Luke-Jr [ARCHIVE] on Nostr: 📅 Original date posted:2011-12-13 🗒️ Summary of this message: Experts suggest ...
📅 Original date posted:2011-12-13
🗒️ Summary of this message: Experts suggest that paying to a domain name should be done through HTTPS queries to avoid security risks, and a fixed address can be used for payments.
📝 Original message:On Tuesday, December 13, 2011 8:06:15 AM Gavin Andresen wrote:
> I agree with Mike Hearn and Christian Decker-- paying to
> 'somebody at foo.com' should become, behind the scenes, a HTTPS query to
>
https://foo.com/something. If you just want to (say) donate to
> eff.org, then paying to '@eff.org' aught to work nicely.
Seems like introducing a gaping security risk to me.
> It seems to me that if it was DNS-based, the address should be
> something like 'somebody.bitcoin.foo.com'. But I think it is unlikely
> people will setup and run a custom DNS server just to support bitcoin
> payments.
Could always use a fixed address and email somebody at foo.com a signed message.
Published at
2023-06-07 02:48:20Event JSON
{
"id": "fc9ab5582a103ecf9f5131fb6e071ff7a3fc999e94cbb799584e6cde99db4d66",
"pubkey": "6ac6a519b554d8ff726a301e3daec0b489f443793778feccc6ea7a536f7354f1",
"created_at": 1686106100,
"kind": 1,
"tags": [
[
"e",
"f45e7ca88e6eb3dd1e645e8e3cbb476c5b24e8003cb71eebe205594bb2a4d152",
"",
"root"
],
[
"e",
"9b3611ab16cd4c105d51e6caad0f0149e13c465398345ea3fb5293f318b9d035",
"",
"reply"
],
[
"p",
"308e0d1efb1707ac6b92cd0b19c304882b3919f4bd59336c4a718c159bdcf63b"
]
],
"content": "📅 Original date posted:2011-12-13\n🗒️ Summary of this message: Experts suggest that paying to a domain name should be done through HTTPS queries to avoid security risks, and a fixed address can be used for payments.\n📝 Original message:On Tuesday, December 13, 2011 8:06:15 AM Gavin Andresen wrote:\n\u003e I agree with Mike Hearn and Christian Decker-- paying to\n\u003e 'somebody at foo.com' should become, behind the scenes, a HTTPS query to\n\u003e https://foo.com/something. If you just want to (say) donate to\n\u003e eff.org, then paying to '@eff.org' aught to work nicely.\n\nSeems like introducing a gaping security risk to me.\n\n\u003e It seems to me that if it was DNS-based, the address should be\n\u003e something like 'somebody.bitcoin.foo.com'. But I think it is unlikely\n\u003e people will setup and run a custom DNS server just to support bitcoin\n\u003e payments.\n\nCould always use a fixed address and email somebody at foo.com a signed message.",
"sig": "0065e0c21c968b8e0e16dc8434425936b6ec47f62380e3745ca5f139470b2b87c8f3ddabed4e04d0bf6edadf3e2b5b5eb6cd5e5cc635c3fe6a50ebb96a64cc0b"
}