> I’ve recently launched https://idbloc.co which aims to help deal with this
Nice! I just started working on the same thing, and it would be great to be able to drop the project… except trusting a new service with your e-mail is hard. (It’s even hard to trust established names like Google or ProtonMail.) If only every service supported encrypting e-mail so providers couldn’t read it. :(
I've been working on similar project since last year as well. (I slacked a little bit -- grad school and stuff).
Too bad the SMTP protocol is limited. I was thinking of ways such a service can be designed in a provably secure way (where we don't get to actually read the messages, just apply rules based on headers only). Any thoughts?
(Actually, replace “trusting a new service” with “trusting 3+ new services” – it’s probably hosted on AWS or something, and https://idbloc.co/privacy mentions that mail is forwarded with MailGun.)
Nice! I just started working on the same thing, and it would be great to be able to drop the project… except trusting a new service with your e-mail is hard. (It’s even hard to trust established names like Google or ProtonMail.) If only every service supported encrypting e-mail so providers couldn’t read it. :(