Working on Gossip, Coracle, Njump and other inspiring nostr projects. I love to build helpful things that people are pleased to use, mixing tech, design, usability and accessibility.
Public Key
npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk Profile Code
nprofile1qqs8hhhhhc3dmrje73squpz255ape7t448w86f7ltqemca7m0p99spgpr9mhxue69uhkummnw3ezu7n9vfjkget99e3kcmm4vsq3samnwvaz7tmyw3hkummw9ehx7um5wgcjucm0d5hs0r80gm
Author Public Key
npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk Show more details
Published at
2024-08-30T11:28:07+02:00 Event JSON
{
"id": "7d7ab7a90fbc8e4f0f3689f0fa696451bc85d2d41f9f1f532c116f00001a5f54" ,
"pubkey": "7bdef7be22dd8e59f4600e044aa53a1cf975a9dc7d27df5833bc77db784a5805" ,
"created_at": 1725010087 ,
"kind": 0 ,
"tags": [],
"content": "{\"about\":\"Working on Gossip, Coracle, Njump and other inspiring nostr projects. I love to build helpful things that people are pleased to use, mixing tech, design, usability and accessibility.\",\"banner\":\"https://i.postimg.cc/Gtgc1yc3/immagine.png\",\"display_name\":\"daniele\",\"lud16\":\"[email protected] \",\"name\":\"dtonon\",\"nip05\":\"[email protected] \",\"picture\":\"https://avatars.githubusercontent.com/u/89577423\",\"website\":\"https://github.com/dtonon\",\"created_at\":1693341549,\"pubkey\":\"7bdef7be22dd8e59f4600e044aa53a1cf975a9dc7d27df5833bc77db784a5805\",\"updated_at\":1693494765,\"username\":\"dtonon\"}" ,
"sig": "9772f54487286192dbc06090bf034839425131ae9822e7aea017003611d67dbdd01f3b60bd235b8c547886eef35f399ee31eefb7465c8f3854bab276bd3cd5fe"
}
Last Notes npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon Coming soon to Gossip: #nevent1q…asp8 npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon # and @ are the only easily accessible keyboard characters that have a “block” design and so are easily recognized without getting in the way of the next word. I would use a double #: ##venice Or maybe !#: !#venice (slower to activate, but ! remind the map pin) npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon Probably when name and display_name differ, and the client shows only display_name. In this case NIP-05 functions as a name substitute. npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon Helping, fixing and serving represent three different ways of seeing life. When you help, you see life as weak. When you fix, you see life as broken. When you serve, you see life as whole. Fixing and helping may be the work of the ego, and service the work of the soul. -- Rachel Naomi Remen from the "The will to live & other mysteries" Here we often call it "building". Let's do it. npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon More replies npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon Interesting approach, but it seems resource intensive (calculate images hashes or similarities for all the social graph is heavy) and I suspect it can be quite fragile. Probably WoT is quicker and safer. Btw, NIP-05 is not involved here, even if it can be used to compose the final score. npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon It's open. #nevent1q…xa6s npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon https://github.com/mikedilger/gossip/blob/master/filter.example.rhai - - - - - - This is a sample spam filtering script for the gossip nostr client. The language is called Rhai, details are at: https:rhai.rs/book/ For gossip to find your spam filtering script, put it in your gossip profile directory. See https:docs.rs/dirs/latest/dirs/fn.data_dir.html to find the base directory. A subdirectory "gossip" is your gossip data directory which for most people is their profile directory too. (Note: if you use a GOSSIP_PROFILE, you'll need to put it one directory deeper into that profile directory). This filter is used to filter out and refuse to process incoming events as they flow in from relays, and also to filter which events get displayed in certain circumstances. It is only run on feed-displayable event kinds, and only events by authors you are not following. In case of error, nothing is filtered. You must define a function called 'filter' which returns one of these constant values: DENY (the event is filtered out) ALLOW (the event is allowed through) MUTE (the event is filtered out, and the author is automatically muted) Your script will be provided the following: caller - a string that is one of "Process", "Thread", "Inbox" or "Global" indicating which part of the code is running your script content - the event content as a string id - the event ID, as a hex string kind - the event kind as an integer muted - if the author is in your mute list name - if we have it, the name of the author (or your petname), else an empty string nip05valid - whether nip05 is valid for the author, as a boolean pow - the Proof of Work on the event pubkey - the event author public key, as a hex string seconds_known - the number of seconds that the author of the event has been known to gossip spamsafe - true only if the event came in from a relay marked as SpamSafe during Process (even if the global setting for SpamSafe is off) npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon All clients flag a NIP-05 in some visual way if it is invalid. This can happens for a misconfiguration but more frequently when someone try to impersonate. The problem is that this "flag" (e.g. green/red icon, open/closed lock) is not always obvious, also because it is often next to the profile picture, and newcomers may be confused and deceived. Moreover, an incorrect NIP-05 does not always correspond to spam/scam, so it cannot be further highlighted. Best pratice proposal: just hide invalid NIP-05s in feeds and threads, and show them only in the profiles, with a proper description of the problem. #nostrdesign npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon Usually a newcomer is invited to join Nostr, even if only indirectly by reading an article or watching a video or talk. For the few who start from scratch, clients usually suggest a few people to follow or automatically follow the developer. Basically you always have someone to build wot. But the point here is that without a sensible filter newcomers get confused, and runs away. The only alternative I can see is a single relay with good spam filters bundled in a client; but it's not very Nostr style. npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon Yes, it's a surreal mess. npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon The next step in the spam attack: "catch-all" domains to produce valid NIP-05s. Be ready. Just a reminder that NIP-05 does not verify. npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon Digital signatures and how to avoid them https://neilmadden.blog/2024/09/18/digital-signatures-and-how-to-avoid-them/ npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon Two weeks ™️ npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon I'm quite busy right now, but If you can't find anyone else feel free to ping me :) npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon Testing a wot relay npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon Actually this happened also to me with an old version of Amber and a recent one of Amethyst. Updating Amber solved everything. npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon The top banner should not occupy the exact height of the viewport, otherwise the user don't understand that the page is scrollable. Make it 90% and maybe add a slow pulsing arrow that point downward at the bottom. npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon And the pow level can also be updated (increased) over time, if needed (will be necessary). npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon The problem is that it is not backward compatible for existing npubs. One solution could be to use a NIP-32 tag signed with pow referring to the profile. This way, everyone can validate their own npub. This also allows one to 'whitelist' someone else, for instance someone who has been invited to join Nostr, making onboarding easier and more pleasant. npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon I'm ready 😅 npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon Yes, it's what clients currently do. npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon It could be, but they require their own app. Nonsense. npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon Unfortunately, many banks require an app for 2FA. npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon If not face-to-face, each communication requires an intermediary to store/deliver the message. Censorship resistance, defined as the ability to resist suppression or modification of a message (private or public), could help by eliminating the one point of weakness and thus increasing deliverability and system performance. I think we should first agree on the meaning of "censorship resistence" and "privacy". npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon Censorship resistance and privacy, are they really mutually exclusive? #nevent1q…at99 npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon You can use the sandboxed version of Google Services shipped with Graphene, maybe on a separate profile, and with a throwaway account. npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon What do you mean with "replace"? On GrapheneOS you can install any Android app, but with a really strong permission management. npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon Fixed. npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon Art and design are conceptually and functionally two different worlds. They have only two weak links: sometimes artists think they can necessarily be good designers, and sometime designers think to be artists outside the box in their works :) AI is a tool that can be useful in functional contexts (designing, programming, problem solving, etc), but it seems a ontological non-sense in the artistic field, since it exclude both manual or intellectual abilities, _and_ the predictability of results. npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon Habits forge misunderstandings. It is not obvious how one should live in a world of free speech. #nevent1q…m00x npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon Welcome Alex, keep building and working for a better world! 🫂 npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon Check Midori. npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon There are a lot of good quality brands around, usually the most important point is choosing an acid-free paper. Then the choice is also related to what you use to write, e.g. pencil, pen or fountain pen. Btw, I always choose notebooks with dotted pages, I find them very pleasant to write and sketch. npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon It is rather inaccurate, we have a lot of cli/server software and developers working freely or with their own business strategies. npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon Hahaha npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon As stated in my previous note, I cannot understand how a webview inside a bot is easier than a link opened with the user's browser. Please elaborate. npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon It looks nice, but doees it really help to enter Nostr? I tested it a little bit and it doesn't seem to have any particular integration with the chat, it's a only a webview within Telegram, or am I missing something? Is joining a Telegram bot really easier thant redirecting to the corresponding website (https://nostrx.xyz/)? I think we should invite users to *move out* from Telegram, asap, don't keep them comfortably there. I don't want to be a killjoy; it's just honest feedback. Keep building :) npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon Really cool! npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon Just now I realised I still had a Twitter account, Nostr made me completely forget about all the other useless social media. Problem fixed, a little less entropy in the universe and more free speech signal. https://image.nostr.build/7faea713046e008c70d03f82d84f6b70bcaed0f250133f1580af0ef1d6e7c264.jpg #nevent1q…c26y npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon The telegram version works, the web one is blank, weird. npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon Perhaps a data-only sim with SimpleX? npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon Why did you choose the this hardware? I am still looking for the best choice. npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon Gossip toolbox 🔥 #naddr1qq…r8ar npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon > Emojis are up to interpretation by the viewer and may not always be interpreted to mean what the originating poster intended. This is just the nature of symbols, culture and context. Exactly. See the 🤌 case. npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon I'm quite surprised that Amethyst creates a reaction on the user's behalf; I really don't see the utility and, as you explained, this action can have severe consequences. I didn't know about this Amethyst automatism since I don't usually report using kind 1984, exactly to avoid being linked to questionable content. I think @npub12m2…e68j is a good solution. Finally, if you really must choose a negative reaction, why not use “-” as NIP-25 requires? At least clients would hopefully not show these notes as pinned content in the user's profile. npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon For testing, a service could actually be useful. But filtering notes tagged by a third party should be definitely more complex, right? npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon I suppose that the tagging UI is quite trivial, you just need an single icon that iterates the languages in loop when pressed. And many users will have just one language, so they do not have to touch anything after the onboarding. Then using a service you cannot "upgrade" to the region labeling, and you have to manage the incorrect detection issue; finally a service have be manteined and be economically sostenibile. Better to offload this easy task to the users. npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon It's exactly what I'm proposing :) In fact I mentioned NIP-32. The group of clients embracing this idea is just to offer an interoperable feature, and so collect more feedbacks. npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon I don't think any client has tried this. Such an experiment should be tested by a client with a large user base; or better with an interoperability orientation, by a pool of clients, so to bring in different types of users and points of view. In addition this is an addition that doesn't cause any incompatibility issue to the protocol, it can easily be deprecated by clients if it shows little utility. It's not even necessary to touch the NIPs, it's sufficient to take advantage of NIP-32 labels. In brief: 1) When logging in and creating the account, the user can choose one or more languages. 2) When browsing a feed the user can select a language to filter the notes. 3) When the user enters a thread from a filtered feed, the client shows all the notes by default, and if possible it translates replies to the original language used in the feed; in addition the user can force a language filter at thread level, too. 2) When posting a note the user can indicate what language it is using, by selecting one of the preselected ones; optionally the client can detect the used language and select it automatically, allowing the user correct the choice. A slightly more complex version, from a user interface perspective, may include not only the language but also the region; and this also is backward compatible using NIP-32 and simply *adding* an ISO-639-2 tag to the basic ISO-639-1 one (since relays cannot filter by prefix, right?). npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon The solution is quite obvious: let the user specifying his own language, use it in a tag, and let the user optionally filter/download only the selected content. Local bubbles can be a problem in the long term but are important for welcoming new users, especially if they are not able to speak a foreign language. Knowing that this option is standard, would make people more inclined to freely switch language when posting, truly enriching the linguistic and cultural presence in the network, and so promoting Nostro locally. Instead now most use only English, this proves something is not working right. npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon Anche io scrivo solo in inglese, ma questo purtroppo porta un appiattimento linguistico e crea anche una barriera d'accesso non indifferente. npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon I agree. And I have said so from the beginning. It was thought that language-specific relays might help, but that seems impractical in the short term. And we really need good onboarding and experience to create momentum. npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon Very long thread with some interesting thinking on the current login patterns via email: https://news.ycombinator.com/item?id=41475218 Certainly the management of a private key is more complex and requires well-crafted procedures, that we are still fine-tuning with Nostr. But at least when it is ready, we will be able to offer an open, bigcorp-free single sign-in procedure and free users from the madness of many passwords. npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon Not always true, an impersonator can easily create thousand of followers. npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon Sorry, I didn't take note before updating. Maybe I was just using a quite old version. PS: an integrated notification of new versions could be a good feature for sensitive apps like Amber. npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon I just updated Amber and now the problem seems to have been solved. Before, when I was composing a note, every few characters Amber would slide in and out automatically, it was a mess. The nip44 problem is different, it was already there, the remember flag is not respected. npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon @npub1gcx…nj5z after this update the combo Amethyst + Amber is unusable, there are constant transitions between the two apps, maybe the culprit is "Adds sliding animations in all inner screens"? Then there is still the problem of nip-44 decription: the permission is not remembered and it pops up randomly. Maybe something related to Amber? @npub1w4u…0jr5 npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon Yes, I talked about the client perspective but the relay part is also really important, of course. As you say, at relay side things are harder since they don't have direct access to the social graph. The usual proposals here seem to point to PoW, a payment or an invitation, to unlock access. But I fear that all these approaches could create a lot of friction and slow down onboarding. Even network filtering does not seem very effective, when you have disposable key pairs and VPNs. I would avoid to delegate to AI this job, this would really escalate to an AI vs AI fight. Do you have any other ideas? npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon I agree that we should start restrictive, a first filter by WoT should be sufficient, then we can mix other variables. Also the UI should adapt, for example temporary hiding instead of filtering out completely, to let the user dig in false positive and unlock them. npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon ReplyGuy Is evolving, a positive stimulus for relay and clients to improve their filter capabilities. npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon Crazy. But actually they can be benefit from Nostr, they should only pay attention to use or bootstrap relays in other countries. npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon Why? npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon Forged created_at npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon It's public, Unstable has Global for some time npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon Do you more often browse the feed with only the main notes or the full feed with the replies? And why? #asknostr npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon Italian vibe haha! npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon Let us peek into the freezer! npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon Same problem here. Pro tip: leave the watch active on the NIPs, but in the GitHub preferences choose the email alert only for direct mentions and issues/PR you are working on, and let all the other notifications go to the GitHub web inbox. This way, you free up your email, but when you want, you can keep an eye on the ongoing activities. npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon Git over Nostr :) It's quite talked about, and used. npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon I tried to use ngrok on Android just to achieve this, this solution is really cool. npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon Exactly :) What are your wardrobes like, Vanessa? 😀 npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon Damn, this is genius #nevent1q…uzfl npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon My question usually is: Does it bring me joy? If not, I let it go. npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon You have to manually add a new client, so you get the bunker url. npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon Probably the best approach for a community is to offer the onboarding using nsec.app (or maybe a cloned instance with a personalized domain) and let them use NIP-46. npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon ditto.pub has one of the most elegant and curated interfaces, it really looks like a professional product and it offers a really positive and relaxing Nostr UX. Bravo @npub1q3s…d26p npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon Nice and useful work! I would suggest reflecting the research as permalinks, to make it easily shareable. npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon #naddr1qv…0gdy Great article! npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon My bet is that 99.9% of the world is onboarded via some already active Nostr user OR using a well known client, that so takes the responsability for not exposing only one totally fake network. npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon I understand, it is not easy. The good news is that these trusted parties can be collaborative and self-monitored: peer reviewed algo within peer reviewed platforms. But we must always keep an open eye on our verification attitude. npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon Someone has to sign the badge; the protocol cannot do it alone. So this “someone” gives trust/value to the badge. npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon Nice idea, but the problem here is the "value" of the badges. It is necessary bounded to whom create them, they are just a passthrough, so we are falling back to the Web of Trust. npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon The whole concept of "verification" is bound to centralized structures, it should be buried. Self-verification is a state of mind. Instead, verifying someone/something else is a matter of active experience and interactions, which minimize the trust factor. Of course technology helps, but also WoT needs to be verified and not blindly trusted. "Proof of work" means taking responsibility for everything we care about, exactly like we do (should do) in real life. npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon Indeed. The problem arises only when a malicious client exclusively uses it's own malicious relays where the fake social network is totally detached. npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon Share a contact, search a contact. Think of it as a shortcut to a nprofile (npubs + relays hints). npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon Actually, you can have more NIP-5. npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon PoW is a powerful tool, but I don't like mixing money in the verification process, it becomes an upward game where the economically strongest wins. The social graph should be enough, and it's harder to hack. npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon We should stop pairing NIP-5 with the word "verification". For newcomers it risks being a shitcoin game. Use NIP-5 for its real functions and embrace WoT for actual contacts check. #nevent1q…xkct npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon Partially wrong. NIP-5 as used by 99.9% of people doesn't "verify" anything. It is just an handy way to share/search contacts. Only people that own a well known domain can leverage it as attestation of their connection with it. npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon Everyone must do their part #nevent1q…0xlh npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon Data URLs are still a possibility for store binary, unfortunately, and some clients render them. npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon @nprofile…9929 dave doesn't want to share his source logic, but it's somehow broken 🤷 npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon This is another way to refer to a profile, and it does NOT contains "7bdef7be". Where did you get this specific string from? Show me the whole source for the message, with every detail npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon 7bdef7be is wrong since it is partial, you should get the full hex id. Which is mine? npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon Where you read from this 7bdef7be handle? Give me the full source npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon And so where did you get "@7bdef7be" from? npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon Don't you have access to the full json with the note author? npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon Damn, you just replied doing the same mistake. Please give me the full source of my previous message. npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk dtonon You used the @ again, bad. To mention an user use the full hex id prefixed with "nostr:" For example I'm @nprofile…evy3