• Dangers of mentioning email addresses here

    From Sean Rima@2:263/1 to All on Thu Jul 9 21:41:04 2026
    Some time ago, I posted my public ket here and someone posted back the email addresses that were linked to the key. Since then, I have been getting emails from Google Personal search, all mentioning BBS sites

    example:

    We found new results about you

    2 new search results match your name and personal info. You can make a request to have them removed from Google Search.


    Synchronet https://smtp.sestar.synchro.net/msgs/msg.ssjs?msg_sub=fido-pkeydrop&message=69 Message: Re: My New GPGP Key - The SouthEast Star - Synchronet Found 9 Jul 2026


    So if someone posts a key here, don't mention the email address. I get these emails once or twice a day, every day

    Sean


    ... TCOB1: binkd.rima.ie or bbbs.rima-iot.eu
    -+- blueMail/Linux 1.4

    --- BBBS/LiR v4.10 Toy-7
    * Origin: TCOB1 https://binkd.rima.ie (2:263/1)
  • From August Abolins@2:221/1.58 to Sean Rima on Fri Jul 10 19:02:00 2026
    Hello Sean Rima!

    ** On Thursday 09.07.26 - 21:41, Sean Rima wrote to All:

    Some time ago, I posted my public ket here and someone posted back the email addresses that were linked to the key. Since then, I have been getting emails from Google Personal search, all mentioning BBS sites

    It's not "here" that's the problem. The problem is echos that are in general open to the non-fido public, courtesy of bbses that allow unrestricted access.


    Synchronet https://smtp.sestar.synchro.net/msgs/msg.ssjs?msg_sub=fido-pkeydrop&messa ge=69 Message: Re: My New GPGP Key - The SouthEast Star - Synchronet
    Found 9 Jul 2026

    Yes.. Synchronet bbses make that easy.


    So if someone posts a key here, don't mention the email address. I get these emails once or twice a day, every day

    But note, that the public key will contain the emails (or names) in the block. So anyone can just run gpg -d <file> against it and see the same content.

    --
    ../|ug

    --- OpenXP 5.0.64
    * Origin: 0D0EB2A295204F3167EB2503CEF0E89655789589B (2:221/1.58)
  • From Sean Rima@2:263/1 to August Abolins on Sat Jul 11 12:17:44 2026
    August Abolins wrote to Sean Rima <=-

    Hello Sean Rima!

    ** On Thursday 09.07.26 - 21:41, Sean Rima wrote to All:

    Some time ago, I posted my public ket here and someone posted back
    the
    email addresses that were linked to the key. Since then, I have been
    getting emails from Google Personal search, all mentioning BBS sites

    It's not "here" that's the problem. The problem is echos that are in general open to the non-fido public, courtesy of bbses that allow unrestricted access.


    That is part of my point. We should be able to share stuff here but it seems that guest logins are undoing the safety of echomail.

    Synchronet

    https://smtp.sestar.synchro.net/msgs/msg.ssjs?msg_sub=fido-pkeydrop&messa
    ge=69 Message: Re: My New GPGP Key - The SouthEast Star - Synchronet
    Found 9 Jul 2026

    Yes.. Synchronet bbses make that easy.


    Far too easy, wish they would close it

    So if someone posts a key here, don't mention the email address. I
    get
    these emails once or twice a day, every day

    But note, that the public key will contain the emails (or names) in the block. So anyone can just run gpg -d <file> against it and see the same content.

    Not my point, email addresses are mentioned and spam follows, spammers don't have the time to go to that lenght

    Sean

    ... TCOB1: binkd.rima.ie or bbbs.rima-iot.eu

    --- BBBS/LiR v4.10 Toy-7
    * Origin: TCOB1 https://binkd.rima.ie (2:263/1)
  • From mark lewis@1:3634/12.73 to August Abolins on Sat Jul 11 07:06:28 2026

    On 2026 Jul 10 19:02:00, you wrote to Sean Rima:

    Some time ago, I posted my public ket here and someone posted back the
    email addresses that were linked to the key. Since then, I have been
    getting emails from Google Personal search, all mentioning BBS sites

    It's not "here" that's the problem. The problem is echos that are in general open to the non-fido public, courtesy of bbses that allow unrestricted access.

    "[...] that allow unrestricted _read_ access _to public echos_."
    FTFY ;)


    Synchronet
    https://smtp.sestar.synchro.net/msgs/msg.ssjs?msg_sub=fido-pkeydrop&me
    ssa ge=69 Message: Re: My New GPGP Key - The SouthEast Star -
    Synchronet Found 9 Jul 2026

    Yes.. Synchronet bbses make that easy.

    pretty much... mainly one only need to have a Guest account and enable the web server... from there it is a matter of making sure which echos (and file areas) the Guest account has read access to... one should ensure that the Guest account does not have write access, though...


    So if someone posts a key here, don't mention the email address. I get
    these emails once or twice a day, every day

    But note, that the public key will contain the emails (or names) in the block. So anyone can just run gpg -d <file> against it and see the same content.

    very true and easily done in a "scraper script"...


    )\/(ark

    "The soul of a small kitten in the body of a mighty dragon. Look on my majesty, ye mighty, and despair! Or bring me catnip. Your choice. Oooh, a shiny thing!"
    ... The US has great variety in postage stamps but they all taste the same!
    ---
    * Origin: (1:3634/12.73)
  • From mark lewis@1:3634/12.73 to Sean Rima on Sat Jul 11 08:33:02 2026

    On 2026 Jul 11 12:17:44, you wrote to August Abolins:

    But note, that the public key will contain the emails (or names) in
    the block. So anyone can just run gpg -d <file> against it and see
    the same content.

    Not my point, email addresses are mentioned and spam follows, spammers don't have the time to go to that lenght

    you might be surprised... AFAIK spammers/bot hearders operate very much like sysops... they script everything... they can easily add an additiona section to their scripts to look at the public keys, harvest the email addresses, ans store them in their lists for later use in a spamming run... it is basically no harder than writing assistance/helper macros for a terminal to do automated things like mapping the Tradewars 2000 universe...

    )\/(ark

    "The soul of a small kitten in the body of a mighty dragon. Look on my majesty, ye mighty, and despair! Or bring me catnip. Your choice. Oooh, a shiny thing!"
    ... That's what aliens are, they do alien things that are alien!
    ---
    * Origin: (1:3634/12.73)
  • From Sean Rima@2:263/1 to Mark Lewis on Sat Jul 11 14:14:02 2026
    mark lewis wrote to Sean Rima <=-

    On 2026 Jul 11 12:17:44, you wrote to August Abolins:

    But note, that the public key will contain the emails (or names) in
    the block. So anyone can just run gpg -d <file> against it and see
    the same content.

    Not my point, email addresses are mentioned and spam follows,
    spammers
    don't have the time to go to that lenght

    you might be surprised... AFAIK spammers/bot hearders operate very much like sysops... they script everything... they can easily add an
    additiona section to their scripts to look at the public keys, harvest
    the email addresses, ans store them in their lists for later use in a spamming run... it is basically no harder than writing assistance/helper macros for a terminal to do automated things like mapping the Tradewars 2000 universe...

    One of the emails that I track, was only ever used in a key that was posted here and it keeps getting emails from the Google watch thingy. I did try a remove on one email to see what would happen, nothing, Google said impossible to remove.

    I have a GPG key that I uploaded to the various servers that uses an email that is an alias, I know if I get emails to it, it will be spam :)

    Sean

    ... TCOB1: binkd.rima.ie or bbbs.rima-iot.eu

    --- BBBS/LiR v4.10 Toy-7
    * Origin: TCOB1 https://binkd.rima.ie (2:263/1)