1970
Why does my treadmill want my email address?
(lemmy.world)
A place to share screenshots of Microblog posts, whether from Mastodon, tumblr, ~~Twitter~~ X, KBin, Threads or elsewhere.
Created as an evolution of White People Twitter and other tweet-capture subreddits.
Rules:
Related communities:
How's this different from plus aliases?
Just chiming in, if you’re using + aliases for privacy some people can just remove the plus and see your email
For example if you sign up with supercoolemail+spoof@beans.com the service can remove everything between the + and the @ and see your real email is supercoolemail@beans.com
It kinda isn't, however I found that some websites refuse to acknowledge that plusses are valid. I see this one uses dashes which might have a similar issue. Only thing I think is universally accepted are periods
I haven’t found any place that doesn’t accept a dash.
As a kid I had an email address that started with a dash. Back then I regularly encountered websites that flagged it as invalid (but only if it started with it)
But then again, that was almost 25 years ago
I'm not saying that they won't, but they're non-compliant then.
https://en.wikipedia.org/wiki/Email_address#Local-part
I don't want to try to escape the following for Markdown, so I'm just gonna dump it in a blockquote:
Oh I concur, it's super annoying. I want to track who sells my info to spammers dammit
It is plus aliases*. It’s got additional features for them that other providers don’t have though. Like for each label (alias) you can toggle whether to get notifications, mark as unread, screen new senders, and show them in the “aggbox”. The aggbox is like an inbox, but since you don’t ever use your “bare address”, it just shows the labels you want. Your bare address autoresponds with a list of your public addresses.
* It’s technically subaddressing, using either a dash or a plus as a delimiter.
From what I can tell, not much. They use dashes "-" instead of pluses "+".
But neither of these two options provide you with much privacy. Plus addresses, as others have pointed out, can be automatically stripped (just delete everything after the plus sign) and you get the real email behind it.
This service specifically I dont know the details, but it seems there is a unique prefix per user, but no "real email". So for instance if you use gmail you can have "sunnie@gmail.com" as your real email. You then use "sunnie+lemmy@gmail.com" for your lemmy account. If that email gets leaked out somehow, people can easily tell your real email address is "sunnie@gmail.com"
This service seems to do something very similar with the difference there is no base email, so there isnt a "sunnie@port87.com", there will only be "sunny-lemmy@port87.com". It is worth pointing out you might still be tracked because all your emails will be prefixed with "sunny". So although spammers wont be able to figure out your real email address they can just try something like "something-reddit@port87.com", and if multiple of your addresses leak it will be easy to link them all up to the same person.
This also creates A LOT of lock in. Because if the service shuts down you now have dozens of services for which you don't have means to access the emails anymore.
Thank you for the feedback. These are all really good points that I’d like to address.
The vendor lock in part I agree is very important. I’m working on adding support for custom domains, which would let you migrate to another provider if Port87 ends up not working for you.
Regarding the privacy part, a long term goal is to let you create private aliases for your labels that are randomized addresses on a different domain. I haven’t started working on that yet, and supporting enterprise features will take priority.
Thats really nice. I appreciate your concerns with privacy and user experience!
Ill be sure to keep my eyes on the project