@neildarlow@fosstodon.org @thewk Have you considered a system where you hand out a different e-mail alias to each site (like a revokable API key) and auto-trash messages that don't pass through an alias?
I get maybe one or two spam a year that way... usually because a Bugzilla leaked my info or an eBay seller subscribed me to their newsletter.
(Phase 2 will be self-hosting so I can write a milter which replies to unauthorized senders for each alias with a CAPTCHA link and rewrites From in outgoing replies.)
@ssokolow @neildarlow I do that, but I was not targeted by spammers but actual attempts on my servers trying the usual attack patterns, ie running known exploits. I do run very effective spam filters in my mail server.
@thewk @neildarlow@fosstodon.org Ahh. Yeah. That's annoying.
Reminds me of a post I saw on /r/rust/ a few days ago with someone amused at the requests coming into their Rust app that were doomed to failure.
@ssokolow @neildarlow So far the firewalls seem to be handling the attacks rather well. But I am worried about bandwidth and additional stress in the hardware if this keeps up. I could turn off my home server, but the corporate ones need to stay up...
