People need to validate email format properly

When I had my own email server I used to have one alias for every account I made. This made things so much easier since I could simply delete one alias or change it if I started getting spam on one of them (Usually meaning that the website where I used it either sold their database or got hacked). About a year ago I started to realize that life is catching up on me, things are changing and I’m getting less and less time to spend on maintaining my server and everything around it. Thus I decided to slowly take down the services I was running on my VPS (Linode and Digitalocean. Great VPS hosts).

Now that I have finished this process and removed all my services, I needed a new way to create email aliases. That was when I discovered that Gmail has a sort of pretty nifty aliases that you can use.

https://support.google.com/mail/answer/12096?hl=en

So knowing this I started to replace the email address on all my important account using this system. Which means I used username+alias@gmail.com. Pretty darn useful if you ask me. However, I started to notice pretty quickly that these alias wont work everywhere, far from it actually. The plus character in the address would be caught by different verification processes on the websites where I tried to use the address.

The problem with these verification scripts is that they are so strict, too strict. They very often only allow A-Z, a-z, maybe and underscore and then the @domain.tld. Basically a valid email address is one you can send an email too (and is often seen as the best way to actually verify if the address is valid or not) but there are of course long and complex regular expressions for those that want to actually verify it correctly.

(?:(?:rn)?[ t])*(?:(?:(?:[^()<>@,;:\”.[] 00-31]+(?:(?:(?:rn)?[ t])+|Z|(?=[[“()<>@,;:\”.[]]))|”(?:[^”r\]|\.|(?:(?:rn)?[ t]))*”(?:(?:rn)?[ t])*)(?:.(?:(?:rn)?[ t])*(?:[^()<>@,;:\”.[] 00-31]+(?:(?:(?:rn)?[ t])+|Z|(?=[[“()<>@,;:\”.[]]))|”(?:[^”r\]|\.|(?:(?:rn)?[ t]))*”(?:(?:rn)?[ t])*))*@(?:(?:rn)?[ t])*(?:[^()<>@,;:\”.[] 00-31]+(?:(?:(?:rn)?[ t])+|Z|(?=[[“()<>@,;:\”.[]]))|[([^[]r\]|\.)*](?:(?:rn)?[ t])*)(?:.(?:(?:rn)?[ t])*(?:[^()<>@,;:\”.[] 00-31]+(?:(?:(?:rn)?[ t])+|Z|(?=[[“()<>@,;:\”.[]]))|[([^[]r\]|\.)*](?:(?:rn)?[ t])*))*|(?:[^()<>@,;:\”.[] 00-31]+(?:(?:(?:rn)?[ t])+|Z|(?=[[“()<>@,;:\”.[]]))|”(?:[^”r\]|\.|(?:(?:rn)?[ t]))*”(?:(?:rn)?[ t])*)*<(?:(?:rn)?[ t])*(?:@(?:[^()<>@,;:\”.[] 00-31]+(?:(?:(?:rn)?[ t])+|Z|(?=[[“()<>@,;:\”.[]]))|[([^[]r\]|\.)*](?:(?:rn)?[ t])*)(?:.(?:(?:rn)?[ t])*(?:[^()<>@,;:\”.[] 00-31]+(?:(?:(?:rn)?[ t])+|Z|(?=[[“()<>@,;:\”.[]]))|[([^[]r\]|\.)*](?:(?:rn)?[ t])*))*(?:,@(?:(?:rn)?[ t])*(?:[^()<>@,;:\”.[] 00-31]+(?:(?:(?:rn)?[ t])+|Z|(?=[[“()<>@,;:\”.[]]))|[([^[]r\]|\.)*](?:(?:rn)?[ t])*)(?:.(?:(?:rn)?[ t])*(?:[^()<>@,;:\”.[] 00-31]+(?:(?:(?:rn)?[ t])+|Z|(?=[[“()<>@,;:\”.[]]))|[([^[]r\]|\.)*](?:(?:rn)?[ t])*))*)*:(?:(?:rn)?[ t])*)?(?:[^()<>@,;:\”.[] 00-31]+(?:(?:(?:rn)?[ t])+|Z|(?=[[“()<>@,;:\”.[]]))|”(?:[^”r\]|\.|(?:(?:rn)?[ t]))*”(?:(?:rn)?[ t])*)(?:.(?:(?:rn)?[ t])*(?:[^()<>@,;:\”.[] 00-31]+(?:(?:(?:rn)?[ t])+|Z|(?=[[“()<>@,;:\”.[]]))|”(?:[^”r\]|\.|(?:(?:rn)?[ t]))*”(?:(?:rn)?[ t])*))*@(?:(?:rn)?[ t])*(?:[^()<>@,;:\”.[] 00-31]+(?:(?:(?:rn)?[ t])+|Z|(?=[[“()<>@,;:\”.[]]))|[([^[]r\]|\.)*](?:(?:rn)?[ t])*)(?:.(?:(?:rn)?[ t])*(?:[^()<>@,;:\”.[] 00-31]+(?:(?:(?:rn)?[ t])+|Z|(?=[[“()<>@,;:\”.[]]))|[([^[]r\]|\.)*](?:(?:rn)?[ t])*))*>(?:(?:rn)?[ t])*)|(?:[^()<>@,;:\”.[] 00-31]+(?:(?:(?:rn)?[ t])+|Z|(?=[[“()<>@,;:\”.[]]))|”(?:[^”r\]|\.|(?:(?:rn)?[ t]))*”(?:(?:rn)?[ t])*)*:(?:(?:rn)?[ t])*(?:(?:(?:[^()<>@,;:\”.[] 00-31]+(?:(?:(?:rn)?[ t])+|Z|(?=[[“()<>@,;:\”.[]]))|”(?:[^”r\]|\.|(?:(?:rn)?[ t]))*”(?:(?:rn)?[ t])*)(?:.(?:(?:rn)?[ t])*(?:[^()<>@,;:\”.[] 00-31]+(?:(?:(?:rn)?[ t])+|Z|(?=[[“()<>@,;:\”.[]]))|”(?:[^”r\]|\.|(?:(?:rn)?[ t]))*”(?:(?:rn)?[ t])*))*@(?:(?:rn)?[ t])*(?:[^()<>@,;:\”.[] 00-31]+(?:(?:(?:rn)?[ t])+|Z|(?=[[“()<>@,;:\”.[]]))|[([^[]r\]|\.)*](?:(?:rn)?[ t])*)(?:.(?:(?:rn)?[ t])*(?:[^()<>@,;:\”.[] 00-31]+(?:(?:(?:rn)?[ t])+|Z|(?=[[“()<>@,;:\”.[]]))|[([^[]r\]|\.)*](?:(?:rn)?[ t])*))*|(?:[^()<>@,;:\”.[] 00-31]+(?:(?:(?:rn)?[ t])+|Z|(?=[[“()<>@,;:\”.[]]))|”(?:[^”r\]|\.|(?:(?:rn)?[ t]))*”(?:(?:rn)?[ t])*)*<(?:(?:rn)?[ t])*(?:@(?:[^()<>@,;:\”.[] 00-31]+(?:(?:(?:rn)?[ t])+|Z|(?=[[“()<>@,;:\”.[]]))|[([^[]r\]|\.)*](?:(?:rn)?[ t])*)(?:.(?:(?:rn)?[ t])*(?:[^()<>@,;:\”.[] 00-31]+(?:(?:(?:rn)?[ t])+|Z|(?=[[“()<>@,;:\”.[]]))|[([^[]r\]|\.)*](?:(?:rn)?[ t])*))*(?:,@(?:(?:rn)?[ t])*(?:[^()<>@,;:\”.[] 00-31]+(?:(?:(?:rn)?[ t])+|Z|(?=[[“()<>@,;:\”.[]]))|[([^[]r\]|\.)*](?:(?:rn)?[ t])*)(?:.(?:(?:rn)?[ t])*(?:[^()<>@,;:\”.[] 00-31]+(?:(?:(?:rn)?[ t])+|Z|(?=[[“()<>@,;:\”.[]]))|[([^[]r\]|\.)*](?:(?:rn)?[ t])*))*)*:(?:(?:rn)?[ t])*)?(?:[^()<>@,;:\”.[] 00-31]+(?:(?:(?:rn)?[ t])+|Z|(?=[[“()<>@,;:\”.[]]))|”(?:[^”r\]|\.|(?:(?:rn)?[ t]))*”(?:(?:rn)?[ t])*)(?:.(?:(?:rn)?[ t])*(?:[^()<>@,;:\”.[] 00-31]+(?:(?:(?:rn)?[ t])+|Z|(?=[[“()<>@,;:\”.[]]))|”(?:[^”r\]|\.|(?:(?:rn)?[ t]))*”(?:(?:rn)?[ t])*))*@(?:(?:rn)?[ t])*(?:[^()<>@,;:\”.[] 00-31]+(?:(?:(?:rn)?[ t])+|Z|(?=[[“()<>@,;:\”.[]]))|[([^[]r\]|\.)*](?:(?:rn)?[ t])*)(?:.(?:(?:rn)?[ t])*(?:[^()<>@,;:\”.[] 00-31]+(?:(?:(?:rn)?[ t])+|Z|(?=[[“()<>@,;:\”.[]]))|[([^[]r\]|\.)*](?:(?:rn)?[ t])*))*>(?:(?:rn)?[ t])*)(?:,s*(?:(?:[^()<>@,;:\”.[] 00-31]+(?:(?:(?:rn)?[ t])+|Z|(?=[[“()<>@,;:\”.[]]))|”(?:[^”r\]|\.|(?:(?:rn)?[ t]))*”(?:(?:rn)?[ t])*)(?:.(?:(?:rn)?[ t])*(?:[^()<>@,;:\”.[] 00-31]+(?:(?:(?:rn)?[ t])+|Z|(?=[[“()<>@,;:\”.[]]))|”(?:[^”r\]|\.|(?:(?:rn)?[ t]))*”(?:(?:rn)?[ t])*))*@(?:(?:rn)?[ t])*(?:[^()<>@,;:\”.[] 00-31]+(?:(?:(?:rn)?[ t])+|Z|(?=[[“()<>@,;:\”.[]]))|[([^[]r\]|\.)*](?:(?:rn)?[ t])*)(?:.(?:(?:rn)?[ t])*(?:[^()<>@,;:\”.[] 00-31]+(?:(?:(?:rn)?[ t])+|Z|(?=[[“()<>@,;:\”.[]]))|[([^[]r\]|\.)*](?:(?:rn)?[ t])*))*|(?:[^()<>@,;:\”.[] 00-31]+(?:(?:(?:rn)?[ t])+|Z|(?=[[“()<>@,;:\”.[]]))|”(?:[^”r\]|\.|(?:(?:rn)?[ t]))*”(?:(?:rn)?[ t])*)*<(?:(?:rn)?[ t])*(?:@(?:[^()<>@,;:\”.[] 00-31]+(?:(?:(?:rn)?[ t])+|Z|(?=[[“()<>@,;:\”.[]]))|[([^[]r\]|\.)*](?:(?:rn)?[ t])*)(?:.(?:(?:rn)?[ t])*(?:[^()<>@,;:\”.[] 00-31]+(?:(?:(?:rn)?[ t])+|Z|(?=[[“()<>@,;:\”.[]]))|[([^[]r\]|\.)*](?:(?:rn)?[ t])*))*(?:,@(?:(?:rn)?[ t])*(?:[^()<>@,;:\”.[] 00-31]+(?:(?:(?:rn)?[ t])+|Z|(?=[[“()<>@,;:\”.[]]))|[([^[]r\]|\.)*](?:(?:rn)?[ t])*)(?:.(?:(?:rn)?[ t])*(?:[^()<>@,;:\”.[] 00-31]+(?:(?:(?:rn)?[ t])+|Z|(?=[[“()<>@,;:\”.[]]))|[([^[]r\]|\.)*](?:(?:rn)?[ t])*))*)*:(?:(?:rn)?[ t])*)?(?:[^()<>@,;:\”.[] 00-31]+(?:(?:(?:rn)?[ t])+|Z|(?=[[“()<>@,;:\”.[]]))|”(?:[^”r\]|\.|(?:(?:rn)?[ t]))*”(?:(?:rn)?[ t])*)(?:.(?:(?:rn)?[ t])*(?:[^()<>@,;:\”.[] 00-31]+(?:(?:(?:rn)?[ t])+|Z|(?=[[“()<>@,;:\”.[]]))|”(?:[^”r\]|\.|(?:(?:rn)?[ t]))*”(?:(?:rn)?[ t])*))*@(?:(?:rn)?[ t])*(?:[^()<>@,;:\”.[] 00-31]+(?:(?:(?:rn)?[ t])+|Z|(?=[[“()<>@,;:\”.[]]))|[([^[]r\]|\.)*](?:(?:rn)?[ t])*)(?:.(?:(?:rn)?[ t])*(?:[^()<>@,;:\”.[] 00-31]+(?:(?:(?:rn)?[ t])+|Z|(?=[[“()<>@,;:\”.[]]))|[([^[]r\]|\.)*](?:(?:rn)?[ t])*))*>(?:(?:rn)?[ t])*))*)?;s*)

http://stackoverflow.com/questions/20771794/mailrfc822address-regex

https://tools.ietf.org/html/rfc5322#section-3.4

So, to combat this terrible problem, I have decided to shame the websites that are doing this. I will post screenshots of the problem here, link the website and then quote their answer on the problem. If they fix it they will get a green little mark, orange if they promise to do it but haven’t done it yet, and lastly red if they won’t fix it or haven’t done so within a month after contact.

First of is https://www.tradera.com. The profile email address is not validated properly.

 

Update: Tradera has been contacted and I was advised to send the complaint to their dev team, which I had. Now waiting response so this issue is [Pending].

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google+ photo

You are commenting using your Google+ account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

This site uses Akismet to reduce spam. Learn how your comment data is processed.