I hear what you are saying. But our society is pretty fucked up if you "deserve" something bad because you bought a product without imaging how the manufacturer can make it worse in the future.
The owners should be able to return the product if something like this happens, no matter how long ago they bought it.
Reverse DNS is different than static IP.
But yes for outbound email, if you can't control reverse DNS you will have pain. (Inbound is totally fine) You can in theory just use whatever hostname the ISP's reverse DNS resolves to however you will get some spam score (or be rejected) as it doesn't match your "from" domain.
Outbound email is a huge pain really no matter what. Unless you have a long-term lease on the IP and it isn't in a bad network you really have to pay someone else if you want reliable delivery.
Yeah, it is very important to consider how dependant you are on third parties. At the very least the more dependence the more power they have over you. But also how screwed you are if they just go under.
Yeah, I finally pulled the trigger and moved to my own domain from matrix.org. Man, it is just so much faster. Which is sad, because the performance is pretty bad. (Element Web seems to do some per-room request as part of the initial loading screen which is obviously not scalable) but getting off of matrix.org is a huge performance improvement.
That being said there is nothing really wrong with matrix.org. The problem is really public rooms. People will join and spam. It is true of any protocol (have you heard about email?) but Matrix definitely needs to (and they are slowly working on) make it more expensive for spammers.
Its a problem but it isn't a major problem. I am using rspamd without any sort of exotic configuration (basically just enabling things that are provided, not my own rules) and I only get a few spam messages leaking through a week. Maybe slightly worse than GMail but not considerably slow.
IMHO the only real missing thing out of the box is contacts checking. Which is a huge thing because it is great to have reliable delivery from contacts. But my false-positive ratio is so low anyways that it isn't a big issue and things like the known_senders module mostly mitigates it.
Yes, blocking port 25 outbound is incredibly common by default. Even on some server connections. It is probably better overall for exactly the reasons that you mentioned.
Or just don’t self-host email
IMHO this is a bit overblown. Hosting inbound is fairly easy. Mail senders (probably for the worst) are very forgiving even if your TLS cert is expired you will probably get mail. Plus senders are supposed to retry for days if you have downtime.
However it is unfortunately true that due to spam sending is a huge pain because IPv4 reputation is a huge component. Sure you can get GMail to trust your domain after a month or so of sending if you have decent volume. But other providers who you may mail once a year are just going to go off of IP reputation. However email was basically designed for forwarding and you can use a service like AWS SES to forward your email from a trusted IP pretty easily. If you are low volume (like personal mail) there are tons of services that will do this for free.
But holy shit a marvel of marketing. Better be a case study in business school. They had little to no actual implementation for years and years but are still the go-to name for autonomous driving and selling subscriptions to something that doesn't exist. Absolutely wild.
This is one of those things that must have been an absolute shit thing to discover the first time. Sure now we are ready and can prepare. But having to diagnose and improvise a solution would not be pleasant.
This is the advantage of decentralization over federation. IMHO the fact that Lemmy is only federated really hurts it. Not so much for user accounts (in theory these can be backed up restored and moved. Not ideal but not awful) but in that communities are tied to servers. When the server a community is on goes away it is hugely damaging to that community.
The owner of the domain owns DKIM. It offers no protection against that.
The only actual protection would be PGP because it provides your key as an identity rather than the domain itself.
The purchaser of that domain will be able to send and receive email from your addresses.
The biggest concerns here are probably:
While Amazon is awful it isn't just them. It is a systematic issue with our economic system. Our society constantly makes efforts to keep the poor poor so that they are forced to work for low pay resulting in a cycle of abuse. Basically every public company will end up in the same situation and we see that with every large company. If a large public company isn't shit the CEO will be fired by the shareholders and replaced with one who makes the company shit.
So yes, avoid Amazon, but also talk to your government representatives. The cycle will always continue until the incentives are changed. To properly exit this shit system we need to change our society and government.