Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

This is awesome, thanks for sharing it.

Before I add a third party service, I want to be reasonably sure it will stick around for a while.

But the first time some idiot sends an anonymous threat through curlmail, you'll realize you have better things to do than talk to attorneys and law enforcement, and curlmail will disappear.

I wish simple utilities like this could exist, but anonymous public services have to deal with inevitable idiots, or they won't exist for long.



> Before I add a third party service, I want to be reasonably sure it will stick around for a while.

Not entirely sure what you mean about 'add a third party service'

That said, (aside from thank you for the first bit :) ), the rest does pose a very interesting point. Not something I'd massviely considered.. spam is one thing (which rate limiting sort of solves). But not threats and such. As it stands, there are no logs, apart from those that you'd normally expect from a web server, so that probably isn't great from a legal aspect.

I guess possibly rejecting emails based on content, bad word list or similar. I _did_ implement a policy that banned IP addresses when a notification was unsubscribed from (since it was intended for the user to email themselves), but this obviously doesn't stop the initial email from being sent.

I will certainly think about this and try get something knocked up asap to try and counter this.

Thank you for your comment!


actually not having logs is a great thing for legal reasons. If you are in the USA you are not required to keep logs for a service like this so I would not keep logs if I were you so that you don't get tied up with legal issues. At worst they make you shut down your service.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: