Thread: Google screwed up my Gmail acct in Thunderbird
View Single Post
  #20  
Old September 8th 18, 06:55 AM posted to alt.windows7.general
cameo[_2_]
external usenet poster
  
Posts: 453
Default Solved: Google screwed up my Gmail acct in Thunderbird
On 9/7/2018 8:03 PM, T wrote:
On 09/07/2018 07:40 PM, cameo wrote:
On 9/7/2018 7:24 PM, T wrote:
On 09/07/2018 07:22 PM, cameo wrote:
On 9/7/2018 6:00 PM, VanguardLH wrote:
cameo wrote:

One day it popped up a message saying that my Gmail account was not
secure there and offered me a button to click to fix it.

That would not be due to an e-mail you viewed in any e-mail client
UNLESS you are so deliberately ignorant as to allow Javascript to
run in
HTML-formatted e-mails.Â* You got that message when you used Gmail's
webmail client, not when using Thunderbird.

So I did click it and ever since I can't use that email account in
Thunderbird.

Google considers any e-mail client that doesn't employ OAUTH2 to be
insecure.Â* OAUTH was never about security of content or
communiction but
about identification (of who was accessing an account).Â* Google (and
others) got involved and royally screwed up OAUTH2 to make it for
their
own ID purposes.Â* They want to track WHO is accessing an account.

One of the original collaborators, and who turned out to be the major
contributor to OAUTH, relinquished all involvement with OAUTH2 and
apologized for what Google (and Microsoft) turned it into.Â* Watch:

Â*Â* "**** OAUTH"
Â*Â* https://vimeo.com/52882780
Â*Â* (gee, I wonder why this video isn't at Google's Youtube)

Go into your Gmail account and *allow* "less secure" clients to access
your Gmail account.Â* If you are using IMAPS or POPS then your
communication is secure.Â* If you are using a *strong* password then
your
account is secure (and NEVER use the same password at multiple sites -
you should use a unique password at each site).Â* OAUTH[2] won't
improve
on that security.Â* When Google is claiming non-Google clients are less
secure, they are lying.

The fix is up in your online account.Â* You have to change the
setting to
ALLOW what Google claims (but is untrue) are insecure clients to
access
your account.

I've been in my Gmail account via the Chrome browser but can't see
where the option is to allow less secure apps.



1) log into your gMail account in a web browser

2) In a second tab, turn on Less Secure Apps
Â*Â*Â* https://support.google.com/accounts/.../6010255?hl=en

HTH,
-T

Thanks, I've got it and it fixed the problem.


You are most welcome.

One thing I still wonder about is that in some implementations I see
googlemail.com instead of gmail.com but they both seem to work. Are
those two names just pointing to the same servers?
Ads