Spammers who just blast stuff out won't do it, I'm sure. But as a counterpoint it literally happened to me to me years ago when I used to use name+<service>@exmaple.com. I got cold emails to 'name+paypal' despite never,…
No idea, just pointing out it is such an obvious alg it doesn't really show provenance. I used similar (well, plus addressing with localpart=name+<service>) a long time ago and once got emails to name+paypal@example.com…
I bet no spammer or salesperson would ever think of replacing such a generic localpart to get to your eyeballs.
Needs your API key as it needs to access the email forwarding service which you want to use with it. It's not just making up a bullshit address, it's generating a random localpart then going to the email forwarding…
Self-hosted Mesh Central.
Interesting. I have a few bits and pieces on my Workspace domains to automate mail processing using Google Apps Script so will have to see if I can move that over to Cloudflare. Be nice to extend the functionality to…
Sorry - just had to clarify elsewhere too so I obviously wasn't clear... I meant in situations where the backend MX has a mailbox which matches to mail recipient as in the case where you're running your own mail server…
Yeah, sorry I meant as a soln for when your backend MX actually is *your* backend MX. That is, it knows it hosts the mailbox for localpart@example.com and the mail recipient address matches on the envelope. I understand…
Can someone with more knowledge on this subject explain if there's a technical reason Cloudflare can't 'properly' MITM the inbound email. That is you have your MX records pointing to `mx.example.com` in your example.com…
Well 'the alternatives' are many so there's no quick answer to this, but restricting to just AGH as per this post then... Encrypted upstream lookups. Responding to encrypted lookups made to themselves. Realtime threat…
Pi-hole is a bloated mess compared to this IMO. At the end of the day pi-hole is still just a fork of dnsmasq with a load of scripts and a bootstrap gui whacked on top. You need to add on extra bits and pieces to get…
Literally has a one-click toggle for blocking Facebook, yeah.
I mean if it floats his boat then why not. But it looks like a lot (all?) of the work here was just to get pi-hole functioning well - and that now needs him to deploy pi-hole, cloudflared, caddy plus all the surrounding…
Spammers who just blast stuff out won't do it, I'm sure. But as a counterpoint it literally happened to me to me years ago when I used to use name+<service>@exmaple.com. I got cold emails to 'name+paypal' despite never,…
No idea, just pointing out it is such an obvious alg it doesn't really show provenance. I used similar (well, plus addressing with localpart=name+<service>) a long time ago and once got emails to name+paypal@example.com…
I bet no spammer or salesperson would ever think of replacing such a generic localpart to get to your eyeballs.
Needs your API key as it needs to access the email forwarding service which you want to use with it. It's not just making up a bullshit address, it's generating a random localpart then going to the email forwarding…
Self-hosted Mesh Central.
Interesting. I have a few bits and pieces on my Workspace domains to automate mail processing using Google Apps Script so will have to see if I can move that over to Cloudflare. Be nice to extend the functionality to…
Sorry - just had to clarify elsewhere too so I obviously wasn't clear... I meant in situations where the backend MX has a mailbox which matches to mail recipient as in the case where you're running your own mail server…
Yeah, sorry I meant as a soln for when your backend MX actually is *your* backend MX. That is, it knows it hosts the mailbox for localpart@example.com and the mail recipient address matches on the envelope. I understand…
Can someone with more knowledge on this subject explain if there's a technical reason Cloudflare can't 'properly' MITM the inbound email. That is you have your MX records pointing to `mx.example.com` in your example.com…
Well 'the alternatives' are many so there's no quick answer to this, but restricting to just AGH as per this post then... Encrypted upstream lookups. Responding to encrypted lookups made to themselves. Realtime threat…
Pi-hole is a bloated mess compared to this IMO. At the end of the day pi-hole is still just a fork of dnsmasq with a load of scripts and a bootstrap gui whacked on top. You need to add on extra bits and pieces to get…
Literally has a one-click toggle for blocking Facebook, yeah.
I mean if it floats his boat then why not. But it looks like a lot (all?) of the work here was just to get pi-hole functioning well - and that now needs him to deploy pi-hole, cloudflared, caddy plus all the surrounding…