Ask HN: How to Block Spam Mails?

4•mpaepper•21h ago

For my SaaS, a lot of fake accounts are created which seem to be automated bots from @mail.ru @bk.ru @list.ru etc domains.

Now of course I could set up a manual block list or so, but I was wondering how you are doing it?

Is there an existing service or at least a good block list that I can already use?

Thanks!

[Edited for clarity]

Comments

joey_spaztard•21h ago

For clarity:

Do you mean "I want to block incoming spam email to my email addresses" or "I operate an email mailing list and I want to block bots from joining the list" ?

mpaepper•21h ago

I mean I run a SaaS and get many fake registered users / bots.

What I did for now is:

- Added a honeypot field (invisible to users, but bots might fill it) -> if it's filled, instant reject - Added a check for spammy domains -> if it's from such a domain, instant reject

ciwolex•21h ago

This is smart. Are there scenarios you've noticed that it doesn't work?

mpaepper•21h ago

I've just added it :D

But I would guess that there will be new domains that I don't have in my blocklist and then I need to add them again and I would like to have this as a crowdsourced effort.

ATechGuy•10h ago

Honeypots may be skipped by bots. My simple solution to this is to create an input/text field in the account creation form, add a placeholder text "I am human" and ask the user to enter what they see (i.e., placeholder text). I've never received any fake/spam account since I incorporated this technique.

curious_curios•18h ago

Put your site behind cloudflare with geo and bot blocking should eliminate the vast majority of them.

mpaepper•16h ago

Yeah, Cloudflare is a good idea, that should probably help block them before even getting to the site.

Bender•17h ago

This is not an answer to your question but existing sanctions should allow you to configure your application to reject any email addresses that use the .RU TLD. Not a long term fix but may buy you time to configure restrictions on the front end whichever direction you decide to go.

Super Simple "Hallucination Traps" to detect interview cheaters

Ask HN: Freelancer? Seeking freelancer? (July 2025)

Ask HN: Who is hiring? (July 2025)

Ask HN: Who wants to be hired? (July 2025)

Ask HN: What Are You Working On? (June 2025)

Ask HN: Why there is no demand for my SaaS when competition is killing it?

Ask HN: What's the 2025 stack for a self-hosted photo library with local AI?

1KB JavaScript Demoscene Challenge Just Launched

Ask HN: Are AI Copilots Eroding Our Programming Skills?

Ask HN: Why privacy consent is NOT part of Browser setting?

Ask HN: How to Block Spam Mails?

Ask HN: Would limiting game size to 5–10 MB spur the creation of novel games?

Ask HN: 80s electronics book club; anyone remember this illustrator?

Ask HN: Anyone is an "AI Engineer"? What does your job tasks include?

Ask HN: How do I open up my side project to the world?

Ask HN: How have you shared computers with your young child (~3 to 5)

Ask HN: Which AI Dev Assistant Are You Using and Why?

Ask HN: How did low contrast text become so pervasive?

How did Soham Parekh get so many jobs?

Ask HN: Startup shutting down, should we open source?

Ask HN: Stock Android tablet free of bloatware?

LinkedIn Locked Me Out Until I Submit to Biometric ID Verification via Persona

It is not possible to install your own addon in Firefox without Moz's approval

Ask HN: Which Free Software or Open Source Project Needs Help?

Ask HN: Any updates on what is happening to io domains?

Ask HN: Who's using AI to build non-AI products?

Ask HN: Is noprocrast still working for you?

Border search safe TOTP authenticator app?

Harsh Working Environment in Japan

Ask HN: How to find developers interested in open-source concepts?

Super Simple "Hallucination Traps" to detect interview cheaters

Ask HN: Freelancer? Seeking freelancer? (July 2025)

Ask HN: Who is hiring? (July 2025)

Ask HN: Who wants to be hired? (July 2025)

Ask HN: What Are You Working On? (June 2025)

Ask HN: Why there is no demand for my SaaS when competition is killing it?

Ask HN: What's the 2025 stack for a self-hosted photo library with local AI?

1KB JavaScript Demoscene Challenge Just Launched

Ask HN: Are AI Copilots Eroding Our Programming Skills?

Ask HN: Why privacy consent is NOT part of Browser setting?

Ask HN: How to Block Spam Mails?

Ask HN: Would limiting game size to 5–10 MB spur the creation of novel games?

Ask HN: 80s electronics book club; anyone remember this illustrator?

Ask HN: Anyone is an "AI Engineer"? What does your job tasks include?

Ask HN: How do I open up my side project to the world?

Ask HN: How have you shared computers with your young child (~3 to 5)

Ask HN: Which AI Dev Assistant Are You Using and Why?

Ask HN: How did low contrast text become so pervasive?

How did Soham Parekh get so many jobs?

Ask HN: Startup shutting down, should we open source?

Ask HN: Stock Android tablet free of bloatware?

LinkedIn Locked Me Out Until I Submit to Biometric ID Verification via Persona

It is not possible to install your own addon in Firefox without Moz's approval

Ask HN: Which Free Software or Open Source Project Needs Help?

Ask HN: Any updates on what is happening to io domains?

Ask HN: Who's using AI to build non-AI products?

Ask HN: Is noprocrast still working for you?

Border search safe TOTP authenticator app?

Harsh Working Environment in Japan

Ask HN: How to find developers interested in open-source concepts?

Ask HN: How to Block Spam Mails?

Comments