Zenith
LOG INSTART FREE
← BACK TO JOURNAL/FIELD NOTES/POST 009

An honest taxonomy
of disposable-email providers.

Catch-alls, alias forwarders, plus-tricks, and the 47 services that have lasted longer than most startups.

RI
R. Iyer
Founding Engineer
PUBLISHEDApr 03, 2026
READ TIME7 min
TOPICFIELD NOTES
FIG.04 — DISPOSABLE DOMAIN LANDSCAPE

We block 130-odd disposable-email providers by default. New ones appear every week; old ones quietly die. Over the last two years I've kept a hand-curated list and it's taught me more about the open internet than I expected.

There are roughly four classes of disposable email, and each one needs a different mitigation. Lumping them all together — as most public blocklists do — is the reason public blocklists have a false-positive rate that makes them unusable for transactional email.

The four classes

  1. Burner inboxes. tempmail, guerrillamail, mailinator. Anyone can read the inbox without authentication. Block these unconditionally.
  2. Alias forwarders. SimpleLogin, AnonAddy, Apple Hide My Email. Forward to a real inbox. Risky to block — many real users rely on them for privacy.
  3. Plus-tricks. you+something@gmail.com. Same inbox, different alias. Don't block; deduplicate on the canonical address.
  4. Catch-all domains. anything@yourcompany.com goes to one inbox. Useful for legitimate businesses; abused by spammers who buy expired domains. Block only if the domain is on a known-abusive list.

What surprised us

The half-life of a burner-inbox service is shorter than you'd guess — about 14 months for the median provider in our data. The exceptions are extreme: 10minutemail, mailinator, and yopmail have been running for over a decade and show no signs of stopping. We give those services a separate weight in our scoring.

If you maintain a disposable-email blocklist, the most useful thing you can do is split it by class. Don't ship one big regex. Ship four lists, each maintained by a different policy. Your false-positive rate will thank you.

RI
R. Iyer
Founding Engineer · INFODIVE LABS

Works on the modeling pipeline at Zenith. Maintains the disposable-domain blocklist, which is somehow a full-time hobby.

§ — KEEP READING

Related
posts.

More from the journal. New posts roughly every other week — engineering notes, product decisions, security writeups, the occasional changelog.

POST 004·FIELD NOTES
FIELD NOTES·5 min

The case against magic replies.

Why our AI-drafted replies decline to write when the spam score is above 40 — and why we should have done that from the start.

R. Iyer·Jan 22, 2026
POST 012·ENGINEERING
ENGINEERING·9 min

Anatomy of a spam score.

How seven independent classifiers vote on every form submission — and why a single model would be worse.

R. Iyer·May 14, 2026
POST 011·PRODUCT
PRODUCT·6 min

We removed our pricing page. Then we put it back, simpler.

What we learned from a month without published prices, and the four-line pricing table that replaced it.

M. Kapoor·May 02, 2026