I’m looking into getting some domains for email, so I don’t need to use the same few addresses for everything. In doing this, the domain name itself becomes the identity, but it’s also entirely arbitrary.
What is a good method to choose domain names so that they look more or less normal? Catch all addresses can of course be detected in SMTP, but the idea is just to not look suspicious. Would anyone be comfortable sharing the constructions they use? (though not the domains themselves, for obvious reasons) Should I use subdomains for the things that can safely be correlated, (as spam defense) or is it better to only use different mailboxes on one domain?
Getting a custom domain for email is smart. It’s a necessary step given how data is treated these days. The domain becomes your identifier, but it’s essentially arbitrary. I switched from sharing a single email address (which predictably led to breaches and spam) to creating dedicated emails for each service. Now, when an account gets compromised, I just redirect that email to oblivion. It’s a clean break, and a strangely revealing look at how online identities get resold and repurposed. Worth considering.