search

zkemail / archive.prove.email

A repository to store historical, timestamped DKIM keys; and for anyone to upload their own. Basically https://archive.org for public key registries.
https://archive.prove.email
MIT License
4 stars 3 forks source link

Investigation of selectors that are 32 random characters #81

Open foolo opened 5 months ago

foolo commented 5 months ago

Adding some old notes about this to an issue, could be something to look at in the future

Some selector names are 32 random looking characters. Would be interesting to figure out what they are.

Yush G, [2024-04-02 08:23] I wonder if we can run builtwith on these weird hash ones and see if they all use some mailserver

foolo commented 5 months ago

I checked some of these on builtwith (just eyeballing it for different domains, e.g. https://builtwith.com/coinbase.com ) At a glance, I couldn't see any correlation between the info under "Email Hosting Providers" and whether the domain used a random 32-char-selector or not. But if we really want to dig down into it we could do some statistics with help of https://api.builtwith.com/domain-api

foolo commented 5 months ago

32_char_selectors.txt

Divide-By-0 commented 5 months ago

Given that Amazon uses it across all their domains and so does andrewconnor.com, I suspect that Amazon SES is the culprit. I see Mailchimp SPF as well on many of the domains.