ProtonMail and SimpleLogin emails will be blocked from registering on websites

Yep.

I've already run into a few. I mentally thank them for preventing me from wasting my time and money with them.

Same. That said, sometimes it’s a config error. I sent a very annoyed email to a website that didn’t work on Firefox, only for them to tell me that it was a bug and that they fixed it.

Yep what a wild thing, to try and filter email domains so they can try and find "fake" providers

And since people won't use the website, the website won't use the list. So the list would be useless.
The maintainer seems to have followed the same interpretation, weighing legitimate use against spam use. This is the official response to the issue as of 8h ago:

Dear Contributors,

We value your suggestions for expanding our list of disposable email providers. Your input is crucial in enhancing our tool's capabilities.

Decision on Gmail and ProtonMail Inclusion

After thorough evaluation, we have resolved not to include Gmail and ProtonMail in our list. Our rationale is based on the following technical and operational considerations:

1. **Reputation and Reliability**
   
   * **Gmail and ProtonMail**: Established, reputable providers with a high trust level for personal and professional communication.
   * **Distinction**: Unlike typical disposable email services, they offer long-term, reliable email solutions.

2. **Active Abuse and Spam Prevention Mechanisms**
   
   * **Effective Systems**: Both providers have robust mechanisms to detect and mitigate abuse and spam.
   * **Proactive Monitoring**: Ensures a secure email environment, reducing the prevalence of malicious activities.

3. **Commercial Intent of Typical Disposable Email Providers**
   
   * **Focus**: Targeting providers driven by ad revenue, facilitating spam/abuse.
   * **Gmail and ProtonMail's Model**: User-centric, not primarily ad-driven.

4. **Domain Limitations**
   
   * **Effectiveness**: Limited domain offerings by Gmail and ProtonMail make them less susceptible to misuse.
   * **Strategy**: Focusing on providers with extensive, rotating domain lists for more impactful filtering.

5. **Individual User Accountability**
   
   * **Accountability Measures**: Both services have mechanisms to penalize users violating terms, decreasing misuse risks.

Summary and Next Steps

Including Gmail and ProtonMail does not align with our criteria for identifying disposable email services. Our aim is to target services significantly contributing to online spam and abuse, without impacting legitimate email services. We have reviewed your list and agree on adding some providers, like internxt.com (Reference). We will also incorporate the obvious choices from the tail of your list. We apologize for the delay in addressing this issue but intend to promptly resolve it by focusing on the most impactful additions.

Simple as, if they don't even support e-mail it's surely a rather shite site.

The closed garden corpo-approved electronic message service the github issue is talking about simply won't do.

GitHub blocked me from registering with a Proton domain:

Our abuse detecting systems flagged your account because of the email address you used to register the account. Before we can remove the flag we need you to add and verify a personal, non-disposable, non-aliased email address.

And reading the project description the domains aren't even added manually. So the whole issue isn't needed at all. Might explain why it's been there since October.

The npm package has about 4000 weekly downloads. I don't know what that means in terms of popularity.

He's not dumb, he's extorting people who will probably pay him.

I was in a club and had to open an account to open a tab, they asked me for my government number ID, pretty standard, but then they started asking for phone number, age, email, Instagram account and I was like wtf, I just want a bottle of water!

Just keep using the temp emails and when they don't recieve your email , call them up. Their IT support will unblock it after 50-100 calls. Remember consumers have the power.

I tried to report an issue in GitLab. I needed to input my phone number and payment information to create an account. WTF? No thanks, I'll just not report the issue.

Sick of sites requiring an account, email or phone number.

Blame bots. The other day we had a post about how 70% of account creation processes on sites are started by bots. Imagine that if you didn’t even need confirmation.

These lists are used by platforms to try and cut down on spam/bot account signups. This isn't a thing done for signups by the vast majority of platforms out there, but the API verification steps IS becoming more prevalent I suppose. I just got rejected for using a Protonmail domain to buy something outright on a very popular pet supplies platform the other day, but...eh.

Someone working at Proton has commented on the issue, the list maintainer wanted to take the discussion with proton private so we have only a few posts from them.

They're not the maintainer.

It’s very clear how the list maintainer opposes anonymity in the internet in any form,

why would anyone ever be like this?

I wonder what happens when they find out that you can do my.name+alias@gmail.com

Advertisers aren't interested in your privacy. Simple as.

Admittedly the title is pretty sensationalist. The repo activity seems to indicate that the project has some users. It's impossible to know how many sites or which sites block emails contained in this list and what the impact might be. Even though I think the 7c/fakefilter project is inane, I would hesitate to say there would be no consequences at all.

It's best to defend legitimate email providers whenever possible. If we don't, those with an axe to grind get to define the provider's reputation.

Yea, I guess it's impossible to make burner gmail accounts too...

I'd really want to know what's driving them

likely ego

But did they add addy.io?

That comment chain was utterly hilarious. The OP practically wanted to block every email provider in existence.

You know because you can create spam from practically every provider. I guess it's good that this kind of idiocy is hashed out rather than just being implemented blindly with a pull request.

You cannot even make it past the half-way mark of the OP to realize that the creator has no idea what they are talking about.

Something interesting I learnt about the generated gmail accounts is that they either contain + or an excessive amount of dots, 2 very odd patterns in real, legitimate email accounts. I was able to reliably detect at least 3 or 4 dots in the email itself when it's using the dotted variation.

Continuing the discussion, the fact that they are so defensive and immediately hide behind moral high ground when someone calls out their mental gymnastics out for the bullshit they are, makes me believe that they are a troll. A child would lose interest after getting so many negative responses.

The behavior you see from the creator is close to a troll tactic called "sealioning". While refusing to give their own claims any plausible proof (they constantly talk about "tests" they've run without any specification thereof), they request elucidation or sources for any contraindicating claims (here in the form of discussions which are held off-platform, e.g. on Discord), but fail to engage with any proof of the contrary (refusing to take protonmail and several other legitimate providers off the list even after talking to the literal CTO) while just reiterating their standpoint over and over again.

All the while, they pretend to discuss sincerely and are always polite and superficially receptive to counterclaims. This is key to their general strategy of eroding a victim's patience and exhaust their attention. One of two outcomes generally occur:

a) The victim snaps. In this case the troll will claim moral high ground and garner sympathy from 3rd-party observers because of fickle reasons like "there is no reason to insult somebody on the internet".

b) The victim leaves in order to not appear unreasonable. On a public platform, like a thread, many observers will then grant the "victory" to the troll because their stand point seems strong and counterclaims seem indefensible. This is the ultimate goal of the troll and what makes it dangerous.

That dude's not even a maintainer, just some rando who apparently doesn't like protonmail.

Apparently Discord is preferable to email for long form professional communication lmao

It's absolutely wild to read. This bloke absolutely has issues, what a weirdo

That's not the maintainer, just the user who opened the issue. Here's a (somewhat ironic) interaction between the same user and the maintainer: https://github.com/7c/fakefilter/issues/69

I'm tired of watching bad ideas grow into industry standards.

No, you very likely get way more than that, they're just filtered out.

Same, gmail now means garbage mail and only acts as a filter for my Protonmail now.

Looks like someone noticed the PR and panicked. Then people someone crossposted here and people picked up the pitchforks a bit too early.

Can you show us on the doll where it touched you?

I've seen random surges in emails from Rambler.

They did, the maintainer commented that they weren't going to add Gmail and proton mail.

They'll never suspect CrAzY6969x@aol.com is a phony!

Same for Poland - wp.pl and o2.pl are the most used email providers over here. Most of my family have a wp.pl email, nobody uses gmail or anything else.

Seriously. If someone in Czechia doesn't use gmail, it's almost guaranteed they use Seznam

This blockist doesn't have that many users, though.

It would be a poor IT department if they just blindly implemented a block list that had been handed to them and allowed that block list to be updated regularly with no oversight as to what was changing.

I am not sure I understood your comment. I am using protonmail (ultimate) and they do have free simplelogin integration (I think proton bought SL). Definitely catchall is my way to go for reputable sites, but SL is great for trash "register once" sites so that I don't even disclose my domain!

Could you please share the steps you took for this? I have an inkling , but not sure how to proceed. I m thinking of learning self hosting too, but can't right now due to reasons.

I did the exact same thing.

When I saw Fastmail with aliasing features (beyond just using a catch-all with my domain) included in their $30/yr plan I couldn’t switch fast enough.

I guess Proton thinks they can rest on their name (which, admittedly, is a good one). But why pay for simplelogin + Proton when others do exactly what I need?

Duck duck go offers this service for free, they will forward to your regular email. Provided the generated addresses are random.

This is the way. I finally got around to setting this up a few months back.

Truly a sad day for poppy heads

I love how dense OP was that he didn't even acknowledge the white-list and was acting like he was the authority (or the sheriff) on this topic, with nothing to back him up whatsoever.

Ironically I'm paying for proton because the free services suck.

I can actually well imagine them responding to use a Gmail or short list of major domains. Normies are normal and the companies want an email they can link to all the other data on the web.

What all of you fail to realize is that it's literally the point of the project. To filter those "emails" that value privacy. Just like everyone has the right to use those privacy prioritized emails, website operators have a right to know. That is a 1:1 copy of the description of the project.

Nothing is happening, some kid was making requests that were entirely ignored until lemmy jumped in. I cried when they said that they preferred discord to email for official communication.

Some random email filter project.

Because they want to sell it and spam it.

It's actually really easy to get past the custom domain issue.

If the domain is send-and-receive, it will need a SPF record to avoid getting blackholed by most mail providers. A TXT lookup for the SPF record would tie the custom domain back to the real provider.

Or even easier, you could look up the MX records to see what domain they point to.

Hmm worrying. I switched to Fastmail too and use a lot of their 'masked emails'. No problems so far, touch wood