Hacker News: tmdetect

New comment by tmdetect in "Ask HN: What are you working on? (June 2026)"

tmdetect — Mon, 15 Jun 2026 08:26:53 +0000

Working on growing the customer base and marketing efforts for https://tempmaildetector.com. Nothing glamorous, but it's got to be done.

I did expose some interesting stats which you can find here: https://tempmaildetector.com/temp-mail-market-share

New comment by tmdetect in "Migrating from DigitalOcean to Hetzner"

tmdetect — Mon, 20 Apr 2026 14:17:08 +0000

Great read. I also recently moved everything over from DO to Hetzner for https://tempmaildetector.com across different regions*, and greatly simplified the server infra in the process. The other added benefit is that the resources available on each server are so great in comparison to DO that there’s plenty of room to grow vertically before even taking into account the additional horizontal scaling we can use thanks to the load balancing in place.

So a big win win all round. So good to see European providers are finally having their moment.

* I wish there were even more available and not sold out regions across Europe.

New comment by tmdetect in "Migrating from AWS to Hetzner"

tmdetect — Fri, 17 Oct 2025 11:31:30 +0000

+1 to running services on physical servers, OVH in my case. I'm really enjoying CI pushing to servers and having managed database provided by a 3rd party like Mongo Atlas.

New comment by tmdetect in "Ask HN: What are you working on? (October 2025)"

tmdetect — Mon, 13 Oct 2025 09:36:18 +0000

Working away at https://TempMailDetector.com, a privacy focused disposable email detection API which only requires the domain part and not the user part of the email. The service is able to determine if a domain is likely a disposable email, a forwarding service, and actively crawls for new domains.

New comment by tmdetect in "How to self-host a web font from Google Fonts"

tmdetect — Mon, 15 Sep 2025 15:56:00 +0000

I used to use Google fonts a fair amount, but why do I need to download a font when my browser/os already have a reasonable amount of good ones? Engineer aesthetic/logic maybe?

I had to go digging for it again and I've now bookmarked it, but this website/repo has some nice examples: https://modernfontstacks.com/

New comment by tmdetect in "Guy running a Google rival from his laundry room"

tmdetect — Wed, 10 Sep 2025 14:43:04 +0000

Kagi is a polished product. This is drying someones laundry.

New comment by tmdetect in "Defense.gov Now Redirects to War.gov"

tmdetect — Wed, 10 Sep 2025 11:31:22 +0000

A top contender for “not the onion”.

> Hegseth concurred with Trump's contention.

> "We changed the name after World War II from the Department of War to the Department of Defense and … we haven't won a major war since," Hegseth said.

New comment by tmdetect in "Experimenting with Local LLMs on macOS"

tmdetect — Mon, 08 Sep 2025 15:44:22 +0000

I think what you want is this: https://github.com/mlc-ai/web-llm

New comment by tmdetect in "Ask HN: Why does the US Visa application website do a port-scan of my network?"

tmdetect — Wed, 20 Aug 2025 09:44:24 +0000

Looking further

* uBlock Origin and Lite have it as an option under Filter List > Privacy > Block Outsider Intrusion into LAN

* Brave prevents it, tested with Aggressively block Trackers and Ads.

New comment by tmdetect in "Ask HN: Why does the US Visa application website do a port-scan of my network?"

tmdetect — Wed, 20 Aug 2025 08:47:44 +0000

Very interesting. Having looked at NoScript it seems like you can disable LAN as a default value under the allow tab.

New comment by tmdetect in ""Email is Easy" email address quiz"

tmdetect — Sun, 17 Aug 2025 20:26:11 +0000

Funny. I definitely knew there were some unique characteristics, but this took it to a new level.

New comment by tmdetect in "Some users report their Firefox browser is scoffing CPU power"

tmdetect — Fri, 15 Aug 2025 13:02:09 +0000

Agree, the local translation is borderline unusable. I've had to change browsers as a result.

New comment by tmdetect in "Ask HN: What are you working on? (July 2025)"

tmdetect — Mon, 28 Jul 2025 16:26:28 +0000

I appreciate your sentiment, and agree to a point. There’s a time and a place for both disposable email addresses as well as blocking apis.

Assume you offer a free trial with LLM capabilities. There’s a very real cost associated with multiple signup abuse. You can card capture or KYC, but now there’s more friction and greater loss of privacy.

New comment by tmdetect in "Ask HN: What are you working on? (July 2025)"

tmdetect — Mon, 28 Jul 2025 14:08:41 +0000

I’m working on https://tempmaildetector.com and more specifically a Wordpress plugin to support it: https://wordpress.org/plugins/temp-mail-detector-block-tempo...

The plugin offers users a way to input their own block lists, a pre-existing one, or make use of the API which is constantly getting updated.

As a first time Wordpress plugin developer, the approval process was a bit slow but it’s like that for a good reason.

New comment by tmdetect in "Google spoofed via DKIM replay attack: A technical breakdown"

tmdetect — Fri, 25 Jul 2025 12:30:56 +0000

A red flag for you yes, but your parents?

New comment by tmdetect in "Google spoofed via DKIM replay attack: A technical breakdown"

tmdetect — Fri, 25 Jul 2025 12:29:04 +0000

My advice here is pretty standard: If you get an email that requires an action, go to the website directly. Don't click any links.

It adds friction, but does solve the problem. For banking/systems, I'd much rather have the friction.

New comment by tmdetect in "Ask HN: Startup getting spammed with PayPal disputes, what should we do?"

tmdetect — Fri, 06 Jun 2025 16:05:28 +0000

I think it’s fairly clear from everyone’s comments that this is a card testing scheme. Now it’s how you respond to it that matters.

You’re essentially playing a game of cat and mouse. There’s 12 new domains added today for one provider for example [0].

Use a 3rd party api to block these (disclaimer, this is what I do) and keep layering your security. Note that I’ve seen an increase in gmail temporary email providers, so while many here will disagree, blocking plus emails and . emails is absolutely a valid tactic during this attack period.

[0] https://tempmaildetector.com/provider/temp-mail.org

New comment by tmdetect in "I'm blocking connections from AWS to my on-prem services"

tmdetect — Fri, 30 Aug 2024 13:14:35 +0000

+1 to WireGuard. For people new to it, there are some great scripts which set up and configure it for you like https://github.com/Nyr/wireguard-install

New comment by tmdetect in "Visit Bletchley Park"

tmdetect — Fri, 30 Aug 2024 13:10:13 +0000

You would think they would make the differentiation quite obvious. Thanks for the TNMOC tip.