codekj / disify Goto Github PK

Hi !
Thank you for the great job you did there :)

The context: yesterday you have returned as non valid this domain => "@live.com.mx"
But today I tried it again and it was accepted (and you are right, it should be).

So my question is => when are you updating your database and how ?

Please excuse my ignorance.

When I check emails having common domains, such as @gmail.com, @yahoo.com, @mail.com, etc., I see your API returns a "whitelist" parameter. I cannot find any reference to this. What is the purpose of this return parameter?

Hi,

My company been using disify in production to validate email address. We got a user from theargyllclub.com getting blocked, and disify thinks it's a disposable email address, but we're pretty sure it's not. The domain isn't in your blacklist so I can't submit a request on the site.

{
"format": true,
"domain": "theargyllclub.com",
"disposable": true,
"dns": true
}

Thanks for this great service! Is there any chance to get the whitelist you are using?

Short list of well known mail providers.

gmail.com
hotmail.com
yahoo.com
outlook.com
aol.com
yahoo.com.br
bol.com.br
hotmail.co.uk
mail.com
live.com
icloud.com

Note, there are exclusions on whitelist too, for example, email address will be marked as disposable if account name contains:

tmp+
+tmp
tmp.
.tmp
dot symbol count is >= 6

This is implemented to somewhat counter temporary emails coming from gmail.

I am trying to finish new api version, there will be additional options for whitegmail.com
hotmail.com
yahoo.com
outlook.com
aol.com
yahoo.com.br
bol.com.br
hotmail.co.uk
mail.com
live.com
icloud.comlist and exclusions.

Originally posted by @CodeKJ in #21 (comment)

Hi !
Currently the domain "gmx.com" is listed as disposable but should not be I think.
The process to create an email on this mail service is more than normal (requiring a name a password etc...).

Can you take a look to remove this from your "disposable" list ?

Thank you for your work.

Hi !
Could be great to have an updated date for these lists. Just to know if still updated and what is last entries.
Also, I read somewhere you have created a personal space with API Key where we can get some stats. Is it true and where we can found it ?

Thank you so much for you work !

Hello everyone!

I would like to announce upcoming changes to API. In upcoming month or two site will be updated with new functionality and core framework will be changed.

Don't worry, existing API structure will remain the same and its not mandatory to update your current API requests - more data might be available in responses, but from request side you are not forced to change anything. No downtime is expected, however, please follow this thread for updates.

New site and API version will include following changes and improvements:

• Massive update on blacklisted MX records [UPDATE]
  Current MX blacklist (here) contains around 450 records. However, I have checked all our currently blacklisted domains (around 40,000) and their corresponding MX records and new MX blacklist currently has more than 3,000 records. I have already removed some of false-positive ones from most popular providers (more than 100), but I would appreciate any help for identifying more false MX records currently listed which are actually valid and non-disposable. Here are available new MX blacklist. Please post corrections here or in Gist comments - will appreciate any contribution, thank you!

• Improved detection of disposable emails [UPDATE]
  Emails which are not listed in our internal blacklists (domains, mx). There are often providers with healthy MX records and frequently changing domains which we can't blacklist so easily. However, some of them usually have repeated pattern on email usernames. I have implemented prediction mechanism for some of these providers, and it can be easily extended in future. Of course, this detection won't work if you just check domains instead of full email address.

• Email username scoring [NEW]
  With this feature you will be able to see likelihood score (0 to 100) of real emails. It works by checking if email username contains real names, surnames, nicknames, years and numeration combinations. Unrecognized words and random string usernames will return very low score.

• MX record value output [NEW]
  Responses will include MX host-names and values (if any).

• Username output [NEW]
  Responses will include email username part (if any).

• Malicious IP and location check [NEW]
  New endpoint will be available to check IP addresses. I have sourced database with more than 200,000 malicious IPs (updated on daily bases). If IP will be detected as malicious, API response will include amount of blacklists its been listed. You could then use this blacklist count on your side to decide on further actions if it exceeds some threshold. All responses will additionally include IP location - country, city and coordinates.

• Account registration [NEW]
  You will have possibility to create account and use API key for some additional features, such as - analytics, statistics, request throttle increase, more data available in responses, SMTP validation (currently experimental). Even more features will be available in future for registered accounts.

Also, you might have noticed there are now available dedicated documentation page for all API requests. All newest API changes and features will be posted there.

If you have any questions or recommendations regarding updates feel free to reply. And again, I would really appreciate help for identifying false-positive MX records in new blacklist, thank you!

Thank you for providing this API.
Is There any API to get full list of blocked domain ?, we would like to get the list of blocked email domain so that we can validate email from our own instead of calling this API for all email validation.

https://disify.com/blacklist/domains

This list is missing following domains:
nthrl.com
nthrw.com
bvhrk.com

Hi !
Got an issue today of an email getting a disposable = true (with no specific reasons, it's a personal domain of a customer).
But when trying to "request" removal I got a message => "This domain is not in our blacklists!"
Seems it is, because disposable is set to true for it :/

Any idea why ?

Title is self explanatory. I am unable to submit domains for blacklisting because they have no A/AAAA records, and only return MX records instead. For example emailtown.club, a temporary email available at https://www.mohmal.com/en/inbox

Thanks for maintaining this great project for free :)

Currently, disposable emails from temp-mail.org aren't detected. If you could update the list of domains from https://web1.temp-mail.org/request/domains/format/json and https://api.internal.temp-mail.io/api/v2/domains, that would be great.

Are the e-mail addresses that are sent in, stored anywhere? Is there any type of terms and conditions users of your API are agreeing to?

I must say nice idea!

Some Ideas for you;

A Scammer Email list
A Spam Email list

Hi,

I'm using your public domain and MX blacklists (thanks by the way) to check for disposable email.

I'm having a problem with services like https://temp-mail.org/ because they change their MX records regularly. I see that your API correctly catches them but given that they aren't in your public domain and MX lists I don't understand how?

Any help much appreciated.

Hi,

My company been using disify in production to validate email address. We got a user from theargyllclub.com getting blocked, and disify thinks it's a disposable email address, but we're pretty sure it's not. The domain isn't in your blacklist so I can't submit a request on the site.

{
"format": true,
"domain": "theargyllclub.com",
"disposable": true,
"dns": true
}

Hello, thank you for creating & sharing this amazing project. It works way better than paid alternatives IMO. One of the projects we use receives spam attacks. Attackers usually use the googlemail.com domain. The accounts use dots (.) and Disify does not mark them. Any chance for you to mark the googlemail.com domain as well?

I found the following disposable domains being operated by Abine. Please add them to your MX blacklist:

smtp7.opayq.com
plato.junkemailfilter.com
mx.junkemailfilter.net
mx.junkemailfilter.org

Some of the domains that use these MX records are used by moremobileprivacy.com, nowbuzzoff.com, beconfidential.com, dontrackme.com, opayq.com.

email: [email protected]
This is valid email address!
{
"format": true,
"domain": "firemailbox.club",
"disposable": false,
"dns": true
}
but when SUBMIT NEW EMAIL:
This domain has been already submitted!

One of our customers would like to register but we get a disposable: true message.

After checking the IP we found that this IP is listed:
46.38.249.163

He is using this for his personal E-Mails could you please remove it?

Thank you

In gmail, an email address could contain a plus sign like [email protected]. This would in fact be the same email address as [email protected].

Could we perhaps get a flag for this in the output as well?

Hi,

One of our clients reported that their client email address is in the disposable email list. Can you remove it? The domain name is:

selecta.com

Hi. I love what you've built. I would love to know the stack that you've used to build it.
Also, do you suggest its usage on a production app