GNU social JP
  • FAQ
  • Login
GNU social JPは日本のGNU socialサーバーです。
Usage/ToS/admin/test/Pleroma FE
  • Public

    • Public
    • Network
    • Groups
    • Featured
    • Popular
    • People

Conversation

Notices

  1. Embed this notice
    Ryan Castellucci :nonbinary_flag: (ryanc@infosec.exchange)'s status on Thursday, 21-Nov-2024 06:18:30 JST Ryan Castellucci :nonbinary_flag: Ryan Castellucci :nonbinary_flag:

    2021: Techbro cold emails me about his startup using a unique email address generated on my website.
    2024: Getting spammed at that specific address.

    I report it. Email provider abuse dept says they're investigating, as they require opt in.

    I sent them the 2021 email and web logs from bro's visit.

    In conversation about 6 months ago from infosec.exchange permalink
    • Embed this notice
      Ryan Castellucci :nonbinary_flag: (ryanc@infosec.exchange)'s status on Thursday, 21-Nov-2024 06:20:10 JST Ryan Castellucci :nonbinary_flag: Ryan Castellucci :nonbinary_flag:
      in reply to

      Do not spam an ex-sysadmin who was responsible for email servers in the mid 2000s.

      In conversation about 6 months ago permalink
    • Embed this notice
      deutrino (deutrino@mstdn.io)'s status on Thursday, 21-Nov-2024 06:23:04 JST deutrino deutrino
      in reply to

      @ryanc get his ass

      In conversation about 6 months ago permalink
    • Embed this notice
      Fish of Rage (sun@shitposter.world)'s status on Thursday, 21-Nov-2024 06:23:04 JST Fish of Rage Fish of Rage
      in reply to
      • deutrino
      @deutrino @ryanc this happened to me from some shitbag whose tool I signed up for from hacker news. I use a unique email for every signup
      In conversation about 6 months ago permalink
    • Embed this notice
      Fish of Rage (sun@shitposter.world)'s status on Thursday, 21-Nov-2024 06:31:45 JST Fish of Rage Fish of Rage
      in reply to
      • deutrino
      @deutrino @ryanc I run my own domain and it's a catchall so anything to my domain goes to the same box. so I do like:

      google.com@mydomain.tld

      and I give it to google

      then if they abuse it I See it
      In conversation about 6 months ago permalink

      Attachments


    • Embed this notice
      deutrino (deutrino@mstdn.io)'s status on Thursday, 21-Nov-2024 06:31:46 JST deutrino deutrino
      in reply to
      • Fish of Rage

      @sun do you use plus-addressing for uniqueness or do you have a better solution? @ryanc

      In conversation about 6 months ago permalink
    • Embed this notice
      Eliot Lash (eliot_l@social.coop)'s status on Thursday, 21-Nov-2024 06:41:31 JST Eliot Lash Eliot Lash
      in reply to
      • deutrino
      • Fish of Rage

      @deutrino @sun @ryanc There is a free service for making burner self-destructing forwarding emails at https://www.spamgourmet.com that's been around for a long time. I use it sometimes but honestly Gmail spam filtering is so good nowadays I haven't bothered much unless it's something sketchy.

      In conversation about 6 months ago permalink

      Attachments

      1. Domain not in remote thumbnail source whitelist: www.spamgourmet.com
        spamgourmet
        spamgourmet provides email addresses that get created automatically the first time they are used, forward messages, and then automatically expire.
      Fish of Rage likes this.
    • Embed this notice
      Nudhul (nudhul@shitposter.world)'s status on Thursday, 21-Nov-2024 06:44:13 JST Nudhul Nudhul
      in reply to
      • Eliot Lash
      • deutrino
      • Fish of Rage
      @Eliot_L @deutrino @sun @ryanc yeah its real swell...
      In conversation about 6 months ago permalink

      Attachments


      1. https://media.shitposter.world/shitposter.club/e2e0405dd4a196e9161a95d237273ff16e2530a1a86db9eb731b277f56b3476d.jpeg?name=DcT2-mGH9G8EoQ.jpeg
      Fish of Rage likes this.
    • Embed this notice
      Fish of Rage (sun@shitposter.world)'s status on Thursday, 21-Nov-2024 06:44:14 JST Fish of Rage Fish of Rage
      in reply to
      • Eliot Lash
      • deutrino
      @Eliot_L @deutrino @ryanc I want to know who signed me up for the spam so someone can mail a pipe bomb to their headquarters. I don't condone violence but I still need to know.
      In conversation about 6 months ago permalink
    • Embed this notice
      SpaceLifeForm (spacelifeform@infosec.exchange)'s status on Thursday, 21-Nov-2024 09:41:16 JST SpaceLifeForm SpaceLifeForm
      in reply to

      @ryanc

      Did the opt-in requirement come into existence post 2021 ?

      In conversation about 6 months ago permalink
    • Embed this notice
      Fish of Rage (sun@shitposter.world)'s status on Thursday, 21-Nov-2024 10:39:26 JST Fish of Rage Fish of Rage
      in reply to
      • deutrino
      @deutrino @ryanc i pay for fastmail behind it bc running your own mail is like owning a pit bull, you tell everybody how its not bad at all and then one day it rips the face off your baby
      In conversation about 6 months ago permalink
      Another Linux Walt Alt likes this.
    • Embed this notice
      deutrino (deutrino@mstdn.io)'s status on Thursday, 21-Nov-2024 10:39:27 JST deutrino deutrino
      in reply to
      • Fish of Rage

      @sun @ryanc kinda thinking I should get a domain solely for email and do exactly this, I don't have a catch-all currently so I use plus addressing which is not great

      In conversation about 6 months ago permalink
      Hyolobrika likes this.
    • Embed this notice
      Ryan Castellucci :nonbinary_flag: (ryanc@infosec.exchange)'s status on Thursday, 21-Nov-2024 16:13:58 JST Ryan Castellucci :nonbinary_flag: Ryan Castellucci :nonbinary_flag:
      in reply to
      • SpaceLifeForm

      @SpaceLifeForm email service providers have required opt in for a long time

      In conversation about 6 months ago permalink
    • Embed this notice
      Ryan Castellucci :nonbinary_flag: (ryanc@infosec.exchange)'s status on Thursday, 21-Nov-2024 16:50:04 JST Ryan Castellucci :nonbinary_flag: Ryan Castellucci :nonbinary_flag:
      in reply to
      • Eliot Lash
      • deutrino

      @Eliot_L @deutrino @sun@shitposter.world I have a similar feature set to what spamgormet offers configured on my own mail server.

      I also have support for + addressing in some cases, but I can implement whatever I want.

      I do not in most cases use + addressing because the extension can be stripped/altered.

      For most things, I use aliases that include a random value to prevent my email addresses from being guessed.

      In conversation about 6 months ago permalink
    • Embed this notice
      deutrino (deutrino@mstdn.io)'s status on Thursday, 21-Nov-2024 16:50:07 JST deutrino deutrino
      in reply to
      • Eliot Lash
      • Fish of Rage

      @Eliot_L that's a pretty cool service, do they have a bunch of domains or just the one? @sun @ryanc

      In conversation about 6 months ago permalink
    • Embed this notice
      Eliot Lash (eliot_l@social.coop)'s status on Thursday, 21-Nov-2024 16:50:07 JST Eliot Lash Eliot Lash
      in reply to
      • deutrino
      • Fish of Rage

      @deutrino @sun @ryanc I'm only aware of the one domain. It's an old service that's been operating continuously since the year 2000, I don't know if multiple domains were really trendy back then.

      In conversation about 6 months ago permalink
    • Embed this notice
      Eliot Lash (eliot_l@social.coop)'s status on Thursday, 21-Nov-2024 16:50:09 JST Eliot Lash Eliot Lash
      in reply to
      • deutrino
      • Fish of Rage

      @deutrino @sun @ryanc Also I should mention this works like a + alias, you don't need to log in to their site more than once ever to use it. If I were to write an email address like myalias.1.myusername@spamgourmet.com it will forward one email to me and then shut down. You can allow up to 20 emails this way, or log into their dashboard to add a sender to an allow-list so their emails won't increment the counter.

      In conversation about 6 months ago permalink
    • Embed this notice
      Ryan Castellucci :nonbinary_flag: (ryanc@infosec.exchange)'s status on Thursday, 21-Nov-2024 16:51:03 JST Ryan Castellucci :nonbinary_flag: Ryan Castellucci :nonbinary_flag:
      in reply to
      • deutrino

      @deutrino @sun@shitposter.world running an actual catch-all will trigger anti-fraud systems sometimes, and yes they can and will check.

      In conversation about 6 months ago permalink

Feeds

  • Activity Streams
  • RSS 2.0
  • Atom
  • Help
  • About
  • FAQ
  • TOS
  • Privacy
  • Source
  • Version
  • Contact

GNU social JP is a social network, courtesy of GNU social JP管理人. It runs on GNU social, version 2.0.2-dev, available under the GNU Affero General Public License.

Creative Commons Attribution 3.0 All GNU social JP content and data are available under the Creative Commons Attribution 3.0 license.