with your private key, as you've essentially handed that service owner the ability to be you. You may trust them, but if they then get compromised, so does your private key.
Stay safe out there friends.
#infosec #privacy