Thread

πŸ›‘οΈ
Huge milestone: First demo of Nostr Web Services (NWS) bringing TCP to Nostr. With NWS, you can host any existing web application on Nostr without having to use DNS or even announce your public IP to the world, simply by sharing your service's npub (or nprofile). Try it out the demo yourself. Here is a Cashu test mint running with NWS. Let's use curl to retrieve the mint's information. The request travels from your computer to the public NWS entry relay, then through nostr to the service's NWS exit relay. At the other end is a Cashu mint with HTTPS encryption. ``` curl -s -x socks5h://relay.8333.space:8882 https://nprofile1qqs8a8nk09fhrxylcd42haz8ev4cprhnk5egntvs0whafvaaxpk8plgpzemhxue69uhhyetvv9ujuwpnxvejuumsv93k2g6k9kr/v1/info --insecure | jq ``` image I can't stress this enough: THE MINT RUNS BEHIND HTTPS! The NWS entry relay can't read your traffic. It's encrypted. We can host public entry relays that can be used by anyone. This means we can plug the entire internet to it 🌐. Let's plug it into Cashu for now. Nutshell wallet supports socks5 proxies (that's how it uses Tor). By setting the public entry relay as the proxy, the wallet can now connect to a mint's npub/nprofile and communicate with it via NWS. image This is going to be so freaking cool. And it's going to be a lot more useful than just for Cashu. There are still bugs and issues that need to be ironed out but the code is coming out soon. Watch this space.

Replies (53)

Can you give a rundown of how this actually works? I am struggling with so many parts… What does β€œbringing TCP” have to do with http hosting? They are two totally different layers. How is data actually hosted? *is it hosted*? Or just relayed from an actual http host? Is this what you mean by TCP? That the relay will relay socket data? That’s… questionable… could lead to all sorts of misuse? Thoroughly confused.
This is big 🀯 Nostr is not for social media. It's the ENTIRE web 🌐 As the old web drowns in waves of AI generated spam, only Nostr will survive. A web without centralized choke points. A web with authenticity where every note is signed. A web that's machine payable by default. Buckle up amigos. We're sailing to the new world much faster than I realized. Feeling lucky to be alive to witness and be part of this! π“…¦ πŸš€ βš‘β›΅ View quoted note β†’
Impressive! Between this and the ZK txs for Bitcoincooking, what a month!
calle's avatar calle
Huge milestone: First demo of Nostr Web Services (NWS) bringing TCP to Nostr. With NWS, you can host any existing web application on Nostr without having to use DNS or even announce your public IP to the world, simply by sharing your service's npub (or nprofile). Try it out the demo yourself. Here is a Cashu test mint running with NWS. Let's use curl to retrieve the mint's information. The request travels from your computer to the public NWS entry relay, then through nostr to the service's NWS exit relay. At the other end is a Cashu mint with HTTPS encryption. ``` curl -s -x socks5h://relay.8333.space:8882 https://nprofile1qqs8a8nk09fhrxylcd42haz8ev4cprhnk5egntvs0whafvaaxpk8plgpzemhxue69uhhyetvv9ujuwpnxvejuumsv93k2g6k9kr/v1/info --insecure | jq ``` image I can't stress this enough: THE MINT RUNS BEHIND HTTPS! The NWS entry relay can't read your traffic. It's encrypted. We can host public entry relays that can be used by anyone. This means we can plug the entire internet to it 🌐. Let's plug it into Cashu for now. Nutshell wallet supports socks5 proxies (that's how it uses Tor). By setting the public entry relay as the proxy, the wallet can now connect to a mint's npub/nprofile and communicate with it via NWS. image This is going to be so freaking cool. And it's going to be a lot more useful than just for Cashu. There are still bugs and issues that need to be ironed out but the code is coming out soon. Watch this space.
View quoted note →
It works. On a mac. Out of the box. 😳 curl -s -x socks5h://relay.8333.space:8882 https://nprofile1qqs8a8nk09fhrxylcd42haz8ev4cprhnk5egntvs0whafvaaxpk8plgpzemhxue69uhhyetvv9ujuwpnxvejuumsv93k2g6k9kr/v1/info --insecure | jq { "name": "\"Cashu NWS mint\"", "pubkey": "0296d0aa13b6a31cf0cd974249f28c7b7176d7274712c95a41c7d8066d3f29d679", "version": "Nutshell/0.15.3", "description": "\"This Cashu test mint has no public IP address and can only be reached via NWS powered by Nostr\"", "contact": [ [ "", "" ] ], "nuts": { "4": { "methods": [ { "method": "bolt11", "unit": "sat" } ], "disabled": false }, "5": { "methods": [ { "method": "bolt11", "unit": "sat" } ], "disabled": false }, "7": { "supported": true }, "8": { "supported": true }, "9": { "supported": true }, "10": { "supported": true }, "11": { "supported": true }, "12": { "supported": true } } }
Unpopular opinion: Absolutely terrible idea Nostr-web-services is just ngrok / cloudflared with extra steps and more concerns about safety. 1. The things you expose are public; hackers can find you and see whatever you are hosting. 2. You DO NOT OWN your web service if the name servers are not under your control. Whoever owns the name server is the prime authority, and they can inject whatever they want into your website. Imagine out of 10 relays, even one of them injects your website with a code to steal passwords and you happen to use that relay (YOU ARE COMPROMISED!!) It is as dangerous as port forwarding / dynamic DNS with extra concerns about integrity. When I say "as dangerous as port forwarding", I think I am explaining it casually, but in reality, this is far more dangerous and concerning. Just two days ago when I was looking into issues with port forwarding / dynamic DNS / Nostr-web-services, I discovered: 1. THREE THOUSAND (3k!!!!) Tesla with open information about their home coordinates, their kid's school, drop location, their workplace, their exact address, if their Tesla is active or not. 2. 6K + Camera with a full recording of the whole month, installed in people's personalβ€”-BEDROOM--, baby monitor. There is no excuse for self-hosting irresponsibly; it should be done to increase your privacy and security, not to increase the risk. Holesail provides a way to achieve this peak self-privacy and security. You expose only what you 🫡 choose, and only the person you want can access it, with no chances of a man-in-the-middle attack from a random relay and their DNS hosting. I like how enthusiastic people are about Nostr and Nostr-based services, but we should NOT overlook the security and risks some of these ideas might bring! image @npub1h8nk...rpev View quoted note β†’
Interesting...
calle's avatar calle
Huge milestone: First demo of Nostr Web Services (NWS) bringing TCP to Nostr. With NWS, you can host any existing web application on Nostr without having to use DNS or even announce your public IP to the world, simply by sharing your service's npub (or nprofile). Try it out the demo yourself. Here is a Cashu test mint running with NWS. Let's use curl to retrieve the mint's information. The request travels from your computer to the public NWS entry relay, then through nostr to the service's NWS exit relay. At the other end is a Cashu mint with HTTPS encryption. ``` curl -s -x socks5h://relay.8333.space:8882 https://nprofile1qqs8a8nk09fhrxylcd42haz8ev4cprhnk5egntvs0whafvaaxpk8plgpzemhxue69uhhyetvv9ujuwpnxvejuumsv93k2g6k9kr/v1/info --insecure | jq ``` image I can't stress this enough: THE MINT RUNS BEHIND HTTPS! The NWS entry relay can't read your traffic. It's encrypted. We can host public entry relays that can be used by anyone. This means we can plug the entire internet to it 🌐. Let's plug it into Cashu for now. Nutshell wallet supports socks5 proxies (that's how it uses Tor). By setting the public entry relay as the proxy, the wallet can now connect to a mint's npub/nprofile and communicate with it via NWS. image This is going to be so freaking cool. And it's going to be a lot more useful than just for Cashu. There are still bugs and issues that need to be ironed out but the code is coming out soon. Watch this space.
View quoted note →
I started with $1000 and, after just 6 hours of investing, I was able to turn it into $6,000. This opportunity is completely legitimate and safe to invest in. I am grateful to my coach who helped guide me through this process. If you are interested in seeing similar results, make sure to DM him now and start earning.