upvote

points

by ciroduran14 hours ago |
comments
upvoteby jrmg9 hours ago|
next
[-]
I’ve had my email address in a `mailto:` link in plaintext on my then-web-site, now-blog, since the early 2000s, and spam is no real problem. There are a few spam messages in my spam mailbox per day.

Perhaps my provider’s just great at filtering spam - but I kind of doubt it’s better than the major players (for years I’ve used Zoho for email - and it’s ‘okay’ enough that it’s not worth switching).

reply
upvoteby 8 hours ago|
parent|
[-]
deleted
reply
upvoteby unilynx7 hours ago|
prev|
next
[-]
> But I like this review of techniques, even the simplest ones are very effective, that surprised me.

because harvesters don't care until one technique gets massive use. if you come up with a unique but simple enough scheme for your sites and keep a few dozen email addresses out of their reach.. they've still gathered a million addresses. it's not really worth their effort to get the last 0.0001% of extra email addresses

so it's best to just not advertise your solution and make sure it doesn't get n any outside traction - if it gets popular the harvesters will defeat it

reply
upvoteby jmaw5 hours ago|
parent|
[-]
The author of the article mentioned that they are using it as a honeypot to detect when bots (or rather authors of the bots) implement a work-around for the obfuscation technique. Which is pretty smart!
reply
upvoteby kevincox6 hours ago|
prev|
next
[-]
I've also been like this. But if as the article suggests trivial options like HTML entities or elements with display:none will keep my email out of >90% of harvesters I'm reconsidering as they seem to have no downside other than an extra couple of bytes on the wire.
reply
upvoteby e4011 hours ago|
prev|
next
[-]
I’m up to more than 1,500 spam emails a month, with my email on the corp website.
reply
upvoteby GeoSys12 hours ago|
prev|
next
[-]
I agree that email addresses get leaked eventually.

However, LLMs are quite good at generating spam and I think soon will evade most filters.

reply
upvoteby BorisMelnik9 hours ago|
parent|
next
[-]
you know what's funny is that llms are also good at detecting spam as they are generating it. I've got an automation that scores incoming emails and it's getting better and better each day (also more expensive haha)
reply
upvoteby SV_BubbleTime8 hours ago|
parent|
[-]
I can’t explain it well, but I think there is an asymmetric issue here… that the ability for an LLM to write a plausible email, and the ability for an LLM to detect that it’s spam are mismatched.

If an LLM and make a plausible email, the best another LLM can do is to rank it as plausible. Blackbox creation and detection have to be on the same level.

Perhaps if you said the detection LLM had all your context and websearch. That it could know that a Penny Pollytree at Coco Co isn’t a real person, but… that just seems like burning a ton of coal to detect fraud where the creation LLM was able to easily come up with the fictitious spam cheaply.

The real story here is this will go beyond email verification. That every system we have is going to need to up its security. Paper birth certificates and social security cards and email addresses and all manner of identity is going to need new systems of auth. The challenge will be to prevent authoritarian centralization.

reply
upvoteby Gigachad11 hours ago|
parent|
prev|
[-]
I doubt it. Most of the signals spam filters use these days are reputation based. You have to build up your domain and IP reputation for a long time first.
reply
upvoteby embedding-shape11 hours ago|
parent|
[-]
> You have to build up your domain and IP reputation for a long time first.

Or buy/rent domains/IPs that have good reputations, as there are services that specializes in just bringing up the reputation for stuff so they can sell it once "good". Same exists for user accounts for various platforms like reddit and so on.

reply
upvoteby Gigachad10 hours ago|
parent|
[-]
Sure, you'd burn that reputation extremely fast as Google detects your sending patterns change and the first few users start reporting as spam.
reply
upvoteby embedding-shape9 hours ago|
parent|
[-]
> you'd burn that reputation extremely fast

Yes, that is indeed the point of those; "build up reputation -> sell/rent -> someone uses it to burn reputation -> rinse and repeat".

reply
upvoteby Yaggo12 hours ago|
prev|
[-]
Same here, the address will eventually leak some way anyway.

I never got SpamAssassin working very well, but since moving my email hosting to Apple (from my own server), spam has not been a problem.

reply
upvoteby blitzar6 hours ago|
parent|
[-]
I swear my apple hosted mail spam filter works in reverse. The inbox is full of spam and the legitimate messages (including apple billing notifications) in the spam folder.
reply