SimpleLogin (manage email aliases and dynamically reply as the alias!)

marcusquinn

OK, so:

john@example.com and jane@example.com are not Cloudron Admins, but their mailboxes are hosting in a Cloudron service — both want to sign up to newsletters and make online purchases, without their email address getting onto mailing lists, and without having the +service part being removed to become their main email address.

What email addresses do John and Jane put into those forms?

girish

@marcusquinn you, as the Cloudron admin, would add a wildcard alias for the john@example.com. This alias can be named johnservices*@example.com .

Then, you tell john to use that wildcard alias, however, he wants. johnservices-service1, johnservices-service-2, johnservices-srv-three .. However, he wants. Replies will end in his mailbox.

Also, I don't think simplelogin has multiple users either for a custom domain - https://github.com/simple-login/app/discussions/1359 .

marcusquinn

@girish OK, sorta makes sense, so basically the Admin has to setup and explain this feature in onboarding, and disposable aliases are manually created, but only removed on request from user to Admin.

Really the convenience of the browser extension is in making unique non-decypherable aliases on the fly in email inputs, eg, if I open the extension on this website (https://bakadesuyo.com) I get this in the extensions:

Multiple domain options:

Or something totally random:

And I can also delete them in the extensions.

I see what you're saying, and I can cope with that for personal use, and could perhaps document it for client use — if anyone would ever care about that sort of thing with a work email address anyway, because spam is usually IT's problem.

So, just really documenting here to show the differences in delivery and user experience.

Given you have A solution, that probably demotes this option to more of a convenience app, than a whole new feature.

We'll probably get it running some other way though, as my attention span is precious, and protecting that from Inbox time-costs is an ongoing need.

necrevistonnezr

@marcusquinn BTW Vaultwarden has similar functionality - though more suitable if you want to use an alias for a login: https://forum.cloudron.io/topic/7144/add-privacy-and-security-using-email-aliases-with-bitwarden

marcusquinn

@necrevistonnezr Good spot, I forgot about that. Seems you can't update the Simple Login URL with it though. You can with AnonAddy, so maybe this will work as a solution:

Say doing something like this:

RazielKanos

I just stumbled upon Simple Login and addy.io

it seems both offer a self-hosted option, and it would be BRILLIANT for rising your own security. That's exactly why i use Vaultwarden, and not Bitwarden. The addition of a browser plugin like Mozilla's Relay is very amazing too, since it helps non-techies to use this feature with ease.

Why isn't such a thing higher on the list?

marcusquinn

IMHO it's essential for a service like this to be self-hosted on one's own domain. Otherwise, you're locked into the providers email domains(s) for ever, unless you want to lose the relay.

humptydumpty

@marcusquinn Isn't this service similar to using a VPN where in case of anonymity, the bigger the user pool, the harder it is for you to get profiled/tracked? Like, if I were to set up my own domain and it's just a handful of people using it, say my family and myself, then we're still being profiled pretty easily compared to having X people using Addy's domains. Right?

marcusquinn

@humptydumpty True, that does make a case for disappearing into someone else's crowd!

Obviously, with the loss of receivability if ever one stopped paying the 2rd-party.

RazielKanos

@humptydumpty
Well, I wouldn't use such a server to be "untraceable" I just hate giving out my real mail address for every shity script I want to download just to take a look at it. Unfortunately, on more and more websites I run into troubles with using trash mails since those domains get blocked for registrations.

Running such a service on your own trash domain ensures that it's very unlike the domain got blocked for registrations

humptydumpty

@RazielKanos that’s what I use my gmail for I use Proton mail for the more serious stuff. It would be nice to have an app/service to unify all this though even if anonymity isn’t possible. I’ve been using the wildcard feature in Cloudron mail for my work and personal bills. I found out that FedEx was hacked since I started receiving spam to that address. Any announcements from FedEx about that compromise? Nope! lol.