this post was submitted on 10 May 2024
232 points (96.8% liked)
Privacy
31892 readers
760 users here now
A place to discuss privacy and freedom in the digital world.
Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.
In this community everyone is welcome to post links and discuss topics related to privacy.
Some Rules
- Posting a link to a website containing tracking isn't great, if contents of the website are behind a paywall maybe copy them into the post
- Don't promote proprietary software
- Try to keep things on topic
- If you have a question, please try searching for previous discussions, maybe it has already been answered
- Reposts are fine, but should have at least a couple of weeks in between so that the post can reach a new audience
- Be nice :)
Related communities
Chat rooms
-
[Matrix/Element]Dead
much thanks to @gary_host_laptop for the logo design :)
founded 5 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
tell me more about how you use aliases.
you just using a new one for every service?
Back when I used self hosted mail, I wrote an extension that requested a new alias based on the domain of the website.
Like website.net_d5g4j8@mydomain.com
If the site got compromised I would update the random characters.
I still have 800+ aliases left over from this. But after moving to hosted mail I never updated the extension.
Surprisingly little known fact, email addresses actually have the concept of aliases built in (and it's relatively well supported despite being a bit niche):
your.email+some.alias@gmail.com
Will end up in the inbox of
your.email@gmail.com
But will retain the alias in the To field
The downside is that if a sender is particularly shitty it could detect this and remove the alias again.
This is what I use today. However spammers can easily remove the plus address to send email normally so isn't quite so effective.
What frustrates me is so many websites strip the '+' from the address, either as inline JavaScript or even worse, after submission.
Note: not every provider supports this.
Also, gmail addresses ignore periods. my.email@gmail.com and myem.ail+service@gmail.com will end up in the same inbox
Yes indeed, password managers have the option to do this, at least Protonpass and Bitwarden. While Bitwarden you need to connect a third party email service. But it's relatively easy, especially with Protonpass as it will automatically suggest to do this when you create an account somewhere.
With self hosted email and at least Proton Mail (and probably other paid solutions), you can set up a "catch all" address. With that, any non existing email gets redirected to one; for me, I have spam@domain.com so, while myname@domain.com goes to my inbox, thisaddressisinvalid@domain.com and, I don't know, walmart@domain.com both go to spam@domain.com. I don't need an individual entry for every alias and I can specifically block any address that's particularly spammy or compromised.
I hear that you can have a similar setup with something called SimpleLogin, but I've never tried that.