• @Alk@lemmy.world
    link
    fedilink
    English
    07 months ago

    Yeah. Even if they couldn’t hand over recovery emails, having a personal email as a backup to a “private and sensitive” email account is bad practice.

    • @BlushedPotatoPlayers@sopuli.xyz
      link
      fedilink
      English
      07 months ago

      But what do you do if that field is needed? A throwaway address won’t work as it’s easy to recreate. Buy your own domain and run a server?

      • @Scrollone@feddit.it
        link
        fedilink
        English
        07 months ago

        No, domain names are tied to a person and, even if that person register the domain with fake person details, there will be a digital payment associated with the purchase.

      • @Alk@lemmy.world
        link
        fedilink
        English
        0
        edit-2
        7 months ago

        I don’t believe you need that field with Proton, correct me if I’m wrong. If you do need that field with an email provider, and you need complete opsec, use a different provider.

        • @shortwavesurfer@monero.town
          link
          fedilink
          English
          07 months ago

          It wasn’t a requirement when I signed up several years ago, and to my knowledge, it’s still not required now. Just as long as you keep your email and password in something like a password manager and don’t fuck it up, you’re fine.

      • /home/pineapplelover
        link
        fedilink
        English
        07 months ago

        I put the Simplelogin email alias as my backup mail. Which forwards mail to my proton, so I guess it isn’t really a backup. Even more so if you realize I need to sign into simplelogin with my protonmail account and protonmail owns Simplelogin.