I'd appreciate if you didn't consider Firefox Relay emails as disposable email. The Firefox folks specifically have tried to make Relay anti-abuse.
It's an unkind thing to do to your prospective users.
From Bleeping computer's coverage the last time someone tried to dump Relay in with a disposable email blocklist:
> Back in November 2021, Firefox Relay's team lead had requested the maintainer of a separate burner email list, "burner-email-providers" to exempt the particular domain form the blocklist:
> "We are operating Relay with a number of features that I think mitigate the risks that these aliases pose," Mozilla's privacy and security engineer Luke Crouch explained in November.
> Firstly, if a @mozmail.com alias is disabled by the user, any emails sent to the alias are not bounced back but instead discarded with a 404 error message returned by the service's HTTP webook, stated Crouch.
Secondly, he explained, the anti-abuse protections built into Relay limit free users to a total of five aliases, and further rate-limit premium customers so they cannot abuse the service by creating large-scale throw-away aliases for, say, automated signups to web services.
> With that reasoning, mozmail.com was swiftly removed from that blocklist. And it appears, the creators of "disposable-email-domains" have also honored the clause, for now.
Oh sorry, that's a toggle in Clerk (our auth provider), it doesn't provide granularity around which are disposable and which aren't. I'll take a look and see whether there's anything I can do short of turning off that feature.
It's an unkind thing to do to your prospective users.
From Bleeping computer's coverage the last time someone tried to dump Relay in with a disposable email blocklist:
> Back in November 2021, Firefox Relay's team lead had requested the maintainer of a separate burner email list, "burner-email-providers" to exempt the particular domain form the blocklist:
> "We are operating Relay with a number of features that I think mitigate the risks that these aliases pose," Mozilla's privacy and security engineer Luke Crouch explained in November.
> Firstly, if a @mozmail.com alias is disabled by the user, any emails sent to the alias are not bounced back but instead discarded with a 404 error message returned by the service's HTTP webook, stated Crouch.
Secondly, he explained, the anti-abuse protections built into Relay limit free users to a total of five aliases, and further rate-limit premium customers so they cannot abuse the service by creating large-scale throw-away aliases for, say, automated signups to web services.
> With that reasoning, mozmail.com was swiftly removed from that blocklist. And it appears, the creators of "disposable-email-domains" have also honored the clause, for now.