There is the diceware method to make passwords random and strong to crack. But is it advisable to use this method to make random names for email addresses? That is the concern I have, when a person makes a random email address, they inevitably introduce things with which they can be identified, breaking the previously stated randomness, what ways are there to avoid this?

  • Darorad@lemmy.world
    link
    fedilink
    arrow-up
    18
    ·
    2 months ago

    Are these emails you need to memorize? Diceware would work.

    Otherwise I’d just use something like simplelogin and just have it automatically generate one. Then just save it in your password manager.

      • pe1uca
        link
        fedilink
        arrow-up
        1
        ·
        2 months ago

        Use a password manager and it’ll memorize them for you.

        Also probably the simple login route can work. I mean, I use annonaddy and at least there it has a description for each email, so I can open the site and see for what the address was created (this is transparent on my side since I use bitwarden which adds that description automatically when I use the app or extension to generate one for me)

  • sloppy_diffuser@sh.itjust.works
    link
    fedilink
    English
    arrow-up
    9
    ·
    edit-2
    2 months ago

    There is anonymity and pseudonymity.

    Do you need your opsec to be resistant to state-level actors (oppressive regime, censorship, illegal activities)? Well then you need to make sure you don’t introduce anything that will deanonomize you.

    Are you trying to be resistant to mass data collection efforts used for profit? Being on the pseudonymity spectrum is a good step.

    Dealing with the latter is like dealing with a bully. Make it not worth their time. They just want to put you in bucket X so they can estimate the most likely way to influence you for reason Y. Pseudonymity is about having multiple aliases that get put into different buckets so their privacy invasive efforts are less effective.

  • TheOubliette@lemmy.ml
    link
    fedilink
    arrow-up
    3
    ·
    2 months ago

    That is a good idea just so that you don’t have to think about any potential privacy issues. Your email could be {firstword}{secondword}{4 numbers} and so long as the words and numbers are randomly generated, you can avoid accidentally including personal references or biases.

    Your username does not need to be high-entropy, though. It will be semi-public. So it’s not about strength against dictionary attack or similar, it is just about leaving the selection process up to a random process that isn’t witnessed by a third party. You can write scripts that will generate these kinds of things using Python and the faker library.

  • plinky [he/him]@hexbear.net
    link
    fedilink
    English
    arrow-up
    2
    ·
    2 months ago

    like why do you need email addresses? use temp mail for garbage registrations and two-three stationary emails which you remember for stuff which is linked anyway

  • dwraf_of_ignorance@programming.dev
    link
    fedilink
    arrow-up
    2
    ·
    2 months ago

    For me I use ddg email aliases with bitwarden. It’s great and free. I tried others but ddg works great but doesn’t have any of the bells and whistles.