this post was submitted on 24 Feb 2024
79 points (90.7% liked)

Technology

59438 readers
3041 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 1 year ago
MODERATORS
 

I want to use my main mail address everywhere, even public places. But I doubt if I can guard myself against spam.

Is there a provider specialized in spam protection? Or at least good at it?

At last, given your experience, should I even do it?

you are viewing a single comment's thread
view the rest of the comments
[–] ccunning@lemmy.world 5 points 8 months ago (2 children)

Isn’t it pretty widely known that many email providers support this?

I just assume spammers would know enough to remove everything from the ‘+’ until the ‘@‘. It’s not like they’re trying to be sparing with recipients. Why not just send to both?

[–] lemmyvore@feddit.nl 4 points 8 months ago* (last edited 8 months ago) (1 children)

Isn’t it pretty widely known that many email providers support this?

Personally I'm not a fan of "plus aliasing" because it gives away your base address, and it's trivial for spammers to strip the alias. I prefer aliases that completely hide the base address.

[–] AtmaJnana@lemmy.world 2 points 8 months ago (1 children)

Its also VERY poorly and haphazardly handled in websites. Often they won't let me create an account with it. Or I will be able to create an account using the alias, but then I am left unable to login.

[–] lemmyvore@feddit.nl 1 points 8 months ago

That's why we need formal rules. Once regulations are in place (with big penalties) websites magically start to function properly.

[–] kevincox@lemmy.ml 1 points 8 months ago

Yes. It is pretty easy to work around, but if that is the only tool you have it still can be used to junk a majority of the crap.

If you want a robust solution you can use disposable aliases (which are basically randomly generated) or signed addresses.

I do the latter. So I would generate an email like lemmy-example-59273625@kevincox.ca. If you strip or change the string at the end (which is a small HMAC) your message will go straight to junk. It isn't perfect because there is only 4 bytes of entropy in the signature but a dedicated attacker will find a better way to spam me anyways.