So the NOSTR remote signer from…
So the NOSTR remote signer from LNbits works pretty well.
I have it plugged in at the house, connected to WiFi and I can now sign messages anywhere on my LAN or anywhere in the world over the Internet by using the "User Remote Signer" option in Coracle. I simply paste in the specific URL into the client.
But it is early days. The signer doesn't like a reboot, so you need to reconfigure it if you loose power and there aren't many clients that support remote signing yet.
But it is early days and just as wallet technology was very immature in the early days of Bitcoin, so it is with NOSTR, but your identity is more important than your money, so this is an area that needs to evolve quickly.
A genuine criticism of NOSTR is the vulnerability of exposing your private keys in order to paste them into client apps like Damus or Primal.
This solves it, but the standard needs to be adopted quickly across all platforms.
The vulnerabilities:
1. If the path to your signer is leaked, then anybody accessing it, can sign notes as you. This is a problem, but much less so than leaking your private key. If this happens, you can simply reset your signer and create a new path URL making access to your key secure again.
2. The signer itself is not secure, anybody with physical access to it can link to your key path URL, meaning they can sign notes. If you have house guests or burglars be aware of this.
3. The keys are not secure within the device, there is no secure element chip keeping it safe, if somebody has access to your signer, they can steal your key.
4. If your home Internet goes down, you will not be able to remote sign notes, or read DMs. This could be addressed by offering a data centre solution, perhaps for corporate users.
