@karolherbst
@cadey
Except email is the last universally-accepted communication medium that's a federated open protocol.
I think it's worth saving, and the client UI could be improved, considering that the information like Return-Path, DKIM signature, and SPF check results are already present in the headers
Conversation
Notices
-
Embed this notice
Wolf480pl (wolf480pl@mstdn.io)'s status on Wednesday, 10-Sep-2025 17:52:41 JST 
Wolf480pl
- Haelwenn /элвэн/ :triskell: likes this.
-
Embed this notice
☃️karolherbst☃️ (karolherbst@chaos.social)'s status on Wednesday, 10-Sep-2025 17:52:43 JST 
☃️karolherbst☃️
@cadey "We should stop using email" one might think why that helps.
Simple: If you communicate on other platforms with people, you have a strong _UI_ indicator it's the same account you've spoken to previously. Be it on Matrix, Discord, Signal, etc...
An account with a faked name messaging you will pop up as a new chat, so it's already kinda obvious _something_ is going on.
Email just sucks, or rather Clients do.
Some clients like gmail do sometimes indicate if a sender looks fishy tho.
-
Embed this notice
☃️karolherbst☃️ (karolherbst@chaos.social)'s status on Wednesday, 10-Sep-2025 17:52:44 JST
☃️karolherbst☃️
@cadey "NPM has always been kinda weird compared to other open source package repositories, so them requiring something strange like that reads as reasonable." Ah that makes sense 🙃
Maybe we should establish more processes like banks do "we'll never ask this of you ever".
But then again, people also click on phishing links in emails saying "this is a phishing attack training, do not click on the following link:"
We should just stop using email honestly.
-
Embed this notice
Xe :verified: (cadey@pony.social)'s status on Wednesday, 10-Sep-2025 17:52:46 JST 
Xe :verified:
We all dodged a bullet
All GNU social JP content and data are available under the