Conversation

Notices

Embed this notice
Ryan Castellucci :nonbinary_flag: (ryanc@infosec.exchange)'s status on Thursday, 21-Nov-2024 06:18:30 JST Ryan Castellucci :nonbinary_flag:

2021: Techbro cold emails me about his startup using a unique email address generated on my website.
2024: Getting spammed at that specific address.
I report it. Email provider abuse dept says they're investigating, as they require opt in.
I sent them the 2021 email and web logs from bro's visit.

In conversation about 6 months ago from infosec.exchange permalink
- Embed this notice
  Ryan Castellucci :nonbinary_flag: (ryanc@infosec.exchange)'s status on Thursday, 21-Nov-2024 06:20:10 JST Ryan Castellucci :nonbinary_flag:
  in reply to
  
  Do not spam an ex-sysadmin who was responsible for email servers in the mid 2000s.
  
  In conversation about 6 months ago permalink
- Embed this notice
  deutrino (deutrino@mstdn.io)'s status on Thursday, 21-Nov-2024 06:23:04 JST deutrino
  in reply to
  
  @ryanc get his ass
  
  In conversation about 6 months ago permalink
- Embed this notice
  Fish of Rage (sun@shitposter.world)'s status on Thursday, 21-Nov-2024 06:23:04 JST Fish of Rage
  in reply to
  - deutrino
  @deutrino @ryanc this happened to me from some shitbag whose tool I signed up for from hacker news. I use a unique email for every signup
  
  In conversation about 6 months ago permalink
- Embed this notice
  Fish of Rage (sun@shitposter.world)'s status on Thursday, 21-Nov-2024 06:31:45 JST Fish of Rage
  in reply to
  - deutrino
  @deutrino @ryanc I run my own domain and it's a catchall so anything to my domain goes to the same box. so I do like:
  
  google.com@mydomain.tld
  
  and I give it to google
  
  then if they abuse it I See it
  In conversation about 6 months ago permalink
  Attachments
  1. Untitled attachment
- Embed this notice
  deutrino (deutrino@mstdn.io)'s status on Thursday, 21-Nov-2024 06:31:46 JST deutrino
  in reply to
  - Fish of Rage
  @sun do you use plus-addressing for uniqueness or do you have a better solution? @ryanc
  
  In conversation about 6 months ago permalink
- Embed this notice
  Eliot Lash (eliot_l@social.coop)'s status on Thursday, 21-Nov-2024 06:41:31 JST Eliot Lash
  in reply to
  - deutrino
  - Fish of Rage
  @deutrino @sun @ryanc There is a free service for making burner self-destructing forwarding emails at https://www.spamgourmet.com that's been around for a long time. I use it sometimes but honestly Gmail spam filtering is so good nowadays I haven't bothered much unless it's something sketchy.
  In conversation about 6 months ago permalink
  Attachments
  1. Domain not in remote thumbnail source whitelist: www.spamgourmet.com
    
    spamgourmet
    
    spamgourmet provides email addresses that get created automatically the first time they are used, forward messages, and then automatically expire.
  Fish of Rage likes this.
- Embed this notice
  Nudhul (nudhul@shitposter.world)'s status on Thursday, 21-Nov-2024 06:44:13 JST Nudhul
  in reply to
  @Eliot_L @deutrino @sun @ryanc yeah its real swell...
  In conversation about 6 months ago permalink
  Attachments
  1. Untitled attachment
    https://media.shitposter.world/shitposter.club/e2e0405dd4a196e9161a95d237273ff16e2530a1a86db9eb731b277f56b3476d.jpeg?name=DcT2-mGH9G8EoQ.jpeg
  Fish of Rage likes this.
- Embed this notice
  Fish of Rage (sun@shitposter.world)'s status on Thursday, 21-Nov-2024 06:44:14 JST Fish of Rage
  in reply to
  - Eliot Lash
  - deutrino
  @Eliot_L @deutrino @ryanc I want to know who signed me up for the spam so someone can mail a pipe bomb to their headquarters. I don't condone violence but I still need to know.
  
  In conversation about 6 months ago permalink
- Embed this notice
  SpaceLifeForm (spacelifeform@infosec.exchange)'s status on Thursday, 21-Nov-2024 09:41:16 JST SpaceLifeForm
  in reply to
  
  @ryanc
  Did the opt-in requirement come into existence post 2021 ?
  
  In conversation about 6 months ago permalink
- Embed this notice
  Fish of Rage (sun@shitposter.world)'s status on Thursday, 21-Nov-2024 10:39:26 JST Fish of Rage
  in reply to
  - deutrino
  @deutrino @ryanc i pay for fastmail behind it bc running your own mail is like owning a pit bull, you tell everybody how its not bad at all and then one day it rips the face off your baby
  
  In conversation about 6 months ago permalink
  
  Another Linux Walt Alt likes this.
- Embed this notice
  deutrino (deutrino@mstdn.io)'s status on Thursday, 21-Nov-2024 10:39:27 JST deutrino
  in reply to
  - Fish of Rage
  @sun @ryanc kinda thinking I should get a domain solely for email and do exactly this, I don't have a catch-all currently so I use plus addressing which is not great
  
  In conversation about 6 months ago permalink
  
  Hyolobrika likes this.
- Embed this notice
  Ryan Castellucci :nonbinary_flag: (ryanc@infosec.exchange)'s status on Thursday, 21-Nov-2024 16:13:58 JST Ryan Castellucci :nonbinary_flag:
  in reply to
  - SpaceLifeForm
  @SpaceLifeForm email service providers have required opt in for a long time
  
  In conversation about 6 months ago permalink
- Embed this notice
  Ryan Castellucci :nonbinary_flag: (ryanc@infosec.exchange)'s status on Thursday, 21-Nov-2024 16:50:04 JST Ryan Castellucci :nonbinary_flag:
  in reply to
  - Eliot Lash
  - deutrino
  @Eliot_L @deutrino @sun@shitposter.world I have a similar feature set to what spamgormet offers configured on my own mail server.
  I also have support for + addressing in some cases, but I can implement whatever I want.
  I do not in most cases use + addressing because the extension can be stripped/altered.
  For most things, I use aliases that include a random value to prevent my email addresses from being guessed.
  
  In conversation about 6 months ago permalink
- Embed this notice
  deutrino (deutrino@mstdn.io)'s status on Thursday, 21-Nov-2024 16:50:07 JST deutrino
  in reply to
  - Eliot Lash
  - Fish of Rage
  @Eliot_L that's a pretty cool service, do they have a bunch of domains or just the one? @sun @ryanc
  
  In conversation about 6 months ago permalink
- Embed this notice
  Eliot Lash (eliot_l@social.coop)'s status on Thursday, 21-Nov-2024 16:50:07 JST Eliot Lash
  in reply to
  - deutrino
  - Fish of Rage
  @deutrino @sun @ryanc I'm only aware of the one domain. It's an old service that's been operating continuously since the year 2000, I don't know if multiple domains were really trendy back then.
  
  In conversation about 6 months ago permalink
- Embed this notice
  Eliot Lash (eliot_l@social.coop)'s status on Thursday, 21-Nov-2024 16:50:09 JST Eliot Lash
  in reply to
  - deutrino
  - Fish of Rage
  @deutrino @sun @ryanc Also I should mention this works like a + alias, you don't need to log in to their site more than once ever to use it. If I were to write an email address like myalias.1.myusername@spamgourmet.com it will forward one email to me and then shut down. You can allow up to 20 emails this way, or log into their dashboard to add a sender to an allow-list so their emails won't increment the counter.
  
  In conversation about 6 months ago permalink
- Embed this notice
  Ryan Castellucci :nonbinary_flag: (ryanc@infosec.exchange)'s status on Thursday, 21-Nov-2024 16:51:03 JST Ryan Castellucci :nonbinary_flag:
  in reply to
  - deutrino
  @deutrino @sun@shitposter.world running an actual catch-all will trigger anti-fraud systems sometimes, and yes they can and will check.
  
  In conversation about 6 months ago permalink

Public

Conversation

Notices

Feeds