When I register dropped domain names, I tend to use catch all email initially, so as to provide a basic filter for possible future use, mainly to be spam aware. I don't know if anyone else bothers with this side of things, but it also highlights a glaring hole from a security or privacy perspective. One domain I nabbed in the past few months is frankly frightening. I swear I know far too much about this guy, and could quite easily gain access to a number of accounts with well known internet organisations who offer simple 'forgotten password' facilities. It also makes you aware of the problems for yourself in the future. I'll bet quite a few of you have multiple email addresses tied to a small number of domains (maybe just one domain) that you own. If you kicked the bucket tomorrow, you'd want to be sure these particular domains are made aware to your family, as it's not a genie they can easily put back in the bottle once someone else has the domain.