The governance has a secret system.

This is what I use today. However spammers can easily remove the plus address to send email normally so isn’t quite so effective.

What frustrates me is so many websites strip the ‘+’ from the address, either as inline JavaScript or even worse, after submission.

Back when I used self hosted mail, I wrote an extension that requested a new alias based on the domain of the website.

Like website.net_d5g4j8@mydomain.com

If the site got compromised I would update the random characters.

I still have 800+ aliases left over from this. But after moving to hosted mail I never updated the extension.

It’s both a security announcement and advertisement.

I expect what they mean is that the credentials are encrypted only in transit

It’s got that telegram is funded by Russia, is that true?

Wikipedia says the opposite.

https://en.m.wikipedia.org/wiki/Telegram_(software)

Telegram was launched in 2013 by the brothers Nikolai and Pavel Durov. Previously, the pair founded the Russian social network VK, which they left in 2014, saying it had been taken over by the government. Pavel sold his remaining stake in VK and left Russia after resisting government pressure.

But spoofing doesn’t allow a 2 way conversation. Confirming the email should be enough

Why isn’t FTP secure

They aren’t mandatory as there is a free option