6 votesStéphane Gourichon supported this idea ·Stéphane Gourichon shared this idea ·
1,413 votesStéphane Gourichon commented
# Failure and success of the suffix idea
## Failure of email@example.com option
I agree with Troy here, I see no clean easy handling of + suffix.
For example, whitelisting "providers known to use +syntax" obviously fails with independent sites.
Actually, the suffix trick is really (and should be) an implementation detail, not something that can be detected and handled.
For anyone not convinced you have to know that the character triggering suffix behavior is not standardized. In postfix for example you can set whatever character you want.
And indeed I chose an alternate character because of so many braindead sites that forbid the + character when registering.
## Success of the *@mydomain.org or *@mysubdomain.majorprovider.com option
If the e-mail provider really allows you a full subdomain, you can receive mail at e.g. firstname.lastname@example.org or one of the other options, then just use HIBP Domain Search!
Now, where is the form to register for domain notification?
The feature is mentioned on https://haveibeenpwned.uservoice.com/forums/275398-general/suggestions/15109419-include-email-addresses-or-some-info-for-domain yet not seen on main site.
Thank you for any hint.