Sets of configuration files for Apache (v2.2.x and v2.4.x) and Litespeed to enable various forms of bad bot blocking. Also exists as a robots.txt file in case you don't run one of those web servers (or you can't reconfigure them if you're in shared hosting). Also has instructions for Plesk and CPanel.
We've been swamped with a flood of spam for the last few months. Some losers are creating hundreds or thousands of accounts on undermoderated servers and pestering the whole fediverse with junk. Mastodon itself provides no mechanism for admins to reject statuses that contain certain strings, even though many people have begged for this over the years. And while I could learn enough Ruby on Rails to implement such a feature myself, I'm not confident that it would be accepted into the main project and I don't want to maintain a fork.
What I do have is root-level access to my instance's database, enough SQL knowledge to be dangerous, and a willingness to break things and see what happens. I put all that in a blender and some working code came out the other side.
What you're looking at is a PostgreSQL check constraint that applies a function I wrote to every status insert into the database, and rejects ones that contain text I don't ever want to store on my instance. If I try to post a toot that contains such text, I get a little "500" popup in the corner of my screen and it doesn't get sent. I'm not sure what happens if another server tries to send us a toot with that text. I'm guessing the API returns a 500, too, and it fills up their outbound queue with retries. I honestly couldn't care less. Don't send us spam, yo.
Before you apply this on your own server, read the giant warning at the top. If you don't, and you mess around with this without following the advice, you're going to be a very sad camper next time you try to restore your database. Don't panic, though. This uses normal, built-in PostgreSQL features in the normal, not-"clever" way they're meant to be used. The risk isn't to this database check specifically, but to all PostgreSQL check constraints that call user-defined functions. Like so many other database features, it's something to learn, understand, and respect.
A complete email solution for sending and receiving email. With support for IMAP4, SMTP, SPF, DKIM, DMARC, MTA-STS, DANE and DNSSEC, reputation-based and content-based junk filtering, Internationalization (IDNA), automatic TLS with ACME and Let's Encrypt, account autoconfiguration, webmail.
Use the quickstart command to set up mox for your domain(s) within 10 minutes. You'll get a secure mail server with a modern protocol stack. Upgrades are mostly a matter of downloading the new version and restarting. Maintenance via web interface (easy) or config file (powerful). No dependencies.
Github: https://github.com/mjl-/mox
The Call Attendant (callattendant) is an auto attendant with an integrated call blocker and voice messaging system running on a Raspberry Pi. It stops annoying robocalls and spammers from interrupting your life. Let the Call Attendant intercept and block robocallers and telemarketers before the first ring on your landline.
The callattendant provides international support with configurable phone number formats, with flexible and editable blocked-number and permitted-number lists.
Works with a US Robotics 5637 USB modem, not VoIP.
A large list of links to various ad-, sketchy-, spam-, and tracking blocklists in /etc/hosts format. Suitable for use with Pi-hole adblocking.
A Chrome (and related) extension that deletes Pinterest links from your web search results.
Github: https://github.com/VeikkoLehmuskorpi/no-pinterest-results
This is a small utility to test the syntax of sieve-scripts as well as check what actions a script causes given specific e-mail.
This page was originally created by Sanjay Sheth and later moved and rewritten at Fastmail. Seems to work pretty well for testing Protonmail sieves, too.
Based upon RFC 5228.
A service that allows to receive email at a temporary address that self-destructed after a certain time elapses. It is also known by names like : tempmail, 10minutemail, throwaway email, fake-mail or trash-mail. Many forums, Wi-Fi owners, websites and blogs ask visitors to register before they can view content, post comments or download something. Temp-Mail - is most advanced throwaway email service that helps you avoid spam and stay safe.
This repository contains a blacklist.txt of XMPP domains that are used by spammers and do not react to abuse complaints. Servers are added and removed according to the following rules. The track record leading to addition or removal is documented in the respective git commit.
A Dockerized service for running a disposable e-mail service. Can be personal or public. Requires MariaDB. Has an API. Also has a web front end. Requires binding port 25/tcp.
A website that can extract many different sorts of information pertaining to IP addresses and networks, least of all querying several dozen blacklists to see if an address has been flagged as a spammer's.
Harakiri Mail is an online service which allows anyone to create disposable e-mail addresses which are deleted after 24 hours. You can view the message with a web browser, walk away, and never worry about the address again. They have browser extensions which automate the process somewhat if you have great need for lots of disposable addresses.
Each disposable inbox has its own RSS feed: https://harakirimail.com/rss/username
A website that offers email addresses that are only good for ten (10) minutes at a time, though you can opt to extend their lifetime to 100 minutes if you keep refreshing it.