Spam domains that plague my email (opens in new tab)

(gist.github.com)

64 pointsNikhilVerma3y ago67 comments

67 comments

lwf3y ago

Surprised to not see gmail.com in the list[1].

[1]: https://drewdevault.com/2021/02/25/Gmail-is-a-huge-source-of... , https://news.ycombinator.com/item?id=26265329

dpifke3y ago

DARPA invented a communications network that could survive a nuclear war. Instead, everyone uses Gmail.

If any other source of spam was so resistant to receiving abuse reports, they would be blackholed by everyone.

Thanks, antitrust enforcement.

mxuribe3y ago

> DARPA invented a communications network that could survive a nuclear war. Instead, everyone uses Gmail.

So sad, but so true!

inferiorhuman3y ago

When I self-hosted email I used Spamhaus to as a block list and Spam Assassin to filter the rest. Gmail users made up the biggest chunk of spam that got through but it was never from Google/Gmail domains, it was almost always from a Gmail user with a custom domain.

djbusby3y ago

I've used Postgrey, for Postfix, and it's greatly reduced my spam. However, first emails from new folk are delayed a bit.

https://postgrey.schweikert.ch/

1 more reply

cube003y ago

The current round is using DKIM verified messages from the gmail.com domain.

DKIM: 'PASS' with domain gmail.com

shapefrog3y ago

I wonder if SPF / DKIM / DMARC have improved this.

Google domains doesnt make it quite as easy as other hosting providers, and to be honest if they were super serious about email abuse they should encourage every domain to use it.

2 more replies

chmike3y ago

Spammers use vpn nowadays. This make these spammhaus like services useless. They change IPs every week.

Most mail protection models against spam don't work.

I have an idea of a method that could help reduce spam and undesirable mails. It would be free for non-spammers and spammers would pay.

The problem is that I'm not sure if people would be ready to adopt it. There is also many different ways to execute, and I'm not sure which one to pick.

2 more replies

prvit3y ago

Despite the title, the article you linked has nothing whatsoever to do with spam coming from Gmail.

NikhilVermaOP3y ago

I am seeing Google constantly fail to catch obvious spam emails. At this point I suspect there is some institutional error on their part, where bad actors inside the org are allowing certain domains to simply not be spam filtered.

chaoz_3y ago

I've done some experiments with Gmail/Outlook/other spam detection clients on different types of spam/phishing etc. There's always someone who claims simple naive bayes algo would do better than Google.

I'm not able to share the research data, but Gmail filter is a lot better than everything else you see on the market, especially when it's not a newsletter-like advertisement spam, but an actual phishing attack on Org.

Some people say Outlook has better filtering func, but usually tests are not representative and Outlook simply has stricter rule for unwarmed-ip. Which is not that great of a feature in real world scenario.

Beltalowda3y ago

Anecdotally, I have to say I rarely have issues with FastMail's spam filtering, which uses SpamAssassin (not sure what their setup is exactly of course). I rarely get spam in my inbox (maybe an email or two a month), and it almost never marks things as false positives (last one was years ago).

2 more replies

2Gkashmiri3y ago

how do mail delivery services work with this in protecting users from spam because their aim is to reach the inbox for their customers, spammers included

r1ch3y ago

I've been seeing some cleverly encoded emails with multiple MIME parts that bypass the spam filter. Gmail decodes one representation but displays another. Luckily the content they show to the spam filter is mostly static so a regular filter can catch it.

prawn3y ago

I mark email from someone spam over and over, and it can still get past Gmail. It's infuriating.

21433y ago

Create a custom filter in Gmail to delete it; let it bypass the inbox and go straight to trash.

(There's a "Filter messages like these" option somewhere)

2 more replies

fuckcensorship3y ago

“Never attribute to malice that which is adequately explained by stupidity.”

SoftTalker3y ago

Sorry, a "your account has been locked, please reset your password" email to an .edu address from a gmail.com address is 100% always fraudulent, a 5th grader could tell you that, yet google lets it go through.

1 more reply

Brajeshwar3y ago

Looks like a very personal list. I would not advice anyone using this as part of anything. Rohith[1] is in India and most of the spam domains (did a quick split) in the list are similar sounding names of a lot of Indian companies/Startups. Not that the companies do not spam (they do) but emails/domain registration has become so easy that there are tiny setups/operations in every nook and corner of the streets/chawls/shanties of India trying to spam people.

1. https://drive.google.com/file/d/1Z7bBo_rMQB0nJYUs8wl4pZeZVUv...

krageon3y ago

You appear to be trying to argue against something, but it reads as "this is a lot of Indian stuff, which is chock-full of spammers". Read like that, it seems like the list is a good one.

Brajeshwar3y ago

Ah! I'm sorry if it came out wrong. However, I was trying to make an observation when I saw the list. You want to start optimizing your spam-block list or something like that and realized you are not typically the target. You might end up looking and scouting to hit something that never came your way.

My email(s) on my own domains has been on the Internet for more than two decades and I'm always happy to look at ways to prevent spam on them.

butz3y ago

In theory one can set any domain to "from" field, what about actual servers that sent the spam? How many of those spam emails have unsubscribe and/or complaint headers?

avian3y ago

In theory the domain you set the "From:" field to will have DMARC, DKIM and SPF set up and in theory the recipient that implements those protocols will discard your mail as sent from an unauthorized server.

chaoz_3y ago

And if you don't have at least DKIM + SPF, then you will not even reach any public provider's inbox.

Ensorceled3y ago

The spam emails pretty much ALL have unsubcribe headers now. I mean, they are all WORSE than useless since they are sending signal back to spammers, but Gmail is asking me to [Unsubscribe and Report Spam] anyway.

Wronnay3y ago

Did you think about adding your list to well known blocklists? You can add it to e.g. OISD

nubela3y ago

These are usually domains that belong to a disposable email service, be it public or private.

I maintain a 100% free API [1] to check if an email belongs to a disposable email service. We dogfood the same API endpoint to prevent users who abuse disposable emails to create fake accounts for free trial credits.

We use the domains found at https://www.stopforumspam.com/downloads amongst other sources of data. Works pretty well. We have close to eliminated fake account registration with the use of Recaptcha.

[1]: https://nubela.co/proxycurl/disposable-email-checker-api

uallo3y ago

> We dogfood the same API endpoint to prevent users who abuse disposable emails to create fake accounts for free trial credits.

I usually use disposable emails to test services but don't want to be spammed. Often, I later upgrade to a paid plan if I like the service. If they block disposable email addresses, I will not even try them at all.

r1ch3y ago

Why does your API want the full email address? That becomes a privacy liability as surely the domain alone is enough.

8organicbits3y ago

Could be for aliases. foo+bar@gmail.com routes to foo@gmail.com, but you may prefer to only allow a single account for foo@.

krageon3y ago

Congratulations, you make the internet worse for actual humans and better for corporations. Making the world a net worse place, for everyone that matters.

nikanj3y ago

I use a disposable email address because I don’t want the organization to have my email. Thank you for making that harder.

jstanley3y ago

What exactly is "fake" about an account one creates with a disposable email address?

8organicbits3y ago

I suspect "fake" is the wrong word, maybe "very low reputation" is better. The parent post discusses avoiding giving unlimited free trials to people who just keep creating new accounts. You'll want to restrict that, especially if each trial costs a non-trivial amount of money. Efficiently detecting such abuse allows the company to offer generous free trials.

A side effect is that a small number of people who use disposable email addresses to manage the spam they receive will also be blocked (see other comments). A business looking at this issue may find it hard to prioritize, the group is small, and they can choose to use a non-disposable address if they want to continue.

1 more reply

shmde3y ago

> We dogfood the same API endpoint to prevent users who abuse disposable emails to create fake accounts for free trial credits.

Some people just want to watch the world burn.

corentin883y ago

Curious about how did you built this? Do you maintain an internal list of domains?

elashri3y ago

I am surprised to see Washington state university emails used for spam to that extent.

onphonenow3y ago

The Democratic Party and ngp van?

egberts13y ago

But of course,

https://www.theverge.com/2022/6/28/23186742/google-spam-prop...

j / k navigate · click thread line to collapse

67 comments

lwf3y ago

Surprised to not see gmail.com in the list[1].

[1]: https://drewdevault.com/2021/02/25/Gmail-is-a-huge-source-of... , https://news.ycombinator.com/item?id=26265329

dpifke3y ago

DARPA invented a communications network that could survive a nuclear war. Instead, everyone uses Gmail.

If any other source of spam was so resistant to receiving abuse reports, they would be blackholed by everyone.

Thanks, antitrust enforcement.

mxuribe3y ago

> DARPA invented a communications network that could survive a nuclear war. Instead, everyone uses Gmail.

So sad, but so true!

inferiorhuman3y ago

djbusby3y ago

I've used Postgrey, for Postfix, and it's greatly reduced my spam. However, first emails from new folk are delayed a bit.

https://postgrey.schweikert.ch/

1 more reply

cube003y ago

The current round is using DKIM verified messages from the gmail.com domain.

DKIM: 'PASS' with domain gmail.com

shapefrog3y ago

I wonder if SPF / DKIM / DMARC have improved this.

Google domains doesnt make it quite as easy as other hosting providers, and to be honest if they were super serious about email abuse they should encourage every domain to use it.

2 more replies

chmike3y ago

Spammers use vpn nowadays. This make these spammhaus like services useless. They change IPs every week.

Most mail protection models against spam don't work.

I have an idea of a method that could help reduce spam and undesirable mails. It would be free for non-spammers and spammers would pay.

The problem is that I'm not sure if people would be ready to adopt it. There is also many different ways to execute, and I'm not sure which one to pick.

2 more replies

prvit3y ago

Despite the title, the article you linked has nothing whatsoever to do with spam coming from Gmail.

NikhilVermaOP3y ago

chaoz_3y ago

Beltalowda3y ago

2 more replies

2Gkashmiri3y ago

how do mail delivery services work with this in protecting users from spam because their aim is to reach the inbox for their customers, spammers included

r1ch3y ago

prawn3y ago

I mark email from someone spam over and over, and it can still get past Gmail. It's infuriating.

21433y ago

Create a custom filter in Gmail to delete it; let it bypass the inbox and go straight to trash.

(There's a "Filter messages like these" option somewhere)

2 more replies

fuckcensorship3y ago

“Never attribute to malice that which is adequately explained by stupidity.”

SoftTalker3y ago

1 more reply

Brajeshwar3y ago

1. https://drive.google.com/file/d/1Z7bBo_rMQB0nJYUs8wl4pZeZVUv...

krageon3y ago

You appear to be trying to argue against something, but it reads as "this is a lot of Indian stuff, which is chock-full of spammers". Read like that, it seems like the list is a good one.

Brajeshwar3y ago

My email(s) on my own domains has been on the Internet for more than two decades and I'm always happy to look at ways to prevent spam on them.

butz3y ago

In theory one can set any domain to "from" field, what about actual servers that sent the spam? How many of those spam emails have unsubscribe and/or complaint headers?

avian3y ago

chaoz_3y ago

And if you don't have at least DKIM + SPF, then you will not even reach any public provider's inbox.

Ensorceled3y ago

Wronnay3y ago

Did you think about adding your list to well known blocklists? You can add it to e.g. OISD

nubela3y ago

These are usually domains that belong to a disposable email service, be it public or private.

We use the domains found at https://www.stopforumspam.com/downloads amongst other sources of data. Works pretty well. We have close to eliminated fake account registration with the use of Recaptcha.

[1]: https://nubela.co/proxycurl/disposable-email-checker-api

uallo3y ago

> We dogfood the same API endpoint to prevent users who abuse disposable emails to create fake accounts for free trial credits.

r1ch3y ago

Why does your API want the full email address? That becomes a privacy liability as surely the domain alone is enough.

8organicbits3y ago

Could be for aliases. foo+bar@gmail.com routes to foo@gmail.com, but you may prefer to only allow a single account for foo@.

krageon3y ago

Congratulations, you make the internet worse for actual humans and better for corporations. Making the world a net worse place, for everyone that matters.

nikanj3y ago

I use a disposable email address because I don’t want the organization to have my email. Thank you for making that harder.

jstanley3y ago

What exactly is "fake" about an account one creates with a disposable email address?

8organicbits3y ago

1 more reply

shmde3y ago

> We dogfood the same API endpoint to prevent users who abuse disposable emails to create fake accounts for free trial credits.

Some people just want to watch the world burn.

corentin883y ago

Curious about how did you built this? Do you maintain an internal list of domains?

elashri3y ago

I am surprised to see Washington state university emails used for spam to that extent.

onphonenow3y ago

The Democratic Party and ngp van?

egberts13y ago

But of course,

https://www.theverge.com/2022/6/28/23186742/google-spam-prop...

j / k navigate · click thread line to collapse