Relays could be known by a keypair (and DVMs too). But a lot of bits of nostr ...

npub1acg…p35c

2025-02-03 03:58:30

in reply to nevent1q…k06h

Relays could be known by a keypair (and DVMs too). But a lot of bits of nostr currently use URLs. So that means relay hints using pubkeys would need to become acceptable, nprofiles too, relay lists, and lots of software that presumes otherwise will need to index relays by their pubkey and URL until the transition happens. It is a big move and will take a long time to migrate and we haven't really even started yet.

But in the end we no longer depend on DNS or Certificate Authorities (we can use our own keys for SSL, relays would issue an ed25519 subkey pair for it, certified by their nostr key).

That is, all the things about the Internet that are top-down authoritarian things... we can weasel out from under them if we migrate in this direction.

I imaging going even further. I'd have a web server that served normal content over TLS port 443, but if you include a certain header magic it becomes a nostr relay. So in China the CCP will see it is just a normal website, and all the encrypted traffic to that website looks totally legit... but it's secretly a nostr relay behaving differently upon the passphrase. (Such schemes fail via infiltration, but at least it makes the scheme possible).

I like DHTs. I think mainline DHT is good. We have code for bootstrapping keys and relays and URLs from mainline DHT. But it is in rust and I'm not sure it is technically "simple" enough for nostr.

Author Public Key

npub1acg6thl5psv62405rljzkj8spesceyfz2c32udakc2ak0dmvfeyse9p35c

Seen on

wss://nos.lol wss://nostr.einundzwanzig.space wss://nostr.mom wss://relay.damus.io wss://relay.primal.net

Show more details

Published at

2025-02-03 03:58:30

Kind type

1 Short Text Note

Event JSON

{ "id": "31a6888e6acbc60ae7dbf5abc56f064123136e6d6fc378378ca2550ade41375a", "pubkey": "ee11a5dff40c19a555f41fe42b48f00e618c91225622ae37b6c2bb67b76c4e49", "created_at": 1738555110, "kind": 1, "tags": [ [ "p", "e02a020a41750877f118dda74015fabcee48e2b362e735062f637c163fc765db" ], [ "e", "0456fb774d0f90f15a8aa01226ee2a4b921b864ae121c49060a7d5b467770482", "wss://nostrue.com/", "root" ], [ "e", "cf3e80ce888f68eb93e29c303f8a06e73b873ca8d632aa19caee7508393f97a2", "wss://nos.lol/", "reply", "e02a020a41750877f118dda74015fabcee48e2b362e735062f637c163fc765db" ] ], "content": "Relays could be known by a keypair (and DVMs too). But a lot of bits of nostr currently use URLs. So that means relay hints using pubkeys would need to become acceptable, nprofiles too, relay lists, and lots of software that presumes otherwise will need to index relays by their pubkey and URL until the transition happens. It is a big move and will take a long time to migrate and we haven't really even started yet.\n\nBut in the end we no longer depend on DNS or Certificate Authorities (we can use our own keys for SSL, relays would issue an ed25519 subkey pair for it, certified by their nostr key).\n\nThat is, all the things about the Internet that are top-down authoritarian things... we can weasel out from under them if we migrate in this direction.\n\nI imaging going even further. I'd have a web server that served normal content over TLS port 443, but if you include a certain header magic it becomes a nostr relay. So in China the CCP will see it is just a normal website, and all the encrypted traffic to that website looks totally legit... but it's secretly a nostr relay behaving differently upon the passphrase. (Such schemes fail via infiltration, but at least it makes the scheme possible).\n\nI like DHTs. I think mainline DHT is good. We have code for bootstrapping keys and relays and URLs from mainline DHT. But it is in rust and I'm not sure it is technically \"simple\" enough for nostr.", "sig": "c5397cdd814dc7a86e6a9d21a8aa630d4a2a24992a86c5bfc57ce39779f04a179fc0f828996342c623d158c91fa95e41ee2e3f9ee958ca392c0c72fbdfce6ccf" }