Поиск в Поддержке

Избегайте мошенников, выдающих себя за службу поддержки. Мы никогда не попросим вас позвонить, отправить текстовое сообщение или поделиться личной информацией. Сообщайте о подозрительной активности, используя функцию «Пожаловаться».

Learn More

My TBird was rejected by Google! Google says: "Mozilla Tbird is less secure."! Provide facts and I will launch campain asking Google to stop lying.

  • 4 ответа
  • 12 имеют эту проблему
  • 1 просмотр
  • Последний ответ от harmonicalchemy

more options

Hi, I was trying to add a new Google account to Thunderbird today and was rejected by Google! Google says: "Mail clients like Microsoft Outlook and Mozilla Thunderbird are less secure apps to access your account"!

I am not asking for help overriding that feature/block, because I know how to do it in my Gmail settings.

But... Is this statement really true? If not.. We need to tell Google to stop telling users that lie. This is a whistle call and request for information from security experts within our great Mozilla community!

Please provide me some honest facts about Thunderbird security and I will launch a social media campaign to get Google to stop this nonsense... OK? I believe this is more of the business-as-usual where corporations use scare tactics to keep customers under their exclusive control and spying activities. We need to fight back... Folks need to know the truth! Thanks! - Ben Sheppard, founder Marketing Web Media & Harmonic Alchemy Productions

Hi, I was trying to add a new Google account to Thunderbird today and was rejected by Google! Google says: "Mail clients like Microsoft Outlook and Mozilla Thunderbird are less secure apps to access your account"! I am not asking for help overriding that feature/block, because I know how to do it in my Gmail settings. But... Is this statement really true? If not.. We need to tell Google to stop telling users that lie. This is a whistle call and request for information from security experts within our great Mozilla community! Please provide me some honest facts about Thunderbird security and I will launch a social media campaign to get Google to stop this nonsense... OK? I believe this is more of the business-as-usual where corporations use scare tactics to keep customers under their exclusive control and spying activities. We need to fight back... Folks need to know the truth! Thanks! - Ben Sheppard, founder Marketing Web Media & Harmonic Alchemy Productions

Все ответы (4)

more options

Here is more information on this scenario:

After changing my Gmail settings to 'allow less secure applications' access to my Gmail account I recieved the following email from Google:

Hi Ben, You recently changed your security settings so that your Google Account [global.web.marketing@gmail.com] is no longer protected by modern security standards.

If you did not make this change Please review your Account Activity page at https://security.google.com/settings/security/activity to see if anything looks suspicious. Whoever made the change knows your password; we recommend that you change it right away.

If you made this change Please be aware that it is now easier for an attacker to break into your account. You can make your account safer again by undoing this change at https://www.google.com/settings/security/lesssecureapps then switching to apps made by Google such as Gmail to access your account.

Sincerely, The Google Accounts team

If Thunderbird is as safe as I believe it is... Google needs to remove this block from their default "less secure" applications configuration... Otherwise... If I choose this setting to allow Thunderbird access, I may also be opening up vulnerability to other "real threats".

This is how Google is hurting users who choose to use Thunderbird... Its NOT FAIR! that's Passive Aggressive Extortion in my book!

Изменено harmonicalchemy

more options

If you use more than one method of accessing your email, say you also use a phone, then it is more secure for your phone to use what gmail call '2 step verification'. However, if you set up '2 step verification' then Thunderbird - a desktop email client - cannot use '2 step verification', so you have to create 'an application specific password' to use only in Thunderbird instead of the usual password.

If you only use your computer to access gmail and never use a phone, then in order to allow to to continue using the normal password, they want to select the option - what gmail call 'use insecure app'. create a decent password using 8 -16 digits with a mix of letters numbers.

read more info here - scroll down to 'Less Secure apps' section http://kb.mozillazine.org/Gmail

more options
more options

Thanks for that info @Toad-Hall and @Zenos

I lightly read through much of the sources to both of your replies above and although i did not dig deep into the process, I was able to make an initial assumption (Hypothesis) that Google's 2 step verification process (using OAuth) is a ruse to get all Gmail users to stop using perfectly good email programs they may have been comfortable using for years and switch to Google's own applications instead. I cannot see any other incentive than that...

This is definitely NOT a security enhancement incentive! What I do see is strong evidence suggesting jumping through Google's 2 factor auth hoops are much less secure (and complicated) requiring silly cross application password / token madness! All of which give hackers a good laugh as they happily jump around, over, or under the hoops and easily hijack your Gmail account with out even needing to use your password!

I would love to help launch a massive marketing and social networking campaign to expose Google's Two Factor Ruse! But I don't think this is the proper forum for that. This place is for bug reporting... If anyone knows a better place within the Mozilla community where I could take this discussion (and hopefully start a campaign initiative) I would love to know where that could happen...

Thanks! - Ben Sheppard - Marketing Web Media