🫥 on Nostr: What if the server is compromised? Can't they just have a malicious code in .js that ...
What if the server is compromised? Can't they just have a malicious code in .js that sends every information(like private key away) to the attacker?
So the client types in the password and it is sent away with the already decrypted or encrypted nsec?
Published at
2023-07-04 13:47:23Event JSON
{
"id": "263ff88b9f0b169642fff67191cfa551135edf184fbfb0b2ce32f5f29257b643",
"pubkey": "f5c60627da0f155e7b494b7722b3c2cd17aff7b8cc9f9a5344ebdb056c53d50b",
"created_at": 1688478443,
"kind": 1,
"tags": [
[
"e",
"30e63655b2ae92896b5575cf676f2e8b54e6addbfc69c193e27a124aea4851c3",
"",
"reply"
],
[
"p",
"7d8c03ac267355ab2c6d11ef91a5ab0de99f5fb5cf0cd2daafedc4615b037fd6"
],
[
"p",
"fa984bd7dbb282f07e16e7ae87b26a2a7b9b90b7246a44771f0cf5ae58018f52"
]
],
"content": "What if the server is compromised? Can't they just have a malicious code in .js that sends every information(like private key away) to the attacker?\nSo the client types in the password and it is sent away with the already decrypted or encrypted nsec?",
"sig": "04340f785bb659582f83284d31fd78fdda31fa6a10b408be5a96e74d0a250bd12913092bb14c81fb25d2bf5415f2d76fd738ef99b0e07447adecfa58b6f05d50"
}
