Hey all. This happened yesterday, should have posted these here, sorry. Following up today with a full report which I’ll post here.
4 Likes
2 Likes
This sucks and I’m sure you feel awful about it. I haven’t viewed my email address as a private resource for a long time, and for your newsletter I use a Feedbin masked email address anyway. Thanks for the full disclosure. I think no less of JD.
6 Likes
Agreed…
2 Likes
+1! I too think no less of JD!
1 Like
As they say, E Coli happens. I wish other companies would be as open and as quick as JD. I use alias email addresses. No hard feelings at all.
3 Likes
Thanks, everyone. The response to my email has been amazing and heartwarming.
4 Likes
I echo the above sentiments and am impressed at the integrity which you’ve shown in the way that you’ve handled this. I long ago started using unique Duck addresses for each thing that I sign up for, so no data of value in my case. Please don’t be too discouraged over this incident.
1 Like
Thanks for letting us know. My email address got leaked when Experian got hacked a few years ago. I do now use Duck addresses when I remember. Thanks for being so honest.
1 Like
Thanks for the report and notification."
”fortunately” this address is already in every database. but it’s gmail and i don’t use it for anything “important”. so anything banking related i’m getting is obviously spam.
and for banks and stuff i use individiual addresses like icbc+46283@myowndomain.ext
1 Like
Thanks for being so quick to notify us. No harm, no foul, I don’t use my personal email for anything other than personal friends.
1 Like
Which email address? I use different ones for JDHQ and for this forum. I assumed you meant the JDHQ email so I changed my primary email for JDHQ.
1 Like
No worries. Thanks for the heads up.
1 Like
No worries, JD! The way you handled it should be a template for others to follow. I reserve all my ire for the bottom-feeders scraping GitHub and the corporations who sell my info for profit.
1 Like
We’re going to start doing this. I have done, in the past, but found it too much of a PITA when I later wanted to email out from that address. For a support issue or whatever.
Seems the 1Password + Fastmail integration should solve that, so we’re going to have a look at that. And if we’re going to help ‘normal people’ do this, it has to be the path of least resistance.
1 Like
fortunately i have only a couple of important accounts like that. one bank, one ISP, 2 email accounts, etc. anthing that could be painful and/or expensive when lost.
A bit ironic that I switched from a throw away address to a “real one” for JD last year. But sh… happens. 
Thank you for being open about it and the good post mortem writeup. 
1 Like
@johnnydecimal It takes courage and integrity to be this transparent and open about your own mistakes. Thank you.
1 Like
I just replied to your email (I am as usual very late in responding) but wanted to add since you mentioned Fastmail: if you’re using your own domain with Fastmail, it’s very easy to use arbitrary plus addresses without needing to set them up beforehand, no other integrations needed. But if you’re also using 1Password, that integration does give you an alternative way to add aliases on the fly and save them in 1Password at the same time.
Fastmail DOES allow you to send from any email in your domain using the catch-all persona. Unfortunately many other services, including mailbox.org and Proton Mail only allow a fixed number of aliases to be able to send from. This might lock you in, in the future.
Another way to achieve something similar is the addy.io service. You can create a username (for free) and create unlimited addresses from there. For example I could use jdhq@myusername.anonaddy.com for JDHQ or amazon@myusername.anonaddy.com for my Amazon account. You can reply to any received email through their service.