129
AliasVault | Open-Source Password & Alias Manager
(www.aliasvault.net)
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
this post was submitted on 08 Jan 2025
129 points (96.4% liked)
Selfhosted
40956 readers
862 users here now
A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.
Rules:
-
Be civil: we're here to support and learn from one another. Insults won't be tolerated. Flame wars are frowned upon.
-
No spam posting.
-
Posts have to be centered around self-hosting. There are other communities for discussing hardware or home computing. If it's not obvious why your post topic revolves around selfhosting, please include details to make it clear.
-
Don't duplicate the full text of your blog or github here. Just post the link for folks to click.
-
Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).
-
No trolling.
Resources:
- selfh.st Newsletter and index of selfhosted software and apps
- awesome-selfhosted software
- awesome-sysadmin resources
- Self-Hosted Podcast from Jupiter Broadcasting
Any issues on the community? Report it using the report flag.
Questions? DM the mods!
founded 2 years ago
MODERATORS
Does it?
Do you think spammer will just stop at the first address and then call it a day?
In my experience there is no such thing as a "catch all" domain address. The second your domain leaks then many spammer will just go into a frenzy and try hundreds or thousands of mail aliases.
Especially since they can't really spam Gmail as easily (since early 2024) they will even more aggressively spam any other domain.
spammers they just email info@domain and call it a day, they don't try to see if you have some custom naming scheme. I bounce all emails sent to that, the rest is catchall, with occasional blacklist to some TLD like .monster .asia .xyz or .su
This is not at all my experience with custom mail domains.
And I say that after spending a lot of time setting SPF, DKIM and DMARC filtering.
I guess you got lucky.
Why should a scammer or spammer bother with a tech savy person. Scammers and spammers use E-Mail dumps from data leaks to spam and scam ppl. The first step is automated, way more profitable then to go spear fishing on a normal user.
I'm not sure why people are trying convince me to change my mind on something.
I have seen it in my logs with my own eyes. I wish I could be left alone without having to bother looking into it.
Whatever the reason is. Someone is crawling through dictionaries of address. It is slow but steady. It started with abuse@ and other generic addresses and then started trying names. I blocked the sending SMTP server once I realized what was going-on.
What am I suppose to do? Ignore it and just triage in inbox?
It is just not the way the usual scammer and spammers operate. Ofc there are other types of criminals that do operate differently but those do not get their Addresses from a data leak which E-Mail aliases pretect against
More than 2 years with my personal domain and I can't remember a single spam email... But you do you.
yet
Again, you do you.