fiatjaf on Nostr: I'll take your answer as a new item in the list: captcha-based relays. Basically all ...
I'll take your answer as a new item in the list: captcha-based relays.
Basically all "web2" websites of today rely on some form of whitelisting or KYC, such as email verification (and requiring an email address from a provider that does its own KYC controls, not any rogue provider), mobile phone verification (same, it's KYC by proxy) or oAuth from an established provider that has done some of these.
IP blacklisting is not effective to prevent spam account creation and captchas are often used together with other measures, or only in services that do not allow you to host your stuff for free on them so there is no big risk.
But I think captchas could would well for relays in a less orwellian world.
Basically all "web2" websites of today rely on some form of whitelisting or KYC, such as email verification (and requiring an email address from a provider that does its own KYC controls, not any rogue provider), mobile phone verification (same, it's KYC by proxy) or oAuth from an established provider that has done some of these.
IP blacklisting is not effective to prevent spam account creation and captchas are often used together with other measures, or only in services that do not allow you to host your stuff for free on them so there is no big risk.
But I think captchas could would well for relays in a less orwellian world.