I've always had multiple email addresses, right now I have 6:
One "private": let's say it's the main one, used for everything except for the thin...
For further actions, you may consider blocking this person and/or reporting abuse
One, but I use the built-in aliasing.
GMail for instance you can have an email like myname@gmail.com and when you sign up on a site you can do myname+nameofwebsite@gmail.com
Emails they send you will still go to myname@gmail.com and you can use the +nameofwebsite part to see who it was who maybe sold your email or had a breach. Can also use it for rules and labelling things.
SOME terrible devs out there don't allow + in email addresses even though it is wholly valid to have that character. Lots of devs screw up email name validation. Don't be like those devs if you ever have to validate emails.
GMail also allows for any number of dots in your name. So you can also use my.name@gmail.com or m.y.n.a.m.e@gmail.com if you want. I do this sometimes to re-sign up for trials if the service doesn't allow for the + trick mentioned above.
Yes, not allowing for + in emails is terrible practice. I wish I bookmarked it but I read a great article a few years ago all about email validation and how futile it pretty much is - the conclusion was to just check for the presence of an '@' character. Email validation is best done by sending an email to the address and seeing if the user opens it/goes to some link within it.
Everything before the '@' is entirely ruled by the mailserver, so any validation rules you apply to this are effectively an assumption on the rules your user's mailserver use. I guess you could validate the post-'@' characters but with how many new TLDs are coming out this seems like more hassle than it's worth. Trust your users to know their emails (but make sure you're still encoding the input so as to avoid nasty SQL injection etc!)
Hopefully doing more than just encoding/escaping -- never place user data directly into a SQL statement! Always use placeholders like ? or whatever your flavor of DB allows. And if it doesn't allow for that, really think hard about why you're using that db (or db sdk)!
Fair, I just wanted to throw in something about security after making the questionably phrased statement of 'trust user input' :D
Sadly, spammers and site-attackers know this trick.
Heh... And has been valid for over 20 years — at least that's when Sendmail added it. You'd think over two decades would be enough time for people to get the drift. :p
Sadly, support for that in gSuite seems to be lacking. Probably because they know a lot of companies like to assign .@. So, if you have a legacy Apps account for your personal domain, you can't use that trick to work past the fifty free aliases limit. :(
You can have unlimited temp email addresses with disposable email services.
I always forget about these tricks. Thanks for the reminder!
I have a personal one, for general day-to-day things, this is generally as secure as I can make it with a good password, two-factor auth etc. A "professional one", which security isn't as important as it's just for job searching, etc. A private one, which really is just a store of information for myself, I don't email it and to other people from it, just store things in it. This is another secure one.
Aren't there better solutions than a mail account for the last use case?
Google mail accounts are great for archiving. Even without buying extra space, you can store years (decades?) worth of content. Can do it with either an auto-forwarding rule or, if you're just setting it up, a simple IMAP-based copy.
The beauty is it's kept in a portable, easy to access structure (its original format) and usually stays accessible via its former methods. Can't really say the same for things like PSTs and some purpose-built mail-archival solutions.
Quite likely, but I'll be honest I don't care too much about it. It's stuff like passphrases for websites I don't quite care enough about.
I am looking at investing in a Password Manager though, and there are solutions out there like LastPass that may be a better solutions to that.
I started using a password manager recently and that's honestly life changing. You should take a look at Bitwarden: it's free, open-source and self-hostable (but not only, they provide a public instance). You can store passwords/credentials (obviously), credit cards, identity and secured notes (chunks of text, you can put whatever you want in it).
Sounds ideal, I'll give it a look. Cheers for that!
I used to have an account in almost every email provider (Yahoo!, Microsoft, Google, Apple) but I felt the need to have everything in one place. Five or six years ago I started to approach emails like Anthony, with two exceptions:
For services that I really do not care (and don't do email verification), I make up something along the lines of
no@no.nope.I have 3 on permanent sites and another 2 that are volatile addresses, so naturally either don't check some very often or could spend an entire day just reading emails. Worth mentioning that in one outlook account I have 4 different alias with their respective 'inboxes'.
<service_name>@defman.me. It forwards everything to my private Gmail account.For security reasons?
Yeah. I can block services who send too much spam or detect leaks.
6, gmail and gSuite: one that’s personal, two I just dump stuff in I rarely look at that I’ve had for the past 9 years, two for my blogs, one for “business”. A bunch of aliases for my gSuite accounts.
11, but 5 of those are client addresses, and as the blah+myname@google, is circumvented very easily, and all spammers know the trick, I have a throwaway address (spam magnet that one). So no, 6 isn't a lot.
I managed to get down to 2(ish) email addresses;
I'd actually like to reduce to 2-3 addresses too.
Especially since a lot of the answers to this thread made me realize how useful aliases are and how it could replace my many different addresses.
I actually done the opposite: I don't use mails very much for my job but I still have to keep an eye on this address if I don't want to miss out important things. So it's synced with my personal smartphone, to ensure I'll check it from time to time.
Personal address: I've had it since 1997. That said, I've got a bajillion aliases that all point to the one mailbox: advantage of hosting your own email ...and why I can never (cost-effectively) move my personal mail to gApps (et. al.). Only give my unaliased personal address to family and friends.
Work address: Changes with job, obviously. When signing up for work-related web-sites, still use personal aliases so my work address doesn't get spammed (and set up auto-forwarding rules to my work account and auto-foldering rules on my work account for those auto-forwarded emails).
"Backup" address: usually gmail - where I send things when the sender's email system is poorly set up (the spam controls on my personal address are pretty freaking aggressive ...necessary when your email address is old enough to drink).
Personal: An outlook.com email that I've used for many years. I use this to sign up for most online personal accounts.
Professional personal: My own domain email hosted through ProtonMail. I use this for most professional correspondence with employers and other developers.
Personal Gmail: Used for Google services mostly.
Professional Personal Gmail: Before I had my own domains, I used this one for professional personal things. It's still used for a few Google services.
Old university account: A .edu that I now have forwarding to the personal Gmail.
There are a few other inexplicable ones I don't use but still have access to: A Yahoo email, a few other outlook.com emails, etc.
One for work, one for personal use. One for gmail because while my personal one used to be a Google Apps account, that had to change so I'm now just redirecting it to a generic gmail address.
For anything else I use services like guerillamail to create throwaway addresses.
I also have the domain notareal.email and use addresses like norepy@ or throwaway@ on that domain when talking to people like recruitment agents, because I am clearly the funniest man alive.
Can't argue with that!
Only 2: personal and work.
Once in a blue moon, I will create an email alias which forwards to my personal account. For example, when I am trying to find out more information about a product and the only facility the site provides is a request form. Which almost certainly adds me to a spam list. Then when I'm done with the alias, I delete it. Spammers deserve bounces.
I actually never thought about using aliases as a security/privacy measure but it seems to be quite common (just had to read the replies here).
+VENDORto my work email address.Mine's probably not the recommended way, but I use my main Google account everywhere and use Live whenever I want to make another account on a service, for example, creating another Steam account. But for answering this post, here's a list of my email addresses:
And there are forgotten ones where I have no idea why I signed up in the first place:
My Gmail account used to be my main email... one day I decided I did not want to rely on Google for that kind of things and I switched to GMX (previously know as CaraMail)... dumbest move ever, ahah!
I can totally relate on the "forgotten ones", I have a few too (ProtonMail, Live and Hotmail (ah, the memories...) and probably a few more).
Similar here, all via my own vanity domain (ashbysoft.com) and front-end relay service so where my email is really hosted never gets revealed, and I can change ISP or email provider to suit me without anyone else being affected.
Has turned out to be interesting when checking on haveibeenpwned.com. Worst offender for selling my data, /then/ having an undisclosed breach was a Mac parts reseller back in '09.
Ever so often I think about creating a "personal" email account and only providing that to family and friends, but I can't remember the last time of of them sent me an email. It's all IM's these days.
I kinda like the idea of creating a "dev" account separate from my "personal" account. I did do that for my Digital Ocean account - then forgot I did it and deleted the email account from the server.
Of course, I have an email account from my employer, used for work related messaging only.
I use one and see no reason to have multiple email addresses.
Actually I think it’s better to have a different email per service! I used to have a “private “ and a “dirty” one but 1. Ends up never checking email in the dirty one as it’s too dirty 🙃 2. Not easy to “promote” a dirty website: a website that I used a dirty email for turns out to be my favorite website so they deserve to use a more serious email address.
To have that infinity of email I think the key is email alias: a different alias for each website/service.
IF You have multiple personal phone number, then you can create multiple Gmail accounts. Sometimes Google don't ask for phone number verification, It's totally up to Google.
But, If you don't have multiple personal phone number, then you can use temporary email, In this case you will get unlimited instant disposable email address for fixed amount of times.
I suggest you to, in sensitive case use Gmail and for other works you can use temp mail to use anywhere.
Private x2
Spam/useless x100000000
School x1
Definitely not enough, that's for sure.
I have 4, but I'm only using 2 of them:
I just realized that I also have an internet provider mail... I'm not even sure I've ever checked it, haha!
What's the point of making so much aliases?
Additionally:
...and it's not just data breaches you need to worry about, it's sites selling your address. When you get an email from the "wrong source" for a given destination, you can send site you actually gave the address to an email asking "did you sell my address or get hacked and not bother to tell me." Either way: a good way to know who you should continue doing business with.
Yeah, all those things made me consider doing the same (if I'm not too lazy to do so, ahah), that's actually pretty awesome, I can't believe I never thought of it.
Makes sense, thanks.
That's a hell of a thread. Love it <3
Between 10 and 20. Seriously.
Until i read your flow. I think i'm gonna reflect on it :)
4, and then a catch-all for my domain, to see what un-important sites I use that leak/sell my info.
2
Personal gmail and work.
I use the myemail+tag@gmail trick to filter most things
I should make a purely junk email address for things like rewards cards and such