people have been talking about how relays can record IP addresses of users, and for reasons of hating whoever it is that reposts the first ever nostr note event "running branle" i refactored my reverse proxy to add the X-Forwarded-For field with the remote address and changed the websocket implementation to store that field if it is present and for the websocket logging to print the IP address
it only took me about half an hour's work to change the code on the reverse proxy and my relay to do this, so yeah... relays can definitely be snarfing all your home and mobile IP addresses and that means that #nostr client devs should be a bit more thoughtful about automatically using relays on behalf of their users!
#privacy #devstr
mleku / ⚡️mleku@getalby.com
npub1fj…mleku
2024-01-31 12:05:57
Author Public Key
npub1fjqqy4a93z5zsjwsfxqhc2764kvykfdyttvldkkkdera8dr78vhsmmlekuPublished at
2024-01-31 12:05:57Event JSON
{
"id": "86fecc4514d05a3fe8fc73063334837abeaa10e12daf4ec6f27ec688f7159572",
"pubkey": "4c800257a588a82849d049817c2bdaad984b25a45ad9f6dad66e47d3b47e3b2f",
"created_at": 1706702757,
"kind": 1,
"tags": [
[
"t",
"nostr"
],
[
"t",
"privacy"
],
[
"t",
"devstr"
],
[
"client",
"Coracle",
"31990:97c70a44366a6535c145b333f973ea86dfdc2d7a99da618c40c64705ad98e322:1685968093690"
]
],
"content": "people have been talking about how relays can record IP addresses of users, and for reasons of hating whoever it is that reposts the first ever nostr note event \"running branle\" i refactored my reverse proxy to add the X-Forwarded-For field with the remote address and changed the websocket implementation to store that field if it is present and for the websocket logging to print the IP address\n\nit only took me about half an hour's work to change the code on the reverse proxy and my relay to do this, so yeah... relays can definitely be snarfing all your home and mobile IP addresses and that means that #nostr client devs should be a bit more thoughtful about automatically using relays on behalf of their users!\n\n#privacy #devstr",
"sig": "5a7c61c95dd45558cf4c7d9a59c45bf30b0222d1067bbbdb039ba83d2e5f12d1cb7c5748662afbedae38bf67d1f27417465b2266afe193c823a3392a966d1c79"
}