TheGrinder on Nostr: I'll leave it here. The hub operator having access to the NWC pairing is an opsec ...
I'll leave it here.
The hub operator having access to the NWC pairing is an opsec risk waiting to happen. When the operator adds a user to the hub it should create an isolated sub-account for that person only they can access and only they can get their NWC secrets.
Also, adding "friends" to the hub completely messed up the transaction history view. Since that page doesn't separate transactions between accounts.
The above are just two reasons why I've spun down the hub.
The hub operator having access to the NWC pairing is an opsec risk waiting to happen. When the operator adds a user to the hub it should create an isolated sub-account for that person only they can access and only they can get their NWC secrets.
Also, adding "friends" to the hub completely messed up the transaction history view. Since that page doesn't separate transactions between accounts.
The above are just two reasons why I've spun down the hub.