This seems like a halfway to federation approach which I have no issue with. My issue is that access to the data on relay should be inaccessible by relay operators unless specifically granted by user for specific time and task. This probably wont happen though since it would imply moving the filtering / trusting capabilities to the edge by necessity and i dont see relay operators wanting to give up access to peoples data.
Anything less than this while relying on relays leaves the door open for abuse. doesnt matter if the current devs and relay runners are saints. We dont know who comes next. its a common problem. once sysadmins, dbas, SLA holders get their hands on data they cant help themselves. eventually they start poking around. they conflate "their server" with "their data"
My true concern is that out of expedience we are setting the groundwork for future abuse and social engineering.
Good luck as you proceed.
I will watch with interest.
Pepe_NOSTRos / Pepe NOSTRos
npub1fd6…tddp
2024-05-26 16:32:02
in reply to nevent1q…aner
Author Public Key
npub1fd6xvlufxkxdtq4ds2ck5tfy6kluhzdvfvf50m5qu4n55ya60zeq43tddpPublished at
2024-05-26 16:32:02Event JSON
{
"id": "e991979f1c158f03a59bc15ae2544299da9c8943c13a44ced54df14486c3069c",
"pubkey": "4b74667f89358cd582ad82b16a2d24d5bfcb89ac4b1347ee80e5674a13ba78b2",
"created_at": 1716733922,
"kind": 1,
"tags": [
[
"e",
"de8a97bc622006877c7881a9a69867a794395430fe8401bf0103992f9e3b4907",
"",
"root"
],
[
"e",
"1d38a3b4e54d2e4ed3d01a3ff3b92dd42aa0162a02bd0471bdc362ff5eb7eb88",
"",
"reply"
],
[
"p",
"97c70a44366a6535c145b333f973ea86dfdc2d7a99da618c40c64705ad98e322"
],
[
"p",
"df67f9a7e41125745cbe7acfbdcd03691780c643df7bad70f5d2108f2d4fc200"
],
[
"p",
"cd868bf553cabfeef5ff89f9d34875210cdeda276ca4c6a3e7ffb7a31ab96447"
],
[
"p",
"e5272de914bd301755c439b88e6959a43c9d2664831f093c51e9c799a16a102f"
],
[
"p",
"cfd7df62799a22e384a4ab5da8c4026c875b119d0f47c2716b20cdac9cc1f1a6"
],
[
"p",
"460c25e682fda7832b52d1f22d3d22b3176d972f60dcdc3212ed8c92ef85065c"
],
[
"p",
"633f317e99bc5a55c85d842784989a2bcdc31bea3c4c01fdfc80fd340facca3a"
],
[
"p",
"726a1e261cc6474674e8285e3951b3bb139be9a773d1acf49dc868db861a1c11"
]
],
"content": "This seems like a halfway to federation approach which I have no issue with. My issue is that access to the data on relay should be inaccessible by relay operators unless specifically granted by user for specific time and task. This probably wont happen though since it would imply moving the filtering / trusting capabilities to the edge by necessity and i dont see relay operators wanting to give up access to peoples data. \n\nAnything less than this while relying on relays leaves the door open for abuse. doesnt matter if the current devs and relay runners are saints. We dont know who comes next. its a common problem. once sysadmins, dbas, SLA holders get their hands on data they cant help themselves. eventually they start poking around. they conflate \"their server\" with \"their data\"\n\nMy true concern is that out of expedience we are setting the groundwork for future abuse and social engineering.\n\nGood luck as you proceed.\nI will watch with interest.",
"sig": "b63b33d9820859b026e49d8929ea9b1235820938c7bf0e585f2fcb0ef74886fea3044c49ef821799402c0a49e88147b7c03469a9a3a703fdd48e50671b201bfa"
}