↳ 回复 事件不存在
6f7bacdf71f7ad54edbe4a17c9aa06b6580bf81c29a2213e6c1a909e1b8e44a9
Soon someone will make a shitty version of Iroh and call it Nostr Holepunching or whatever, get some grants and disappear in a year. Broken shit.
Kind-1 (TextNote)
930ccef12372dd2f...
npub
npub1jvxvaufrwtwj79s90n79fuxmm9pntk94rd8zwderdvqv4dcclnvs9s7yqzpubkey (hex)
930ccef12372dd2f16057cfc54f0dbd94335d8b51b4e2737236b00cab718fcd9nprofile
nprofile1qqsfxrxw7y3h9hf0zczhelz57rdajse4mz63kn38xu3kkqx2kuv0ekgprf58garswvaz7tmjv4kxz7fwva6kcat8w4k82tnddajsy4z77w动态 (28)
↳ 回复 Technical Debt (npub14w4qnk43lsllls2qnldj3vfcxtx5qvtsf3xlvxv9yha8afrxhmfqju3rwx)
My concern with electing a server for anything is that, should that one server become unreachable fo...
Well then you better download the recovery key as soon as possible and back it up. And if you are afraid the server might rugpull you, then consider m...
Well then you better download the recovery key as soon as possible and back it up. And if you are afraid the server might rugpull you, then consider making an onchain transaction to rotate the keys to keys only you have, and not the server.
Just because it is a Progressive custody scheme, doesn't mean you can't start from self custody too, but most people won't, not until they actually care about the thing they are going to take custody of, and it takes time before people get invested in their online presence.
Kind-1 (TextNote)
My plan for the POC for Mlkut PKI is a registration app that allows you to progressively gain more control of your identity; 1. Level One; a server th...
My plan for the POC for Mlkut PKI is a registration app that allows you to progressively gain more control of your identity;
1. Level One; a server that already registered a batch of IDs points one of these IDs to the endpoints you want, and allow you to update them using a Passkey.
2. Level Two; if you want to survive the server dying, you can download a recovery key.
3. Level Three; if you don't want to trust the default server with custody of the keys any more, you can either;
A) Pay a Rootstock transaction fee to change the recovery key to something that the server never had.
B) Move to another server, and let that new server pay the transaction fee, possibly by batching multiple users migrating at once.
If you remain at Level 1, you are not too different from Mastodon.
If you remain at Level 2 you are not too different from Bluesky (trusting DID PLC and your server not to steal your identity).
If you go all the way to Level 3, you are just as sovereign as having Nostr Nsec + using bunkers + can fire the bunker if they try to steal your identity, but you need to pay for a transaction fee for that.
The main downside remains that if you trust a server to custody the keys, you really need to get notifications if the server tries to steal your identity, by watching the Rootstock chan.
In practice, most users will remain at Level One, but they have the option to upgrade their control if they care.
And of course the ID is short enough you can enter in a username field from memory, and use a Passkey to authenticate a device, but that is advance demo from just registration.
Kind-1 (TextNote)
↳ 回复 Technical Debt (npub14w4qnk43lsllls2qnldj3vfcxtx5qvtsf3xlvxv9yha8afrxhmfqju3rwx)
Public spaces will eventually rot regardless and the real platform is the friends we make along the ...
I am basically making the point that people don't actually need cold emails at all. You can have a situation where you only get messages from people y...
I am basically making the point that people don't actually need cold emails at all. You can have a situation where you only get messages from people you shared contacts with.
But I am not too committed to this take, I am perfectly happy with 100000 friend requests that I can check at my leisure or through AI at to filter.
Kind-1 (TextNote)
↳ 回复 Technical Debt (npub14w4qnk43lsllls2qnldj3vfcxtx5qvtsf3xlvxv9yha8afrxhmfqju3rwx)
Speaking of out of band, this is something which also happens from time to time. Not sure if it coul...
This would have been a non issue if we had IDs that support recovery like Gnosis Safe and Farcaster IDs. Seriously Farcaster IDs are the north star ...
This would have been a non issue if we had IDs that support recovery like Gnosis Safe and Farcaster IDs.
Seriously Farcaster IDs are the north star but we got to make them actually scalable and censorship resistant without relying on a Rollup that might not exist in 10 years
Kind-1 (TextNote)
↳ 回复 Technical Debt (npub14w4qnk43lsllls2qnldj3vfcxtx5qvtsf3xlvxv9yha8afrxhmfqju3rwx)
Blocklists bring back central authorities, hiding everything by default once again risk hiding legit...
I don't think unsolicited messages are that important of a problem to solve, and I think just letting everything in (as long as the storage is minimal...
I don't think unsolicited messages are that important of a problem to solve, and I think just letting everything in (as long as the storage is minimal) then filter them manually or with AI or with a trusted server using TEE, all these are doable.
How many meaningful connections have you had from cold email that could have landed in spam? Not zero but not many.
I also believe that the human way we have always did this and always will be is;
1. I find you in an open forum like this one.
2. We exchange contacts
3. We keep talking to each other way after the forums die, thanks to direct messaging and that phone numbers and emails and stuff like that are actually rarely deplarformed ..
so let's just go all the way on identity, and not worry too much about discovering people, there will always be forums and group chats it is fine.
Kind-1 (TextNote)
↳ 回复 Technical Debt (npub14w4qnk43lsllls2qnldj3vfcxtx5qvtsf3xlvxv9yha8afrxhmfqju3rwx)
Even if the influx of invites don’t take down a server, they still annoy the end user and are otherw...
Yeah but the bad guys also are more likely to be newly registered, but regardless they are also cheap to black list, you just need to subscribe to a g...
Yeah but the bad guys also are more likely to be newly registered, but regardless they are also cheap to black list, you just need to subscribe to a good list, or you know, just let them send stuff and don't show them in the app, until the user is reaaaally bored and want to check it.
We need to ask a hot girl on Instagram how does she feel about message requests... Because I don't get many :D
Kind-1 (TextNote)
↳ 回复 事件不存在
b9cd1a092f40fa71072f9cd6c56a4e17382b1453c600cf5c6308c8cb72cfc599
Yeah of course, but think how insane this is, when all I want is to reply to you, instead of just sending you an email like sane people I am supposed ...
Yeah of course, but think how insane this is, when all I want is to reply to you, instead of just sending you an email like sane people I am supposed to send a packet in the wind and hope for the best?
Even for many to many, which is a very niche case that more or less boils down to Twitter feeds UX, who actually benefits from the insane bandwidth of that gossip? And storage? Who pays for all of that and why? Wouldn't it be infinitely more manageable and cost effective to have things like discord servers and Reddit and group chats etc?
Nostr and Bluesky and Pubky (less so Mastodon because it is aligned with intentional messages passing) are simply intractable and can't both scale and remain decentralised... Because they chose a requirement that is impossible to scale.
Kind-1 (TextNote)
↳ 回复 Technical Debt (npub14w4qnk43lsllls2qnldj3vfcxtx5qvtsf3xlvxv9yha8afrxhmfqju3rwx)
I don’t think WoT is enough on its own but the friend request thing doesn’t scale alone either. The...
But the biggest flaws as nostr:npub180cvv07tjdrrgpa0j7j7tmnyl2yr6yr7l8j4s3evf6u64th6gkwsyjh6w6 noted in that thread is the unwieldiness of the Blockch...
But the biggest flaws as nostr:npub180cvv07tjdrrgpa0j7j7tmnyl2yr6yr7l8j4s3evf6u64th6gkwsyjh6w6 noted in that thread is the unwieldiness of the Blockchain especially Ethereum. I mitigate that by;
1. I don't bloat the Blockchain state so the expense doesn't get out of hand.
2. I use the Blockchain for as little computation as possible to keep the cost low.
3. I only use a smart contract to track an accumulator of previous submitted opaque data.
4. I use Rootstock which is a merge minded PoW chain, so I can have a super light client to find the fork choice.
5. Once I get the light client proof of the latest blocks, I read the accumulator from the contract state, all of that is merkle binary tree stuff, so very light.
6. I ask nodes for the state of any ID, and they give me;
A) the state.
B) a merkle proof from the state to the root of the entire IDs set merkle tree.
C) a ZK STARK proof that given a history that accumulates into the accumulator hash from step 5, you should get a full state with the merkle proof from step B.
This way, light clients don't even have to download the history, neither the history of Bitcoin, nor Rootstock, nor the events published on Rootstock.
At least this is the rough plan, I still need to prove that all this actually works
Kind-1 (TextNote)
↳ 回复 Technical Debt (npub14w4qnk43lsllls2qnldj3vfcxtx5qvtsf3xlvxv9yha8afrxhmfqju3rwx)
I don’t think WoT is enough on its own but the friend request thing doesn’t scale alone either. The...
This is why you need to use an identity system where creating identities cost something. Email does this by blacklisting spammy servers so servers ha...
This is why you need to use an identity system where creating identities cost something.
Email does this by blacklisting spammy servers so servers have to limit who sign up somehow.
My idea for a cost is basically the Blockchain, basically servers buy a batch of rare limited IDs, and transfer them to users that they have to then audit, because shit isn't free. Of course a determined user can go to the Blockchain directly.
I figure a rate limit of 100K users a day is enough to satisfy even the insane onboarding of Bluesky, while not actually have infinite IDs to burn.
A friend request could be as small as 128 bytes or so, so it is hard to overwhelm a server by requests, and each one costs money, so a spammer is much better off with social engineering some other way.
Kind-1 (TextNote)
↳ 回复 Technical Debt (npub14w4qnk43lsllls2qnldj3vfcxtx5qvtsf3xlvxv9yha8afrxhmfqju3rwx)
Yeah a long form note would be easier to follow, this thread gives an overview nostr:nevent1qqs9x9dy...
He is on the right direction, Ethereum is a bad choice though, and Nostr is even worse choice. This is a common problem with Nostr users and Devs, the...
He is on the right direction, Ethereum is a bad choice though, and Nostr is even worse choice. This is a common problem with Nostr users and Devs, they use it as a shortcut to avoid building their own gossip protocol, even though in this case the data is scarce enough that a gossip protocol is simple.
I am not sure he has a delayed rotation of the recovery key with the custody key as Farcaster IDs do or not but it is easy to add.
Few things are worth pursuing like history compression with ZK proofs and merklization of the entire state...
There is some indication that he is considering supporting server subsidy of registration, which is definitely the correct direction and should be a first class flow in the protocol.
I am working on something like that in my free time on Rootstock
Kind-1 (TextNote)
↳ 回复 Technical Debt (npub14w4qnk43lsllls2qnldj3vfcxtx5qvtsf3xlvxv9yha8afrxhmfqju3rwx)
I think a funding crisis shouldn’t hit Nostr as hard as it would, say Bluesky or Matrix. Worst cas...
If that was the case why does it cost millions now?
Kind-1 (TextNote)
↳ 回复 Technical Debt (npub14w4qnk43lsllls2qnldj3vfcxtx5qvtsf3xlvxv9yha8afrxhmfqju3rwx)
That sounds like a watered down version of WoT, and that’s already something implemented very superf...
No, WoT requires a public social graph so I know who are the friends of my friends, and even if you can do with with ZK proofs, I haven't seen any evi...
No, WoT requires a public social graph so I know who are the friends of my friends, and even if you can do with with ZK proofs, I haven't seen any evidence of solid implementation that can handle spam well. We have decades of email fighting spam and it boils down to just servers doing their best at heuristic, if WoT was effective you would already have it.
Kind-1 (TextNote)
↳ 回复 Technical Debt (npub14w4qnk43lsllls2qnldj3vfcxtx5qvtsf3xlvxv9yha8afrxhmfqju3rwx)
Fair point, but nostr:npub16xnpfx85k8wzdhctang6860g3u64lds5kac73ddjwlg0lxdg9g3su56z6l has cooked a k...
Wait maybe nostr:npub16xnpfx85k8wzdhctang6860g3u64lds5kac73ddjwlg0lxdg9g3su56z6l is actually going in the right direction... I see a mention to a Bloc...
Wait maybe nostr:npub16xnpfx85k8wzdhctang6860g3u64lds5kac73ddjwlg0lxdg9g3su56z6l is actually going in the right direction... I see a mention to a Blockchain... Need to read more, I wish there was an easy link for the architecture
Kind-1 (TextNote)
↳ 回复 Technical Debt (npub14w4qnk43lsllls2qnldj3vfcxtx5qvtsf3xlvxv9yha8afrxhmfqju3rwx)
Fair point, but nostr:npub16xnpfx85k8wzdhctang6860g3u64lds5kac73ddjwlg0lxdg9g3su56z6l has cooked a k...
Key rotation is super easy, at least if you have a strong consistency database to read from like DNS nameservers. Key revocation is the hard part, for...
Key rotation is super easy, at least if you have a strong consistency database to read from like DNS nameservers. Key revocation is the hard part, for example what happens if you give your nsec to a bunker, and it leaks, how do you recover from that? You can't do that without a Blockchain but it is hard to explain why. Try to study Farcaster IDs they did a good job explaining their key management targets
Kind-1 (TextNote)
↳ 回复 Technical Debt (npub14w4qnk43lsllls2qnldj3vfcxtx5qvtsf3xlvxv9yha8afrxhmfqju3rwx)
I’m afraid federated protocols such as email and matrix are designed in a way which makes distribute...
Sure, but Nostr also doesn't have the best decentralised ID. Nostr is quite hard to change though, go try to convince Nostr folks that HTTP is quite ...
Sure, but Nostr also doesn't have the best decentralised ID.
Nostr is quite hard to change though, go try to convince Nostr folks that HTTP is quite good actually and websocket is bad default.
Kind-1 (TextNote)
Guys you can go read the amounts of grants that are keeping Nostr free relays viable, it is by no means any less than the amounts of VC money keeping ...
Guys you can go read the amounts of grants that are keeping Nostr free relays viable, it is by no means any less than the amounts of VC money keeping projects with no users nor revenue afloat. It is much appreciated public goods, but it won't last if the few wealthy donors disappeared. You should celebrate that public good funding, but please stop with the Bitcoin memes of unstoppablity ... This network is very stoppable, because it is very expensive and there is no economic inertia to keep it going if it became too much of a political and legal trouble to the billionaires funding it.
Remember, one of these billionaires already quit an earlier public good because it caused him too much drama.
Kind-1 (TextNote)
↳ 回复 930ccef1... (npub1jvxvaufrwtwj79s90n79fuxmm9pntk94rd8zwderdvqv4dcclnvs9s7yqz)
Does Nostr fix this? Or are Nostr users already used to unreliable delivery, that it doesn't matter ...
If you use the outbox model, and your few outbox servers got DDoSed you still have the same result as Mastodon here. It doesn't matter that you have 3...
If you use the outbox model, and your few outbox servers got DDoSed you still have the same result as Mastodon here. It doesn't matter that you have 3 outboxes instead of 1 homeserver... You are either;
1. Using one paid relays which the same as Mastodon server
2. Using multiple free relays that owe you Nothing and have no promises of resilience.
Nostr is not a reliable network it is censorship resistant network, somewhat, so don't shame people for having popular servers, that is user choice and they get things out of it that they consider more valuable than what you get from Nostr.
Kind-1 (TextNote)
↳ 回复 事件不存在
7aeedac7b0d8bd239609222b099fe614d0448913be9511c3971032664786f60c
Nah Email fixed all of these decades ago. Signal/Matrix too gives you perfectly reliable delivery reports. The problem here is that we treat direct co...
Nah Email fixed all of these decades ago. Signal/Matrix too gives you perfectly reliable delivery reports. The problem here is that we treat direct conversations as something that should be publicly observable, of course nothing gets observed, so we don't get reliability of Email, nor we get the mythical impossible censorship resistance Reach.
Kind-1 (TextNote)
↳ 回复 事件不存在
c4963e337552012a128e84cbf76d4bd51c69a7913d03133eee6032d207ad0365
They won't arrive, your app will tell you that the posting succeeded because it arrived _somewhere_, but it would be like a tree falling in a forest w...
They won't arrive, your app will tell you that the posting succeeded because it arrived _somewhere_, but it would be like a tree falling in a forest without witnesses. You don't really know which posts got posted to primal and damus and which didn't. But in practice if you don't post to these two, potentially because they are under DDoS, you get worst of both worlds;
1. The service is not available (no one sees your post/reply)
2. You get no indication of failure whatsoever
Kind-1 (TextNote)
Does Nostr fix this? Or are Nostr users already used to unreliable delivery, that it doesn't matter much when they send their data to an obscure relay...
Does Nostr fix this? Or are Nostr users already used to unreliable delivery, that it doesn't matter much when they send their data to an obscure relay that no body reads, while all the popular relays are busy?
nostr:nevent1qvzqqqqqqypzq8n8mcm4g9csw8fulx6ykmj5d0v5l59zeglmfkamrvz5dpwfz9hyqy88wumn8ghj7mn0wvhxcmmv9uq32amnwvaz7tmjv4kxz7fwv3sk6atn9e5k7tcqyptqknj0vrpdkgr0kjl2ukh090nw0hcfnn6clv6t72tu30gpllt6skvyn8x
Kind-1 (TextNote)
PoW _IS_ a zero knowledge proof. The two main differences between hash rate escrow and a STARK proof are; 1. The threshold in the former is relative, ...
PoW _IS_ a zero knowledge proof. The two main differences between hash rate escrow and a STARK proof are;
1. The threshold in the former is relative, but in the later it is absolute minimum of work required.
2. The work in STARK proofs is entirely consumed for solving the puzzle, while Drivechains are badly designed to make the voting on sidechains have zero cost to miners.
A BitVM bridge or hopefully a native covenant, can lock the vault under a mix of relative and minimum amounts of work, making any attempt to steal the funds not worth it if you are going to spend more work than the money in the vault is worth it, while an honest miner is contributing to the unlocking of funds, incrementally, while getting paid in fees that they can swap and not wait for the unlocking of the vault.
My point is, I think you don't need to know anything about ZK proofs to reason about two way pegs. You just need to understand that it is not passively secure, you need to monitor the situation... But hey that is already the case in Lightning and every and any layer conceivable.
Kind-1 (TextNote)
↳ 回复 Technical Debt (npub14w4qnk43lsllls2qnldj3vfcxtx5qvtsf3xlvxv9yha8afrxhmfqju3rwx)
I’m block&reporting replybots, even though I know it’s akin to drying ice. Not sure what the real so...
Everyone keeps telling me WoT is going to fix this, but I have always been pessimistic on this and I am afraid the only solution is just good old mode...
Everyone keeps telling me WoT is going to fix this, but I have always been pessimistic on this and I am afraid the only solution is just good old moderated chat groups and forums ... This twitter thing is not viable long term
Kind-1 (TextNote)
↳ 回复 Technical Debt (npub14w4qnk43lsllls2qnldj3vfcxtx5qvtsf3xlvxv9yha8afrxhmfqju3rwx)
It could’ve been done differently, couldn’t it? I mean, on a surface level, especially since bitcoi...
Ok but again, if the DAG is too big (which is the whole point for scaling) then only participants doing the downloading verifying and pruning are full...
Ok but again, if the DAG is too big (which is the whole point for scaling) then only participants doing the downloading verifying and pruning are full nodes and not light clients, and that is already the case without a DAG.
The upside of the DAG is basically that it is a natural P2P mining pool, but we already know how to do that, the only problem with P2P mining pools historically was the cost of paying everyone (because the payout coinbase txn becomes too big), but with Rootstock and smart contracts you can do that much better.
I am not convinced that the DAG is helping much unfortunately.
Kind-1 (TextNote)
↳ 回复 Technical Debt (npub14w4qnk43lsllls2qnldj3vfcxtx5qvtsf3xlvxv9yha8afrxhmfqju3rwx)
That’s very aligned with what Hathor is doing, but instead of a single sidechain you have floating t...
Ok I read the white paper, it doesn't seem to tackle the actual limit on Blockchains scalability which is that you can't start building work on top of...
Ok I read the white paper, it doesn't seem to tackle the actual limit on Blockchains scalability which is that you can't start building work on top of stuff unless you have validated all that stuff first, otherwise you are risking all your work being invalidated.
Block producers in Hathor still have to validate the entire DAG, so transactions creating PoW only works if all transaction producers are also full validating nodes.
In the paper it suggests that PoW can be delegated with paying fees to others, and the justification is that PoW energy consumption is high, but actually for one transaction, most of the cost is in actually checking that previous DAG is valid... So this whole concept is wrong.
Of course you could say, instead of validating you can just trust PoW and then do fraud detection later, and that is what Floresta does.
So how is Hathrow any different from just big blocks + fraud proof? I think it is not different or offering any advantage, the paper itself says that it is not trying to solve initial block download but just spam, but they only do so because they assume that normal users will verify the DAG they are building on top.... Is that realistic? I don't think so.
Let's assume that you are trying to make a transaction between two bitcoin blocks, and Hathrow has only 10x more TPS than bitcoin, well, that means you need to validate at worst 40,000 transaction in order to be building work on top of a valid block.
But then everyone who receives this block eventually will have to do the same unless they already validated most of these txns... The memory needs and CPU needs are just insane for your phone.
So that basically boils down to only full nodes can participate in mining, but... That is already the case in all Blockchains. While phones and laptops are just using light clients that are less trustless than full nodes, but assume that at least 1% of the full nodes are honest and can notify them for invalid chains, and they are incentivized to do so .
So no, I don't think this is valid Innovation
Kind-1 (TextNote)
↳ 回复 Technical Debt (npub14w4qnk43lsllls2qnldj3vfcxtx5qvtsf3xlvxv9yha8afrxhmfqju3rwx)
That’s very aligned with what Hathor is doing, but instead of a single sidechain you have floating t...
Paying fees with a separate token or rewarding mining with a separate token disqualifies it for me. Yes the RBTC is a bridged representation of BTC, b...
Paying fees with a separate token or rewarding mining with a separate token disqualifies it for me. Yes the RBTC is a bridged representation of BTC, but it locks BTC and is 1-1 peg, so no opportunity for speculation. I don't think DAGs are necessarily bad idea, but I haven't thought about it enough to convince myself it can work at scale without the storage requirements growing infinitely... But thanks for the link I will read a bit more.
Kind-1 (TextNote)
↳ 回复 Technical Debt (npub14w4qnk43lsllls2qnldj3vfcxtx5qvtsf3xlvxv9yha8afrxhmfqju3rwx)
This reminds me of the hybrid DAG-blockchain model that Hathor uses, how would this sidechain compar...
That is not a DAG at all, it is just good old Bitcoin and sidechains as described originally... I am just saying it is ok and safe and the sidechain c...
That is not a DAG at all, it is just good old Bitcoin and sidechains as described originally... I am just saying it is ok and safe and the sidechain can be ephemeral because it is naturally checkpointed to the L1, so the storage doesn't grow so you shouldn't worry if it has large blocks.
But then you can go further, since the sidechain has EVM or other capabilities, you can easily build further sidechains or Rollups etc.
You basically get two tier security;
1. Idle security on L1 where your coins are safe no matter what because you downloaded all the history.
2. Live security; where you (or someone you trust) have to have been online at least once in the past few weeks to challenge any invalid checkpoint attempt
This second tier is what all use cases need, except massive massive savings by very lazy person or someone in a coma or person.
So I would argue most money will move to the sidechain including most savings and L1 will be mostly to act as a clock, and possibly as a bridge between multiple sidechains.
Kind-1 (TextNote)
↳ 回复 事件不存在
c46898a6804d9527f6090e053c643e5adabaf6b2e3b09af131669bdec9a9b6be
Nostr doesn't magically make Politics irrelevant... he'll you can just go meat your neighbours... If anything the politics becomes the main thing you ...
Nostr doesn't magically make Politics irrelevant... he'll you can just go meat your neighbours... If anything the politics becomes the main thing you do most of your waking hours, and if you have better more scalable communications, more politics happen over these channels not less.
Finally, local politics is not the only political concern, because you are not in an island, you still need to manage politics with the immediate neighbouring communities, as well as politics on your trading routes..etc.
Basically just more of the same that human communities always had to deal with.
If you ignore this, you just put your fate in someone else's hand out of cowardice, laziness, or cynicism that you convince yourself is rather because you are too smart for it.
Kind-1 (TextNote)