Comments (6)
fiatjaf
commented on July 20, 2024
1
Good point. Let's do it.
from nostr.
fiatjaf
commented on July 20, 2024
1
@sdgathman I don't know why you commented on this issue since it is very unrelated to what you're talking about, but fine. Maybe https://github.com/nostr-protocol/nips/discussions will be a better place.
Or https://t.me/nostr_protocol.
That's in case you don't want to just open https://coracle.social, https://snort.social or https://nostrudel.ninja and write stuff on Nostr. Feel free to tag me in there: https://njump.me/fiatjaf.com
from nostr.
sdgathman
commented on July 20, 2024
1
I've since learned that the "blockhash" referred to is not a previous nostr event (as I assumed coming from SSB), but the bitcoin blockchain - used as an authoritative event ordering source. So yes, my already disclaimed comment is ignorant. My initial comment on SSB not actually needing to store the entire history is correct, however.
from nostr.
MaxHillebrand
commented on July 20, 2024
Notice that including the current tip of the heaviest chain is subject to reorgs. For security it does make sense to have a threshold number of confirmations. However, for best UX and narrowest time window, it would be better to include the most recent.
This can be solved inefficiently by including two block hashes, the most recent and the one with 6 confirmations.
from nostr.
sdgathman
commented on July 20, 2024
The README.md asks (for SSB protocol): "each server/user needs to store all the chain of posts to be sure the new one is valid. Why? (Maybe they have a good reason.)"
The answer is, they really only need to store the chain since a known good post - but no one has gotten around to writing code to expunge old posts, garbage collect media files, and mark the new origin as previously verified (before deleting history), and signing said mark. (SSB style would be a new post type.) This was discussed on SSB among devs.
Similarly, it is not actually necessary to have the entire blockchain for Bitcoin/Namecoin on every node - as long as you have a trusted more recent origin.
Disclaimer: just examining NOSTR, so the following may reflect ignorance:
But is is necessary to either include a sequence number in the signature for NOSTR events, or include the hash of the previous event for a pubkey. You should probably detect "forks" (duplicate sequence for a pubkey) as well like SSB. This could mean a privkey has been compromised - or it could mean users really want multiple devices, and NOSTR should implement some kind of event ordering resolution between user devices/sessions a la Matrix protocol. (Not sure how that would work for mostly offline usage.)
from nostr.
MaxHillebrand
commented on July 20, 2024
I've since learned that the "blockhash" referred to is not a previous nostr event
I've updated the top comment to be more clear, sorry for the confusion.
from nostr.
Related Issues (20)
- Typos in URLs on nostr.com/contribute HOT 1
- Any IRC channels? HOT 1
- "Get started" guide is broken in many places HOT 2
- Missing License Information HOT 1
- Nostr Improvement Proposal: Relay-Hosted Personalized Dictionaries HOT 1
- Given the protection from bans this protocol enforces, can you reassure me that this is a suitable place for my hate speech HOT 4
- nostr is more than a twitter replacement?
- An idea to use nostr to publish torrents and encourage seeding
- Using the new passkey FIDO standard with nostr
- Associating images and notes in a relay to use nostr as diary HOT 1
- (resolved) Trying to implement NIP01, but ["NOTICE","could not parse command"] HOT 4
- Web3 TLD .nostr domain names are now available.
- adding wallet
- What is the verb for nostr when we reference a note ? HOT 3
- Add AGPL-3.0 license HOT 3
- Nostr
- Support for anonymizing networks HOT 5
- Standardizing p2p software development collaborative platform: HOT 4
- Invalid Event ID HOT 1
- Profile recovery idea if nsec is compromised HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from nostr.