Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

It’s non-standard behavior and open Gmail-users up for attacks.

This has already been discussed many times on HN.



It's per the RFC standard but it cannot be blindly followed in Gmail due to their signups issue.

Yes, they did allow A.B@gmail.com and AB@gmail.com to sign up, and each of these is mapped to a different Inbox. And an email that goes to A.B@gmail.com also goes to AB@gmail.com.

And yes, this opens Gmail users for attacks, phising amplification and much more!




Consider applying for YC's Fall 2026 batch! Applications are open till July 27.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: