Windows Live Mail a less secure app?

Have been trying for 2 days to set up Windows Live Mail for my Gmail account
and continually getting username/password failure.
More by accident than anything else discovered that Gmail considers WLM a
"less secure app" and blocks access to it, enabling "allow less secure apps"
in Gmail settings it's now working as it should.
Why does Gmail consider WLM less secure, am I really taking any risk using
it this way or is this Google's way of discouraging use of MS programs?
Why was WLM telling me it was a username/password problem when it wasn't?

Kenny

Just received this:

"Hi Kenny,
You recently changed your security settings so that your Google Account []
is no longer protected by modern security standards.
If you did not make this change
Please review your Account Activity page at
https://security.google.com/settings/security/activity to see if anything
looks suspicious. Whoever made the change knows your password; we recommend
that you change it right away.
If you made this change
Please be aware that it is now easier for an attacker to break into your
account. You can make your account safer again by undoing this change at
https://www.google.com/settings/security/lesssecureapps then switching to
apps made by Google such as Gmail to access your account."

If I do as they advise it means I won't be able to use WLM for Gmail at all!


Yours sincerely,
The Google Accounts team

"Kenny" wrote in message
...

Have been trying for 2 days to set up Windows Live Mail for my Gmail account
and continually getting username/password failure.
More by accident than anything else discovered that Gmail considers WLM a
"less secure app" and blocks access to it, enabling "allow less secure apps"
in Gmail settings it's now working as it should.
Why does Gmail consider WLM less secure, am I really taking any risk using
it this way or is this Google's way of discouraging use of MS programs?
Why was WLM telling me it was a username/password problem when it wasn't?

Kenny

On 24-Apr-2015 16:18, Kenny wrote:
Have been trying for 2 days to set up Windows Live Mail for my Gmail
account and continually getting username/password failure.
More by accident than anything else discovered that Gmail considers WLM
a "less secure app" and blocks access to it, enabling "allow less secure
apps" in Gmail settings it's now working as it should.
Why does Gmail consider WLM less secure, am I really taking any risk
using it this way or is this Google's way of discouraging use of MS
programs?
Why was WLM telling me it was a username/password problem when it wasn't?

Kenny

WLM is crap. Use something else.

Kenny wrote:

Have been trying for 2 days to set up Windows Live Mail for my Gmail
account and continually getting username/password failure. More by
accident than anything else discovered that Gmail considers WLM a
"less secure app" and blocks access to it, enabling "allow less
secure apps" in Gmail settings it's now working as it should. Why
does Gmail consider WLM less secure, am I really taking any risk
using it this way or is this Google's way of discouraging use of MS
programs? Why was WLM telling me it was a username/password problem
when it wasn't?

Took awhile to figure out where is the security security to which you
referred but did not describe where it is. Finally found it at:

https://www.google.com/settings/security/lesssecureapps

When looking at the *account* configuration (not Gmail only settings):

"Disable access for less secure apps

Some apps and devices use less secure sign-in technology, which makes
your account more vulnerable. You can turn off access for these apps,
which we recommend, or turn on access if you want to use them despite
the risks."

Then read their help page at:

http://support.google.com/accounts/b.../6010255?hl=en

All that says is "some apps or devices that do not use modern security
standards". Google never defines what they mean by "modern security
standards". Since Google has never defined what THEY consider secure
then I don't bother with their security. I rely solely on the security
already built into the standard e-mail protocols, not some propriety,
goofy, and nebulous security claimed by Google.

Google doesn't obey the RFC standards for POP, IMAP, or SMTP. So why
would I expect them to follow any recognized and ANNOUNCED security
standards? Google already has some of their web pages that are not
accessible by any web browser other than by their own Google Chrome. I
see this security "feature" in a Google Account as just another means of
incrementally pushing users away from non-Google products.

How secure can Gmail be when they still state in their own help articles
the use of SSL to connect to their POP and IMAP servers instead of TLS?

Have you read up on their claimed improved security model called "2-step
security"? What a ****ing bad joke. They assume everyone that uses
their services are boobs that only understand how to use a web browser.
No e-mail clients are going to do more than send in login credentials.
They aren't going to answer telephone calls or text messages (that they
cannot receive until after logged into the e-mail account) to enter
another password (what they like to pretend is another code). So their
2-step security is to have the client enter one password and then have
another password entered via some other communications channel. Oh,
yeah, like that makes it easy to use their service. And, of course,
users want to waste the cost of a USB key to use that to store the 2nd
password. "During sign-in, you can choose not to use 2-Step
Verification again on that particular computer. From then on, that
computer will only ask for your password when you sign in." Yep, like I
said, they think only boobs using web browsers will use their services.

By the way, you might to visit https://history.google.com/history/ and
disable Google from indefinitely storing your history of searches. It's
obviously only effective if you search while you are logged into Google
but I'm sure there have been times when I needed to use their webmail
client and did some searches while still logged in (because I forgot to
logout before searching).

There are lots of, um, "features" at Google you should turn OFF.

Kenny wrote:
Have been trying for 2 days to set up Windows Live Mail for my Gmail
account and continually getting username/password failure.
More by accident than anything else discovered that Gmail considers WLM
a "less secure app" and blocks access to it, enabling "allow less secure
apps" in Gmail settings it's now working as it should.
Why does Gmail consider WLM less secure, am I really taking any risk
using it this way or is this Google's way of discouraging use of MS
programs?
Why was WLM telling me it was a username/password problem when it wasn't?

Kenny
Works fine here with Gmail accounts
- POP3 and IMAP both functional



--
...winston
msft mvp consumer apps

VanguardLH wrote:
Kenny wrote:

Have been trying for 2 days to set up Windows Live Mail for my Gmail
account and continually getting username/password failure. More by
accident than anything else discovered that Gmail considers WLM a
"less secure app" and blocks access to it, enabling "allow less
secure apps" in Gmail settings it's now working as it should. Why
does Gmail consider WLM less secure, am I really taking any risk
using it this way or is this Google's way of discouraging use of MS
programs? Why was WLM telling me it was a username/password problem
when it wasn't?

Took awhile to figure out where is the security security to which you
referred but did not describe where it is. Finally found it at:

https://www.google.com/settings/security/lesssecureapps

When looking at the *account* configuration (not Gmail only settings):

"Disable access for less secure apps



It's not the client its the configured security settings for the
connection.

i.e. use SSL for Gmail POP3 (Incoming/Outgoing) or for GMail IMAP
SSL/StartTLS for Incoming/Outgoing






--
...winston
msft mvp consumer apps

winston wrote:

It's not the client its the configured security settings for the
connection.

i.e. use SSL for Gmail POP3 (Incoming/Outgoing) or for GMail IMAP
SSL/StartTLS for Incoming/Outgoing

Except that, in the past, I could not connect to Gmail unless I used
SSL. That is, there never were viable non-SSL ports on which Gmail
listened. Google always mandated using SSL. Not using SSL would
definitely prevent an e-mail client from connecting to Google's POP and
IMAP servers -- but that's not what Google's "safe device" option is
about.

Maybe they now mandate the use of TLS; however, their own help articles
still say to use SSL for POP and IMAP (but does say to use TLS to
connect to their SMTP server).

"Kenny" wrote in message
...
Have been trying for 2 days to set up Windows Live Mail for my Gmail
account and continually getting username/password failure.
More by accident than anything else discovered that Gmail considers WLM a
"less secure app" and blocks access to it, enabling "allow less secure
apps" in Gmail settings it's now working as it should.
Why does Gmail consider WLM less secure, am I really taking any risk using
it this way or is this Google's way of discouraging use of MS programs?
Why was WLM telling me it was a username/password problem when it wasn't?

Kenny

I have a version of OLE running on 7.



---
This email has been checked for viruses by Avast antivirus software.
http://www.avast.com

On 2015-04-25, Stewart, published this proof of the Infinite Monkey Theorem:

Kenny

I have a version of OLE running on 7.


---
This email has been checked for unicorns by Avast unicorn-spam software.
http://www.avast-can eay my shorts.com


Fixed your sig

--
♖ ♘ ♗ ♕ ♔ ♗ ♘ ♖

On 4/25/2015 6:08 AM, Kenny wrote:
Thanks for the replies. The reason I use WLM is so that I can download
and archive .eml copies of my mail messages for reference, webmail as
far as I know doesn't let you do this, only way I could see how was to
open individual message and save as a web page, very cumbersome.

snip

I use Gmail as web mail all the time. I have it set to both POP3 and IMAP.

On my desktop I have Thunderbird set to use IMAP and it effectively
backs up the current status of Gmail.

If there is mail I want to for later reference I move it into an
appropriately named GMail folder. If there is a web page to save I email
it to myself and place that email into a folder.

"Stewart" wrote in message
...

"Kenny" wrote in message
...
Have been trying for 2 days to set up Windows Live Mail for my Gmail
account and continually getting username/password failure.
More by accident than anything else discovered that Gmail considers WLM
a "less secure app" and blocks access to it, enabling "allow less
secure apps" in Gmail settings it's now working as it should.
Why does Gmail consider WLM less secure, am I really taking any risk
using it this way or is this Google's way of discouraging use of MS
programs?
Why was WLM telling me it was a username/password problem when it
wasn't?

Kenny

I have a version of OLE running on 7.

I have a version of Windows Mail running on 7
and a version of Outlook Express running on 8.1.

Zaidy036 wrote:

On my desktop I have Thunderbird set to use IMAP and it effectively
backs up the current status of Gmail.

Using their webmail client, log into Gmail. Click on the gear icon at
the upper right and select Settings. Click on "Accounts and Import"
tab. Click on "Other Google Account settings". Scroll down to the
"Signing In" section. For the "Access for less secure apps" option, is
it turned on (Allowed) or is it turned off? I bet yours is turned off.
That is the default unless you got prompted and changed it.

If you click on the Learn More link, you'll see Gmail makes the claim
"Some examples of apps that do not support the latest security standards
include: ... Some Desktop mail clients like Microsoft Outlook and
Mozilla Thunderbird". So Google considers your choice of local e-mail
client to be less secure.

Google won't tell you why it claims some apps or devices are less
secure. They don't define "less secure". Since *Google* is the one
telling users in their own help articles to use SSL to connect to their
POP and IMAP server rather than use TLS then it is Google that is less
secure.

Stewart wrote:

Kenny wrote ...

Gmail considers WLM a "less secure app" and blocks access to it,
enabling "allow less secure apps" in Gmail settings it's now working
as it should.

I have a version of OLE running on 7.

So what? You did NOT state how you have your *Gmail* account configured
for "less secure apps". That's a Gmail setting, not a client setting.

If Gmail considers WLM an insecure e-mail client, you really think they
consider OE a secure client?

---

Not a valid signature delimiter line (which is dash dash space newline).
So the following *spam* is in the body of your post.

This email has been checked for viruses by Avast antivirus software.
hxxp://www. avast. c*m

By default, Avast's e-mail/newsgroups scanner will append the spam
signature onto your posts. That means you are their spamming affiliate
hence your posts are spam. Configure their e-mail/newsgroup module to
NOT append their spam onto your posts; else, uninstall the superfluous
e-mail/newsgroup scanner.

On 4/25/2015 1:01 PM, VanguardLH wrote:
Zaidy036 wrote:

On my desktop I have Thunderbird set to use IMAP and it effectively
backs up the current status of Gmail.

Using their webmail client, log into Gmail. Click on the gear icon at
the upper right and select Settings. Click on "Accounts and Import"
tab. Click on "Other Google Account settings". Scroll down to the
"Signing In" section. For the "Access for less secure apps" option, is
it turned on (Allowed) or is it turned off? I bet yours is turned off.
That is the default unless you got prompted and changed it.


You are correct. I only use Tbird for IMAP backup and News Groups


If you click on the Learn More link, you'll see Gmail makes the claim
"Some examples of apps that do not support the latest security standards
include: ... Some Desktop mail clients like Microsoft Outlook and
Mozilla Thunderbird". So Google considers your choice of local e-mail
client to be less secure.

Google won't tell you why it claims some apps or devices are less
secure. They don't define "less secure". Since *Google* is the one
telling users in their own help articles to use SSL to connect to their
POP and IMAP server rather than use TLS then it is Google that is less
secure.

"VanguardLH" wrote in message
...
Stewart wrote:

Kenny wrote ...

Gmail considers WLM a "less secure app" and blocks access to it,
enabling "allow less secure apps" in Gmail settings it's now working
as it should.

I have a version of OLE running on 7.

So what? You did NOT state how you have your *Gmail* account configured
for "less secure apps". That's a Gmail setting, not a client setting.

If Gmail considers WLM an insecure e-mail client, you really think they
consider OE a secure client?

Er, yes it does.....though I don't bother using IMAP functions. It's not
necessary for what I need to do with the home PC.

That's what.

Thunderbird works well too.


---

Not a valid signature delimiter line (which is dash dash space newline).
So the following *spam* is in the body of your post.

This email has been checked for viruses by Avast antivirus software.
hxxp://www. avast. c*m

By default, Avast's e-mail/newsgroups scanner will append the spam
signature onto your posts. That means you are their spamming affiliate
hence your posts are spam. Configure their e-mail/newsgroup module to
NOT append their spam onto your posts; else, uninstall the superfluous
e-mail/newsgroup scanner.



---
This email has been checked for viruses by Avast antivirus software.
http://www.avast.com