I do that, but it is limited in its usefulness because there is not a simple way of then killing off one of those addresses that you have made up on the spot. Eventually if spam to all these made up addresses becomes a problem, you have to turn off the catch-all address to stop the spam coming through. Which then means you have to actually set up another account or group in Google Apps each time you want an extra address, which is a lot less quick and easy.
point taken but i don't usually give such an address to any site. I use mailinator.com / bugmenot.com for random junk like reading nytimes.com or stuff like that.
The Gmail wildcard is useful for sites you want to receive stuff from but these sites are not trusted/appreciated enough to give them a proper email address. Also, in order not to fill up my main email account, i have a separate, dedicated account@my domain and that one is the target of the wildcard, not my main account. To access that quickly, I set up account access delegation rights between the wildcard-reception account and my main account.
If one of the made-up addresses starts receiving spam i can always set a filter to delete that email as soon as it arrives (usually i just filter it with a label for sending to spamcop) and (usually) the owner of the site it was initially intended for will get a spam & abuse complaint sent on all contact email addresses i can find (via whois and their site)
This feature is worthless as a spam decoy strategy, as anyone can use it to find your real address. I would be amazed if spammers don't already strip off the "+whatever" from gmail addresses, [...] I wonder why Google hasn't stepped up to supply actual disposable email addresses yet
oh, but they do have that but it's a bit hidden and it's only available via Apps for hosted domains. (even free apps has it). The way to set this up is to host your domain (or at least the mail receiving functions of it) with Google Apps and then you can set up the email service to accept wildcard emails, *@your-domain-hosted-on-google-apps_dot_anything.
Now whenever you give out an address just invent one on the spot @your domain and it will be valid. I do this and i got into the habit of throwing a date stamp and the name of whoever it is for into the email address itself so that if i start receiving spam for that address i know who leaked it and when they were assigned that address. Such an address usually looks like: mail-for-my-name-from-slashdot-org-20120524@example.com
And since my domain is set up at Gmail with a wildcard catch-all address, that will be routed to my actual mailbox (only if it passes Gmail spam filtering tests).
What, exactly, does Yahoo! have that Gmail doesn't have? Other! Than! Excessive! Punctuation!
well, there's one thing: yahoo mail has stupid and obnoxious graphical ads, sometimes with flash&sound and sometimes the ads expand to fill the page if you accidentally mouse over them (happened to me a month ago when i was installing a new computer and i didn't had time to install AdBlock Plus. ABP was the first thing i installed after that).
Gmail only has text ads and those are not even remotely as annoying as the crap that yahoo shows.
the entire TSA just got added to Ron Paul's list of things to eliminate: quote: "in additional to cutting $1 trillion dollars in federal spending in one year, eliminates the TSA."
It sucks for the store too. So you get a socket set and find it's full of rocks rather than sockets. You go back and complain. The store has too choices.
1: they assume you are telling the truth. This means they are stuck with the loss and for all they know you may be the one trying to screw them. 2: they accuse you of lying. This means they will likely lose you as a customer and may well get badmouthed all over the internet
i vote for #3 3: do both 1 & 2, just as futuresop did in this case.
bugs being smashed in electical components has already happened, lots of times in history. Here's one of the first properly documented cases of it, from 1947:
Moth found trapped between points at Relay # 70, Panel F, of the Mark II Aiken Relay Calculator while it was being tested at Harvard University, 9 September 1947. The operators affixed the moth to the computer log, with the entry: "First actual case of bug being found". They put out the word that they had "debugged" the machine, thus introducing the term "debugging a computer program". In 1988, the log, with the moth still taped by the entry, was in the Naval Surface Warfare Center Computer Museum at Dahlgren, Virginia.
Courtesy of the Naval Surface Warfare Center, Dahlgren, VA., 1988.
oddly enough their support forum is called "Community Support Forum"... shouldn't that be "Proprietary Support Forum" now? http://www.scientiamobile.com/forum/
Also, Scientiamobile itself is in breach of SourceForge's Terms of use (they use SourceForge for file distribution!) because the Terms state:
http://geek.net/terms-of-use "Except as otherwise expressly permitted by these Terms, any Code submitted to SourceForge.net must be licensed to Geeknet and other licensees under a license that is: compliant with the Open Source Initiative ("OSI")'s Open Source Definition (http://www.opensource.org/docs/osd) or certified as an "OSI-Approved License" (http://opensource.org/licenses)."
imho, the license that they are using now is in COMPLETE VIOLATION with sourceforge's terms.
i already submitted an abuse report with sourceforge for this... but i'm not sure if only one abuse report is enough
well, since they are an accredited ICANN registrar they do have phones listed with ICANN and Verisign as well as contact email addresses and a postal address. They also have a postal address is in Florida and one in Bahamas in Panama. (not sure if any of them are currently valid though, google maps shows the Florida address to be some sort of rented storage area)
Just search for them on ICANN's site and follow the whois data trail on verisign's site (hint: search by registrar).
P.S. #2 i got in touch with their tech support [Ticket#1047262] and they promised to fix this small security issue that appears after registration but before the first ever actual login by a new user.
The registration process itself is secure but right after the registration if you click their company logo and try to manage your profile you get sent to the unencrypted page that shows the data you filled in during the registration (except the pw)
To avoid this issue the first thing you should do after registration is to click the LOG OUT link (or clear the cookies for their site) and then login back in, you will then get the form with the "always use ssl" checkbox.
Re:It's about the prices
on
GoDaddy Backs SOPA
·
· Score: 3, Interesting
P.S. it does this on new account registrations (sending all profile data unencrypted) but after i logout and when i try to log back in i am presented with a checkbox to enable ssl for all requests.
first time users don't get that checkbox though, all their data is sent via plaintext on registration:(
Re:It's about the prices
on
GoDaddy Backs SOPA
·
· Score: 4, Informative
http://internet.bs/ has great deals on domains and it's located in the Bahamas.
Did I mention they have an API?
yea right.. ever looked at the protocol used by default on the profile administration page? i just tried it and it defaults to http, no https. All your profile data on internetbs is sent over the wire in plain text, including the security question and all the rest.
Even though their servers seems to support it, once you click on a link on a secured page on their site you're automatically directed to the plaintext http access pages.
Facebook argued in its filings that Faceporn targets a United States audience by using a ".com" address, and by virtue of the fact that Faceporn is an interactive website with 250 users in California and 1000 users in the United States. The court says that these allegations alone are not sufficient to satisfy the standard for personal jurisdiction.
actually, it is a scam imho because you do not get 1.50 in cash but you get it as a discount voucher for the next ticket you buy. Ticketmaster doesn't pay you a single cent in CASH and if you stopped using them you're SOL, you're not going to get anything back. Their lawyers are laughing all the way to the bank.
Think of this settlement as just a small mandatory promotion for them since you'll be paying them anyway MUCH more than that for a ticket. The $1.50 discount is insignifiant.
Slashdot Mirror
I do that, but it is limited in its usefulness because there is not a simple way of then killing off one of those addresses that you have made up on the spot. Eventually if spam to all these made up addresses becomes a problem, you have to turn off the catch-all address to stop the spam coming through. Which then means you have to actually set up another account or group in Google Apps each time you want an extra address, which is a lot less quick and easy.
point taken but i don't usually give such an address to any site. I use mailinator.com / bugmenot.com for random junk like reading nytimes.com or stuff like that.
The Gmail wildcard is useful for sites you want to receive stuff from but these sites are not trusted/appreciated enough to give them a proper email address. Also, in order not to fill up my main email account, i have a separate, dedicated account@my domain and that one is the target of the wildcard, not my main account.
To access that quickly, I set up account access delegation rights between the wildcard-reception account and my main account.
If one of the made-up addresses starts receiving spam i can always set a filter to delete that email as soon as it arrives (usually i just filter it with a label for sending to spamcop) and (usually) the owner of the site it was initially intended for will get a spam & abuse complaint sent on all contact email addresses i can find (via whois and their site)
This feature is worthless as a spam decoy strategy, as anyone can use it to find your real address. I would be amazed if spammers don't already strip off the "+whatever" from gmail addresses,
[...]
I wonder why Google hasn't stepped up to supply actual disposable email addresses yet
oh, but they do have that but it's a bit hidden and it's only available via Apps for hosted domains. (even free apps has it).
The way to set this up is to host your domain (or at least the mail receiving functions of it) with Google Apps and then you can set up the email service to accept wildcard emails, *@your-domain-hosted-on-google-apps_dot_anything.
Now whenever you give out an address just invent one on the spot @your domain and it will be valid. I do this and i got into the habit of throwing a date stamp and the name of whoever it is for into the email address itself so that if i start receiving spam for that address i know who leaked it and when they were assigned that address. Such an address usually looks like: mail-for-my-name-from-slashdot-org-20120524@example.com
And since my domain is set up at Gmail with a wildcard catch-all address, that will be routed to my actual mailbox (only if it passes Gmail spam filtering tests).
What, exactly, does Yahoo! have that Gmail doesn't have? Other! Than! Excessive! Punctuation!
well, there's one thing: yahoo mail has stupid and obnoxious graphical ads, sometimes with flash&sound and sometimes the ads expand to fill the page if you accidentally mouse over them (happened to me a month ago when i was installing a new computer and i didn't had time to install AdBlock Plus. ABP was the first thing i installed after that).
Gmail only has text ads and those are not even remotely as annoying as the crap that yahoo shows.
there's also the romney tax option:
http://www.thedailyshow.com/watch/tue-january-24-2012/indecision-2012---i-know-what-you-did-last-quarter
(oh... i guess it shows that i'm european here... haven't visited US since 1995 and actively avoided it since the TSA craziness started.)
however, "privatized" doesn't mean the same thing as "elimination".
this is what i see when "privatization" comes up, and such a "privatized" TSA is no different than the current one IMHO
http://consumerist.com/2010/11/armed-walmart-guard-swipes-my-property-because-i-wouldnt-show-receipt.html
http://consumerist.com/2011/07/lawsuit-walmart-falsely-arrested-me-made-me-lose-my-job-had-husband-deported-over-290-worth-of-chick.html
http://consumerist.com/2011/10/child-seized-after-fainting-mother-forgot-to-pay-for-sandwich.html
and many others...
according to this:
http://www.ronpaul2012.com/2012/01/23/ron-paul-campaign-statement-concerning-tsa-abuses/
the entire TSA just got added to Ron Paul's list of things to eliminate:
quote: "in additional to cutting $1 trillion dollars in federal spending in one year, eliminates the TSA."
woooot!
It sucks for the store too. So you get a socket set and find it's full of rocks rather than sockets. You go back and complain. The store has too choices.
1: they assume you are telling the truth. This means they are stuck with the loss and for all they know you may be the one trying to screw them.
2: they accuse you of lying. This means they will likely lose you as a customer and may well get badmouthed all over the internet
i vote for #3
3: do both 1 & 2, just as futuresop did in this case.
actually, they are linked on the site but not on each particular model's page in the database (i think they gave up on updating the links)
1) on the front page click "router database"
2) then on the sub-menu that opens, above the line where you type the router model, click on "Other downloads" ( http://dd-wrt.com/site/support/other-downloads )
result: you're now viewing the ftp space, mapped on the website
e.g.
ftp://ftp.dd-wrt.com/others/eko/BrainSlayer-V24-preSP2/2011/
is mapped on http at:
http://dd-wrt.com/site/support/other-downloads?path=others%2Feko%2FBrainSlayer-V24-preSP2%2F2011%2F
NOT the Dead DD-WRT project.
DD-WRT has not had a release even for their beta for over 2 years now.
that is not true at all...
ftp://ftp.dd-wrt.com/others/eko/V24_TNG/
ftp://ftp.dd-wrt.com/others/eko/V24-K26/
ftp://ftp.dd-wrt.com/others/eko/BrainSlayer-V24-preSP2/2011/
ftp://ftp.dd-wrt.com/others/eko/BrainSlayer-V24-preSP2/2010/
release quality though... that is another matter... e.g. release 18000 causes bricking in tp-link wr1043nd routers... :(
http://www.dd-wrt.com/phpBB2/viewtopic.php?t=148172
bugs being smashed in electical components has already happened, lots of times in history.
Here's one of the first properly documented cases of it, from 1947:
http://www.history.navy.mil/photos/images/h96000/h96566k.jpg
Photo #: NH 96566-KN (Color)
The First "Computer Bug"
Moth found trapped between points at Relay # 70, Panel F, of the Mark II Aiken Relay Calculator while it was being tested at Harvard University, 9 September 1947. The operators affixed the moth to the computer log, with the entry: "First actual case of bug being found". They put out the word that they had "debugged" the machine, thus introducing the term "debugging a computer program".
In 1988, the log, with the moth still taped by the entry, was in the Naval Surface Warfare Center Computer Museum at Dahlgren, Virginia.
Courtesy of the Naval Surface Warfare Center, Dahlgren, VA., 1988.
NHHC Collection
oddly enough their support forum is called "Community Support Forum"... shouldn't that be "Proprietary Support Forum" now?
http://www.scientiamobile.com/forum/
Also, Scientiamobile itself is in breach of SourceForge's Terms of use (they use SourceForge for file distribution!) because the Terms state:
http://geek.net/terms-of-use
"Except as otherwise expressly permitted by these Terms, any Code submitted to SourceForge.net must be licensed to Geeknet and other licensees under a license that is: compliant with the Open Source Initiative ("OSI")'s Open Source Definition (http://www.opensource.org/docs/osd) or certified as an "OSI-Approved License" (http://opensource.org/licenses)."
imho, the license that they are using now is in COMPLETE VIOLATION with sourceforge's terms.
i already submitted an abuse report with sourceforge for this... but i'm not sure if only one abuse report is enough
p.s. i'm talking about their web site, it's almost completely unusable without silverlight :(
oh ${deity} ... yet another silverlight - infected steaming piece of ***p
It takes a lot to light marble and granite on fire.
not that much, just a big spaceship with a really big particle cannon.
also, must not forget the flying sharks... lots of flying sharks to chase down any of the escaping congressional critters.
from https://twitter.com/#!/jimmy_wales/status/150287579642740736
I am proud to announce that the Wikipedia domain names will move away from GoDaddy. Their position on #sopa is unacceptable to us.
Let's see if wikipedia continues the move or not after this 180 turn
typo: one in Bahamas and one in Panama
Did you mention they do not have a telephone?
well, since they are an accredited ICANN registrar they do have phones listed with ICANN and Verisign as well as contact email addresses and a postal address. They also have a postal address is in Florida and one in Bahamas in Panama. (not sure if any of them are currently valid though, google maps shows the Florida address to be some sort of rented storage area)
Just search for them on ICANN's site and follow the whois data trail on verisign's site (hint: search by registrar).
P.S. #2
i got in touch with their tech support [Ticket#1047262] and they promised to fix this small security issue that appears after registration but before the first ever actual login by a new user.
The registration process itself is secure but right after the registration if you click their company logo and try to manage your profile you get sent to the unencrypted page that shows the data you filled in during the registration (except the pw)
To avoid this issue the first thing you should do after registration is to click the LOG OUT link (or clear the cookies for their site) and then login back in, you will then get the form with the "always use ssl" checkbox.
P.S.
it does this on new account registrations (sending all profile data unencrypted) but after i logout and when i try to log back in i am presented with a checkbox to enable ssl for all requests.
first time users don't get that checkbox though, all their data is sent via plaintext on registration :(
http://internet.bs/ has great deals on domains and it's located in the Bahamas.
Did I mention they have an API?
yea right.. ever looked at the protocol used by default on the profile administration page?
i just tried it and it defaults to http, no https. All your profile data on internetbs is sent over the wire in plain text, including the security question and all the rest.
Even though their servers seems to support it, once you click on a link on a secured page on their site you're automatically directed to the plaintext http access pages.
Orbit? that thing no longer has a stable orbit... at least for a while it won't have, until it stabilizes.
have you seen those two movies? its exit is like an out-of-control fire hose with afterburners.
One for me, one for you. One, two for me, two for you. One, two, three for me, three for you...
i think that's might be the official RIAA/MPAA accounting method.
an US judge just ruled that having a .com doesn't necessarily mean it's under US jurisdiction:
http://www.techdirt.com/articles/20111206/11351416992/facebook-fails-its-argument-that-faceporn-is-under-us-jurisdiction-using-com.shtml
Facebook argued in its filings that Faceporn targets a United States audience by using a ".com" address, and by virtue of the fact that Faceporn is an interactive website with 250 users in California and 1000 users in the United States. The court says that these allegations alone are not sufficient to satisfy the standard for personal jurisdiction.
it's called censorship
http://www.techdirt.com/articles/20111208/08225217010/breaking-news-feds-falsely-censor-popular-blog-over-year-deny-all-due-process-hide-all-details.shtml
actually, it is a scam imho because you do not get 1.50 in cash but you get it as a discount voucher for the next ticket you buy. Ticketmaster doesn't pay you a single cent in CASH and if you stopped using them you're SOL, you're not going to get anything back. Their lawyers are laughing all the way to the bank.
Think of this settlement as just a small mandatory promotion for them since you'll be paying them anyway MUCH more than that for a ticket. The $1.50 discount is insignifiant.
http://consumerist.com/2011/11/you-could-score-150-as-part-of-class-action-suit-against-ticketmaster.html