Thanks for the list! I will add them to our blocklist :) Our business values e-mail destinations where we can actually incite the signed up user with interesting offers, or new product features, instead of sending it into a black hole.
Note that @mailinator.com email addresses are blocked at a significant number of sites due to its popularity. Throwaway email sites that alternate between several different domains work best.
You should append the PositiveSSL CA 2 intermediate certificate to your certificate file. That comodo cert isn't in a few browsers'/systems' certificate stores yet.
Thanks, it looks very useful. However, if I want to reuse an address several times, it would be nice to be able to delete individual messages once I've read them.
Your site seems to display any arbitrary html sent via email. So it will load flash, javascript, honour meta redirects to other sites, etc. Try running it through https://emailprivacytester.com/
It's only useful until websites start filtering out the receivee domain - that's been happening with a few disposable email addresses.
And the highlight on " We even automatically click on common activation links for you" was a bit confusing. I was expecting a link to a page about the pointlessness of Challenge Response.
And what I really dearly want is an anonymous way to send an email - I don't mind having to sign up; I don't mind having to pay; but I really want a method where sending an email to $Person means they have to work very hard to get my real identity. (This is for good, not bad, reasons. But I can see the potential for abuse.)
Dan, I was looking into anonymous sending options recently.
Two quick questions:
- "don't mind having to pay"; what might you be willing to spend? $5/month? $50? 2c per email?
- "they have to work very hard to get my real identity"; get-a-court-order hard? Or harder than that?
The main challenge for these kinds of services is that they're only as useful as they are unknown.
If they start getting popular, they either
- start getting slammed with volumes of spam that are so high that the creator needs to start paying some serious hosting fees to keep the service running
- get blacklisted
Mailinator has outlasted all its competitors because it addressed both problems very early on. I wish receiveee best luck but I'm betting that it won't be around in a year from now.
has a massive database and a bounty for new additions!
We have 2 factor verification for http://8centsms.com/ but with the advent of disposable inbound SMS numbers via Twilio as well as disposable email addresses we were getting a bunch of people signing up and getting the free 10 credits repeatedly.
We haven't seen the problem recur since implementing this service, though so it seems the coverage is pretty good (/me prepares for onslaught of fake email signups to get the 10 free SMS credits via fake Twilio numbers ... )
All we need now is a service to blacklist disposable mobile numbers!!
I use disposable emails only to signup to services. I later save the email and pwd with 1Password. I've been doing this for a long time.
The reason I do this is because many startups (and non-startups) keep abusing on the amount of email they send you, even if I unsubscribe from their "newsletter" they come up with other non-newsletter emails - and this is just unbearable. I feel like being spammed most of the time.
The advantage of using disposable email is that I have access to the service, I decide when I receive emails and it's a great way to protect my account from being hacked (think of any recent social eng hack a la Amazon, Apple, etc. they couln't do it without your signin email).
A handful of other colleagues do the same thing. If you blacklist users who want to protect their privacy and want control over their inbox all you are doing is blocking (in our case) affluent users.
DEA users are most likely long time internet users who care about their privacy and have learned to protect their email. At the same time, they have enough interest to register and try your stuff - so let them be... If the site requires users to enter an email address for freebies, savvy users will eventually find a way around it, as you suggested. You might also be blocking the early adopters. Eg. bloggers who want to review your stuff, etc!
https://gli.ph Cloaked Email is more convenient than these services and can offer you the same or better privacy.
receiveee looks great for incoming one-time emails like spam and confirmation emails. Gliph allows two-way email, at the cost of having to create an account.
The cloak address you generate on Gliph forwards mail to your real inbox. when you reply it appears to come from an cloak address.
My favorite disposable email provider, by far, is 33mail.com, mainly because the addresses don't have to be disposable. You give a different email address to each service, and, if you get spam, you know the culprit and can block them right away.
Thanks for the tip. I always forget about these because the domains they use are usually too silly (they should just let us use raw IP addresses); and also because I use email so infrequently. Mailinator seems the only one I remember. There's another disposable email provider... I can't remember the name... the accounts are time-limited. Truthfully, it's an email forwarder; they ask for a personal email address. (Maybe you could forward to another disposable email provider.) You can choose to have the account last hours or days. I know I've seen it mentioned on HN.
You can also just add +domain to the local-part of your email address and do that without needing a disposable email service. Theoretically some sites may strip them out, but I doubt that many go to the trouble.
Question for business owners/founders: how do you feel about people signing up for your services with these throwaway email addresses?
On the one hand, I respect people's privacy and right to use whatever email address they like.
On the other (more relevant) hand - I sometimes need to contact users who violate terms and conditions that their access may be switched off (I'd never do this without contacting them 2-3 times). Also, I might need to inform them that something has changed which might affect their usage. My service can be quite integral to a lot of apps, so to me that's an important feature...
My feelings are that trust is a two-way street. If people don't trust us with their email address, I don't think it's fair for them to expect us to trust them with an account on our service if they provide a fake email address.
If they are serious about evaluating our product, they can provide a real email address. If they aren't very serious or inherently don't trust us, then I'm willing to miss the opportunity of having them as a customer.
I respect their privacy, because we don't spam, sell, or abuse any of these email addresses ever, but I find it hard to trust anyone with an account on our service if they use a fake email address. Personally, when I sign up for services, I find it helpful to gauge the company based on how they use my email. If they automatically start sending me marketing materials the next day, that tells me a lot, and I'll generally cancel the service and report all of the subsequent marketing emails from them as spam. The only way to do that effectively is if I use a real email address.
Do people use these fake inboxes for any reason other than trying to prevent or cut down on spam? Am I overlooking some key aspect of allowing people to use these email addresses?
Thoughts ?
Well, ...We (supposedly) live in a free country.
Analogy: When one fucks his/her neighbor's wife/husband (no, just kidding, nobody ever does that IRL), one at least draws the curtains, or goes rent a motel room 500 miles from home. It can lead to legal problems, big loss of money, and shattering a whole family (hurting real people for real), but no jurisdiction in north america or western Europe would sent someone to jail for that.
So... Signing into your new shiny service with a dupe email ? You bet i will. All the more if it's free. And that's just the beginning. It's time people realize their "profile" is as private as their "privates". Don't let anyone profile you for free. Your profile is worth more than that, right ?
That answers your question ?
(Btw nothing personal, as for the "illegal" stuff hapening on your service, it's mostly your problem, alas:( and that's not the easiest part. As long as you wish to profile users, you cannot securely (as in security by design) offer them privacy, and hence will run into the kind of troubles you allude to)
I'd be fine if people signed up with these to try it, but they should use a permanent address if they want to continue using it. I would have no sympathy at all if they lost their account.
Great tool. I would like to ask HN folks opinion on another kind of email service. Its quiet possible that google or yahoo can boot you from their service whenever they want...even if you don't think you violated their TOS. Do you guys think there is room for a service in which, once you signup, you will never be booted from the service? All data will be yours, or after you are gone, it will belong to your descendants.
Of course, there are spam considerations here..but I think they have to be worked out.
Some services, like Facebook, normalize the mail address (turn all letters to lower case). Can you make sure that mails to the normalized email also reach my inbox? (They don't now!)
One thing I like about receiveee more than mailinator and 33mail is that you can start using it without signing up. The user interaction is very smooth.
I have a google apps account which runs something like [email protected] I put their domain [email protected] as my email address when I sign up. I get all emails sent to *@example.com in the google mail archive folder and I can search if I need to
http://www.tempomail.fr/ is what I have been using for a very long time. You can have it redirect to your normal e-mail address and there is a nice chrome plugin for it too.
I'm finding that the secret url is very very close to the actual email addresses in most cases. It's fairly trivial to guess inbox addresses based on email addresses. Is this ideal?
Only you can access this inbox by returning to this web site using the same browser or by saving the link for this page. Others are not able to read your mail."
[+] [-] vidyesh|13 years ago|reply
http://mailinator.com/
http://10minutemail.com/10MinuteMail/index.html
https://www.guerrillamail.com/
http://www.dispostable.com/
http://dudmail.com/
http://getairmail.com/
http://mailcatch.com/en/disposable-email
http://spambox.us/
http://www.yopmail.com/en/
https://ssl.trashmail.net/
http://www.fakeinbox.com/
http://www.fakemailgenerator.com/
http://www.tempinbox.com/
If I am really paranoid or just on tor then I use http://tormail.net/
Now adding https://receiveee.com/
One of the reasons why I have a list of all these disposable email services is because some do get blocked from websites.
Eg. mailinator : I loved the service but its mostly blocked everywhere now. ( I know there are alt domains for mailinator )
Really appreciate all these services.
[+] [-] rubergly|13 years ago|reply
[+] [-] easy_rider|13 years ago|reply
[+] [-] jbellis|13 years ago|reply
[+] [-] EwanG|13 years ago|reply
Given some of the other comments in the thread below, it seems like the more of these you have, the more likely one of them will work.
[+] [-] baddox|13 years ago|reply
[+] [-] gm_|13 years ago|reply
[+] [-] kornnflake|13 years ago|reply
Some of the main features are:
* SSL only connections
* All data is stored in memory using redis to make the site blazing fast
* New mails are instantly displayed using web sockets
* Automatically clicking on common activation links
* Your inbox doesn't expire
[+] [-] harshreality|13 years ago|reply
https://www.ssllabs.com/ssltest/analyze.html?d=receiveee.com
Your nginx configuration ssl ciphersuite list includes single DES, too, when it shouldn't.
[+] [-] aaronpk|13 years ago|reply
[+] [-] greenyoda|13 years ago|reply
[+] [-] aaronpk|13 years ago|reply
[+] [-] xoail|13 years ago|reply
[+] [-] mike-cardwell|13 years ago|reply
E.g: https://receiveee.com/1QQGEpdt/908
[+] [-] kornnflake|13 years ago|reply
Btw: This fix only applies to new mails.
[+] [-] DanBC|13 years ago|reply
It's only useful until websites start filtering out the receivee domain - that's been happening with a few disposable email addresses.
And the highlight on " We even automatically click on common activation links for you" was a bit confusing. I was expecting a link to a page about the pointlessness of Challenge Response.
And what I really dearly want is an anonymous way to send an email - I don't mind having to sign up; I don't mind having to pay; but I really want a method where sending an email to $Person means they have to work very hard to get my real identity. (This is for good, not bad, reasons. But I can see the potential for abuse.)
[+] [-] Roedou|13 years ago|reply
Two quick questions: - "don't mind having to pay"; what might you be willing to spend? $5/month? $50? 2c per email? - "they have to work very hard to get my real identity"; get-a-court-order hard? Or harder than that?
[+] [-] impendia|13 years ago|reply
[+] [-] elchief|13 years ago|reply
[+] [-] StavrosK|13 years ago|reply
[+] [-] laureny|13 years ago|reply
If they start getting popular, they either
- start getting slammed with volumes of spam that are so high that the creator needs to start paying some serious hosting fees to keep the service running
- get blacklisted
Mailinator has outlasted all its competitors because it addressed both problems very early on. I wish receiveee best luck but I'm betting that it won't be around in a year from now.
[+] [-] dools|13 years ago|reply
http://www.block-disposable-email.com
has a massive database and a bounty for new additions!
We have 2 factor verification for http://8centsms.com/ but with the advent of disposable inbound SMS numbers via Twilio as well as disposable email addresses we were getting a bunch of people signing up and getting the free 10 credits repeatedly.
We haven't seen the problem recur since implementing this service, though so it seems the coverage is pretty good (/me prepares for onslaught of fake email signups to get the 10 free SMS credits via fake Twilio numbers ... )
All we need now is a service to blacklist disposable mobile numbers!!
[+] [-] antr|13 years ago|reply
The reason I do this is because many startups (and non-startups) keep abusing on the amount of email they send you, even if I unsubscribe from their "newsletter" they come up with other non-newsletter emails - and this is just unbearable. I feel like being spammed most of the time.
The advantage of using disposable email is that I have access to the service, I decide when I receive emails and it's a great way to protect my account from being hacked (think of any recent social eng hack a la Amazon, Apple, etc. they couln't do it without your signin email).
A handful of other colleagues do the same thing. If you blacklist users who want to protect their privacy and want control over their inbox all you are doing is blocking (in our case) affluent users.
[+] [-] flashmob|13 years ago|reply
[+] [-] unknown|13 years ago|reply
[deleted]
[+] [-] bredren|13 years ago|reply
receiveee looks great for incoming one-time emails like spam and confirmation emails. Gliph allows two-way email, at the cost of having to create an account.
The cloak address you generate on Gliph forwards mail to your real inbox. when you reply it appears to come from an cloak address.
More info in ReadWrite article: http://readwrite.com/2012/08/14/use-this-app-to-create-anony...
Gliph also sets you up with a secure picture messaging tool for iOS and Android and a serious privacy policy.
Disclosure: I am co-founder and ceo of Gliph. Happy to answer questions.
[+] [-] StavrosK|13 years ago|reply
Brilliant.
[+] [-] greenyoda|13 years ago|reply
[+] [-] goodlook33|13 years ago|reply
[+] [-] Alex3917|13 years ago|reply
[+] [-] emiliobumachar|13 years ago|reply
[+] [-] dragondilesh|13 years ago|reply
is also quite nice.
[+] [-] goodlook33|13 years ago|reply
Like Mailinator, this is a great idea.
Kudos to these guys for putting their mail admin skills to good use.
[+] [-] josscrowcroft|13 years ago|reply
On the one hand, I respect people's privacy and right to use whatever email address they like.
On the other (more relevant) hand - I sometimes need to contact users who violate terms and conditions that their access may be switched off (I'd never do this without contacting them 2-3 times). Also, I might need to inform them that something has changed which might affect their usage. My service can be quite integral to a lot of apps, so to me that's an important feature...
Thoughts?
[+] [-] garrettdimon|13 years ago|reply
If they are serious about evaluating our product, they can provide a real email address. If they aren't very serious or inherently don't trust us, then I'm willing to miss the opportunity of having them as a customer.
I respect their privacy, because we don't spam, sell, or abuse any of these email addresses ever, but I find it hard to trust anyone with an account on our service if they use a fake email address. Personally, when I sign up for services, I find it helpful to gauge the company based on how they use my email. If they automatically start sending me marketing materials the next day, that tells me a lot, and I'll generally cancel the service and report all of the subsequent marketing emails from them as spam. The only way to do that effectively is if I use a real email address.
Do people use these fake inboxes for any reason other than trying to prevent or cut down on spam? Am I overlooking some key aspect of allowing people to use these email addresses?
[+] [-] peterhost|13 years ago|reply
Analogy: When one fucks his/her neighbor's wife/husband (no, just kidding, nobody ever does that IRL), one at least draws the curtains, or goes rent a motel room 500 miles from home. It can lead to legal problems, big loss of money, and shattering a whole family (hurting real people for real), but no jurisdiction in north america or western Europe would sent someone to jail for that.
So... Signing into your new shiny service with a dupe email ? You bet i will. All the more if it's free. And that's just the beginning. It's time people realize their "profile" is as private as their "privates". Don't let anyone profile you for free. Your profile is worth more than that, right ?
That answers your question ?
(Btw nothing personal, as for the "illegal" stuff hapening on your service, it's mostly your problem, alas:( and that's not the easiest part. As long as you wish to profile users, you cannot securely (as in security by design) offer them privacy, and hence will run into the kind of troubles you allude to)
[+] [-] pi18n|13 years ago|reply
[+] [-] electrotype|13 years ago|reply
I only go to this account inbox when I'm looking for a particular email. It's full of spam and I don't care!
[+] [-] rgovind|13 years ago|reply
Of course, there are spam considerations here..but I think they have to be worked out.
[+] [-] gtklocker|13 years ago|reply
[+] [-] danellis|13 years ago|reply
[+] [-] asimjalis|13 years ago|reply
[+] [-] goodlook33|13 years ago|reply
As re_todd says, mailinator asks for nothing from the user. The accounts are created automatically.
Just send mail to [email protected] and an account (user) is automatically created. No passwords. No sign in.
[+] [-] snprbob86|13 years ago|reply
[+] [-] re_todd|13 years ago|reply
[+] [-] 3825|13 years ago|reply
Too bad google discontinued the free option.
[+] [-] theone|13 years ago|reply
However I missed a link to bookmark the home page. As on going to https://receiveee.com/ it automatically redirects to newly created address.
It is cumbersome to manually add it to bookmark bar.
[+] [-] LandoCalrissian|13 years ago|reply
[+] [-] jsmeaton|13 years ago|reply
[+] [-] Illychnosis|13 years ago|reply
"Your Private Inbox
Only you can access this inbox by returning to this web site using the same browser or by saving the link for this page. Others are not able to read your mail."
Props to the progger/designer.