Post AJZFr7e5k8f1cBH5iS by bobjonkman@mastodon.sdf.org
(DIR) More posts by bobjonkman@mastodon.sdf.org
(DIR) Post #AJW3QGqzcNEdQjrKKm by digdeeper@mastodon.honeypot.im
2022-05-16T17:01:40Z
21 likes, 57 repeats
Gmail will block all third party mail clients starting from June: http://www.pmail.com/newsflash.htmThat is, unless they pay $4500 minimum for an audit :DStop using gmail and enabling their monopolistic practices, if you already haven't.
(DIR) Post #AJWDVfcpwaL1FQS25Y by Sprinklednights@social.anoxinon.de
2022-05-16T18:54:42Z
0 likes, 0 repeats
@digdeeper I am sorry Dig Deeper... The botnet forced me to use it... I have to give up...
(DIR) Post #AJXGVwD4mFGxhjBH3g by flabberghaster@mas.to
2022-05-17T07:02:50Z
0 likes, 0 repeats
@digdeeper is this true? On k-9 mail's issue tracker, some folks were saying they're continuing to support "app passwords" (not your main password but one you create for one purpose). I don't think K9 is going to implement oauth so if google really does do this I'm pretty boned.
(DIR) Post #AJXHGRoJcR5Z25mDrc by digdeeper@mastodon.honeypot.im
2022-05-17T07:11:27Z
0 likes, 0 repeats
@flabberghaster Looks that way, unless the Pegaus Mail dev made up the whole story. There is apparently some doc from Google, that I can't read because I'm not willing to enable JS there: https://support.google.com/accounts/thread/154305711/less-secure-apps-your-google-account-termination-date-of-may-30th-2022
(DIR) Post #AJXHGokCLuSg9z1l8i by michaelgraaf@campaign.openworlds.info
2022-05-17T07:11:23Z
0 likes, 0 repeats
@digdeeper Legally challengeable, surely?
(DIR) Post #AJXHn2SCunFNwlybUO by digdeeper@mastodon.honeypot.im
2022-05-17T07:17:20Z
0 likes, 0 repeats
@michaelgraaf Good luck. At best, you will earn Google a fine that they will pay off in a few hours of earnings. At worst, nothing whatsoever except embarassing yourself in court and taking the cost of the proceedings.
(DIR) Post #AJXISe9deNNukJ8Cjw by michaelgraaf@campaign.openworlds.info
2022-05-17T07:24:52Z
0 likes, 0 repeats
@digdeeper Maybe the EFF will do it for us?
(DIR) Post #AJXJLX9dNUNsxkIkgi by flabberghaster@mas.to
2022-05-17T07:34:49Z
0 likes, 0 repeats
@digdeeper > No, it shouldn't be. Using an application password with 2-step verification is a "secure" access method.So if you have 2 factor set up on your google account, and you use an app password you're still good, looks like.
(DIR) Post #AJXJVxxyXwUj0wp4qG by digdeeper@mastodon.honeypot.im
2022-05-17T07:36:43Z
2 likes, 1 repeats
@flabberghaster So in other words, you need a phone (spy device). A consolation prize. And you know that in a few months they will just kill the ability altogether, locking people fully into the Google prison.
(DIR) Post #AJXK19brJ5x66PLisK by flabberghaster@mas.to
2022-05-17T07:42:18Z
0 likes, 0 repeats
@digdeeper oh I'm not sitting here saying google is good, or not monopolistic. I was just surprised they would disable all third party email clients.Also I think you can set up a TOTP program wherever you want and those count as a second factor. So you shouldn't need a phone per se, but I'm not 100% sure though.Anyway I am not the google defender out here. People who value privacy probably should avoid google in general.
(DIR) Post #AJXK95FtNcicukr7wW by digdeeper@mastodon.honeypot.im
2022-05-17T07:43:49Z
0 likes, 0 repeats
@flabberghasterBut, let us make clear, this option will still be viable in June? Remember I can't read that google doc.
(DIR) Post #AJXL5KZEbmmfCQg3vM by flabberghaster@mas.to
2022-05-17T07:54:06Z
0 likes, 0 repeats
@digdeeper This site worked on my phone without JavaScript enabled bit I will post a screenshot just in case:https://support.google.com/accounts/answer/6010255?hl=en#zippy=%2Cuse-an-app-password
(DIR) Post #AJXLHu7uE4NyxXtFcO by thriveth@mstdn.social
2022-05-17T07:56:33Z
0 likes, 0 repeats
@digdeeper That is... Infuriating! There's no way I'll let them dictate which mail app I'm supposed to use to manage my e-mail. Grrrrrr!
(DIR) Post #AJXMjreL815NL8xOxE by digdeeper@mastodon.honeypot.im
2022-05-17T08:12:40Z
0 likes, 1 repeats
@flabberghaster Thanks. Unfortunately, I don't think that screenshot saves Gmail users. They say:>If an app uses less secure sign-in technology, you might not be able to use it with your Google accountAnd remember, that to become "more secure" you need to pay upwards of $75000 for an audit, according to the Pegasus Mail developer.
(DIR) Post #AJXMsEgPNI7Z5qusjY by flabberghaster@mas.to
2022-05-17T08:14:20Z
0 likes, 0 repeats
@digdeeper I think that's only if you want to have your app support the "sign in with google" thing but i'm not sure. It's all guesswork on my part.I guess I will have to wait until the 30th and see if i get locked out 😂
(DIR) Post #AJXMwRSFpcsfrXIlPM by flabberghaster@mas.to
2022-05-17T07:56:44Z
1 likes, 0 repeats
@digdeeper so, yes, app passwords should still work after that cutoff date. I think what they're disabling is the ability to use your main account name and password to log in from third party apps.
(DIR) Post #AJXMwRpeQdb126FRsO by digdeeper@mastodon.honeypot.im
2022-05-17T08:15:08Z
4 likes, 2 repeats
@flabberghaster OK, it is clear though, that Google is fighting very hard to deprecate third party apps entirely sooner or later. Just drop it already. The longer you depend on an abuser the harder it is to leave them.Also, let's actually wait until June 1 to see how this materializes.
(DIR) Post #AJXNGmzVTBkARpYcoC by flabberghaster@mas.to
2022-05-17T08:18:47Z
0 likes, 0 repeats
@digdeeper Right, i'm not arguing that google is good! I just can't switch off my gmail, it is what all my friends and colleagues know to reach me at.I'm not saying you're wrong about them trying to lock out everyone who's not them. A couple years ago they started preventing chromium from syncing with google accounts by disabling API keys they'd given to linux distros that package chromium, claiming they'd "accidentally" given them out. Clearly false.So no, no one should trust them.
(DIR) Post #AJXNVrb2d4jb4iImzA by digdeeper@mastodon.honeypot.im
2022-05-17T08:21:36Z
0 likes, 1 repeats
@flabberghaster I don't know your situation, but can't you do something like mass send an email saying "Hey bro / sis, Google started locking me out of my email so my new Email address is shiny_new_email@domain.com"Or come up with some other excuse, you might end up with some degoogled converts, even.
(DIR) Post #AJXT4bXWopytBN2mxs by ryo@social.076.ne.jp
2022-05-17T09:23:53.783567Z
4 likes, 2 repeats
@digdeeper This was Goolag's plan all along.But fine by me, I believe it'll motivate more non-businesses to set up their own mail servers again, and maybe they'll only use their GayMail accounts for Goolag Android and JewTube.
(DIR) Post #AJXTbGQSLEXlFqJEa8 by imyxh@weirder.earth
2022-05-17T09:29:31Z
0 likes, 0 repeats
@digdeeper hold on, I think this is only mail clients that store user data on third-party servers."Every app that requests access to restricted scope Google user’s data and has the ability to access data from or through a third party server is required to go through a security assessment from Google [....]"Local clients like Evolution, FairEmail, and Thunderbird should still be fine. I've been using the former two with OAUTH2 for quite some time now with no problems.
(DIR) Post #AJXTgnUCqoLdEnhZY0 by imyxh@weirder.earth
2022-05-17T09:30:45Z
0 likes, 0 repeats
@digdeeper @thriveth hold on, I think this is only mail clients that store user data on third-party servers."Every app that requests access to restricted scope Google user’s data *and has the ability to access data from or through a third party server* is required to go through a security assessment from Google [....]"
(DIR) Post #AJXU5dKXkNewyn1bI8 by thriveth@mstdn.social
2022-05-17T09:33:36Z
0 likes, 0 repeats
@imyxh @digdeeper Ah okay, that makes me feel better. I have been using it with my IMAP client too for a while but thought this was something new that came up. I still wonder if it is time to change email provider to something less corporate though...
(DIR) Post #AJXU5dfoTIfo2kyaRc by digdeeper@mastodon.honeypot.im
2022-05-17T09:35:11Z
0 likes, 0 repeats
@thriveth @imyxh http://www.pmail.com/newsflash.htmYes, new changes will be coming from June on, I will post an update then, because I'm sure many angry Gmail users will post complaints. What exactly will happen I'm not sure though.
(DIR) Post #AJXUQbnCex1QI8QqRs by thriveth@mstdn.social
2022-05-17T09:39:00Z
0 likes, 0 repeats
@digdeeper But are there other changes than mandatory move to OAUTH2?
(DIR) Post #AJXUV3aJGshde4WRfc by digdeeper@mastodon.honeypot.im
2022-05-17T09:39:49Z
0 likes, 0 repeats
@thriveth The paid audit.
(DIR) Post #AJXUWICYPaS7Gh03pg by digdeeper@mastodon.honeypot.im
2022-05-17T09:40:07Z
0 likes, 0 repeats
@thriveth The paid audit for clients.
(DIR) Post #AJXVOCQG77Amyz7CBE by imyxh@weirder.earth
2022-05-17T09:49:47Z
0 likes, 0 repeats
@digdeeper but do you think these changes will actually affect most clients, e.g., Evolution and Thunderbird? These clients were already using OAUTH2 and because they don't use a third-party server it doesn't seem to me that they will incur the security audit fee.It seems the upcoming changes to OAUTH2 are deprecation of loopback IP and out-of-band flows, which I don't think most clients are using.https://developers.googleblog.com/2022/02/making-oauth-flows-safer.html
(DIR) Post #AJXVWZRGQLMEgOZpIm by digdeeper@mastodon.honeypot.im
2022-05-17T09:51:20Z
0 likes, 0 repeats
@imyxh Maybe you are right. At least one client has already been affected (Pegasus, which I've never heard about before). More important is the trend, that Google seeks to lock people inside their ecosystem more and more. Leave while you still can.
(DIR) Post #AJXsVJqhCODYzJqQm8 by PhenomX6@fedi.pawlicker.com
2022-05-17T14:08:53.446829Z
2 likes, 0 repeats
@digdeeper@flabberghasterHere's another thing: Google loves to interfere with sending/receiving emails to self run or non Google email servers.Don't use Gmail.
(DIR) Post #AJXudJvyxvEhTfGDEu by mk@mastodon.satoshishop.de
2022-05-17T14:32:40Z
0 likes, 0 repeats
@digdeeper i think its great that google always finds new ways to lose customers xD
(DIR) Post #AJXvHnugvHbM2Vxchc by Evil_Bender@nicecrew.digital
2022-05-17T14:40:04.234988Z
2 likes, 0 repeats
I have a Gmail that is used exclusively for junk and spam. Protonmail is the only way to go
(DIR) Post #AJXvarZHYinesP2DR2 by Berglander@nicecrew.digital
2022-05-17T14:42:29.511373Z
0 likes, 0 repeats
Hushmail
(DIR) Post #AJXvbK1bl05x8MVETQ by Evil_Bender@nicecrew.digital
2022-05-17T14:43:35.876354Z
0 likes, 0 repeats
What's this
(DIR) Post #AJXw7NDhPhPKJGRRgW by Berglander@nicecrew.digital
2022-05-17T14:46:50.029726Z
0 likes, 0 repeats
Private* encrypted* email. $50/year
(DIR) Post #AJXyZWkpl3prtfUbSa by Disi@uelfte.club
2022-05-17T15:16:33Z
0 likes, 0 repeats
@digdeeper alternatives? tutonota, protonmail or selfhosting?
(DIR) Post #AJXzmVazTfJg1Pdt3o by devnull@mamot.fr
2022-05-17T15:30:07Z
0 likes, 0 repeats
@digdeeper People won't stop use that crap… They'll just pretend "it's userfriendly" and complain on distros mailing lists and free-software email clients repos issues/bug reprotd how unacceptable it is to "not support a major email provider"
(DIR) Post #AJY1W0E4XcD60PBCAi by digdeeper@mastodon.honeypot.im
2022-05-17T15:49:41Z
0 likes, 0 repeats
@Disi If those are your only options, then self-hosting. But I like riseup especially, or disroot.
(DIR) Post #AJY1biKhynrKFV0UfA by Disi@uelfte.club
2022-05-17T15:50:30Z
0 likes, 0 repeats
@digdeeper im currently using gmail and outlook cause never cared about it i guess. Are Riseup and disroot alternative email providers?
(DIR) Post #AJY1mxO0Lvdo7YuT4K by digdeeper@mastodon.honeypot.im
2022-05-17T15:52:45Z
1 likes, 0 repeats
@Disi I have something for you:https://digdeeper.neocities.org/ghost/email.html
(DIR) Post #AJY1pHEPXVWsFVWq6i by Disi@uelfte.club
2022-05-17T15:53:17Z
0 likes, 0 repeats
@digdeeper Hell, i guess i have some reading to do?
(DIR) Post #AJY2yqoIj9cr9hReYi by stonewall3549@mastodon.social
2022-05-17T16:05:53Z
0 likes, 0 repeats
@digdeeper in my case i'm against the audit.But i'm for at least limit some of the insecure protocol they (actually let) user use.but i do agree use encrypted email like @Tutanota or @protonmail instead of Gmail
(DIR) Post #AJY7hPyljOsKmuqdhQ by feld@bikeshed.party
2022-05-17T16:59:07.800329Z
0 likes, 0 repeats
WTF??? Really? I mean, I don't care so much because Apple Mail has supported OAUTH2 for years but like... come on???Won't this also break every email backup tool like imapsync? Jesus tapdancing Christ...
(DIR) Post #AJY83p6wyJjt6WMHnE by t36s@social.ordinal.garden
2022-05-17T17:02:49Z
0 likes, 0 repeats
@digdeeper Aw geez.
(DIR) Post #AJYAlsuUPN9ZXKfT1s by Poslovitch@pleroma.poslovitch.fr
2022-05-17T17:25:14.412215Z
0 likes, 1 repeats
@digdeeper Damn. What about @thunderbird ?
(DIR) Post #AJYB2A6mEXVpVdB1lY by mmu_man@m.g3l.org
2022-05-17T17:36:30Z
1 likes, 0 repeats
@Poslovitch @digdeeper @thunderbird then they'll have to rename themselves to gnotmail. WTF
(DIR) Post #AJYBNFQTeorq5DRiQi by mmn@mastodon.sdf.org
2022-05-17T17:36:03Z
0 likes, 0 repeats
@digdeeper @flabberghaster mailbox.org also has a pretty similar story https://mailbox.org/en/post/google-announces-restriction-of-gmail-with-third-party-services
(DIR) Post #AJYBXcMTEsio6zW5xI by kirjis@polyglot.city
2022-05-17T17:42:03Z
0 likes, 0 repeats
@digdeeper The only thing I use gmail is for gathering spam.
(DIR) Post #AJYCTNpLR2aNpXZDd2 by malx72@social.linux.pizza
2022-05-17T17:52:28Z
0 likes, 0 repeats
@digdeeper oh yes !
(DIR) Post #AJYCX0porVelgAWH6e by hacknorris@mastodon.social
2022-05-17T17:53:06Z
0 likes, 0 repeats
@digdeeper i use tutanota. yet worse, not even mail flags and also no external clients. darn.
(DIR) Post #AJYCXDIyUw6mM4FjDU by chartier@toot.cafe
2022-05-17T17:53:14Z
0 likes, 0 repeats
@digdeeper Plus, a YEARLY audit. What the fuck.
(DIR) Post #AJYD5hKJNvXXJLJz84 by trashheap@tech.lgbt
2022-05-17T17:59:25Z
0 likes, 0 repeats
@digdeeper Im guessing that impacts K9 and a few other popular imap clients as well.
(DIR) Post #AJYDaO5uwJksdmDrOa by IceWolf@masto.brightfur.net
2022-05-17T18:04:46Z
0 likes, 0 repeats
@digdeeper What the fuck??
(DIR) Post #AJYDiau9CBmMgfd9DU by living8bit@mastodon.social
2022-05-17T18:06:29Z
0 likes, 0 repeats
@digdeeper F Gxxgle. Pure and simple. "Do no evil" my a$$.
(DIR) Post #AJYDw8TxfLwiahq61Q by filipe@social.filipesm.com
2022-05-17T18:08:39Z
0 likes, 0 repeats
@digdeeper You mean I won't be able to use @gmail.com emails with liek thunderbird or something? How can they even do that?
(DIR) Post #AJYDzccy2jUexBiL32 by living8bit@mastodon.social
2022-05-17T18:09:08Z
0 likes, 0 repeats
@digdeeper FYI folks, this will allow gxxgle to run just about any Javascript or 3rd party code they want on your devices!! If you think data siphoning was bad before, it's about to get worse.Tip: uMatrix, uBlockOrigin and block all the extraneous sh** you can! (At least on Desktop/Android. Apple still wants you to get f'd.)
(DIR) Post #AJYHgtNBxWB9CgexUm by Retrograde@oldbytes.space
2022-05-17T18:50:49Z
0 likes, 0 repeats
@digdeeper The Disposession Cycle continues... 😬​ #ZuboffGoogle and the rest of the #SurveillanceCapitalism creepshow have systematically been using "Security" 🤪​ as the argument for new incursions and nice stable tracking IDs referencing real word identities across platform and devices for a good while now.
(DIR) Post #AJYITldxUBxnQ7o8Ia by fatboy@fosstodon.org
2022-05-17T18:59:55Z
0 likes, 0 repeats
@digdeeper Holy shit! This is fucked up!
(DIR) Post #AJYJPWC75ESQIlJxZ2 by otso@pleroma.karjalazet.se
2022-05-17T19:10:20.992231Z
0 likes, 0 repeats
@digdeeper @Disi self-hosting?FreedomBox has Email Server and so has Yunohosthttps://wiki.debian.org/FreedomBox/Manual/Email?action=show&redirect=FreedomBox%2FManual%2FEmailServerhttps://yunohost.org/oc/email
(DIR) Post #AJYKXM7CXdL3JQKB3w by chrisod@fosstodon.org
2022-05-17T19:19:28Z
0 likes, 0 repeats
@digdeeper @flabberghaster You can keep the Gmail address and just forward it to Fastmail or a domain account too. Ive been forwarding my Gmail to my domain almost since I first got a Gmail address way back when it was still in beta.
(DIR) Post #AJYKnuEnRV2rm5ljLU by schmittlauch@toot.matereal.eu
2022-05-17T19:25:50Z
0 likes, 0 repeats
@digdeeper @flabberghaster No, TOTP is also supported by password managers like KeepassXC, or alternatively you could use a hardware token like a NitroKey.
(DIR) Post #AJYKyoPpQfXMu485OS by sullybiker@sully.site
2022-05-17T19:27:57Z
0 likes, 0 repeats
@digdeeper Fuck Google and their anti-competitive bullshit.
(DIR) Post #AJYM1yN0yTmebFssts by marius851000@mastodon.mariusdavid.fr
2022-05-17T19:37:46Z
0 likes, 0 repeats
@digdeeperHoho ! I'm incredibly worried (not for me) but some other person (like my mother) love to use thunderbird, and they use GMail.
(DIR) Post #AJYNaJfeNyk6SjXbhw by juh@hostsharing.coop
2022-05-17T19:56:59Z
0 likes, 0 repeats
@digdeeper E-Mail was a decentralized system that Google almost monopolised. They could do it again with the Fediverse. Code is not the solution. We need many strong non profit organizations that build the infrastructure. The infrastructure must be owned by the people not by big business.
(DIR) Post #AJYR1oTGHN1hfWY7ea by takao@shitposter.club
2022-05-17T20:35:44.456278Z
0 likes, 0 repeats
@digdeeper @flabberghaster TOTP is described in an RFC, nothing stops you from using your desktop (I do it)
(DIR) Post #AJYRKYenIcgw7msjxI by Moon@shitposter.club
2022-05-17T20:38:58.403685Z
0 likes, 0 repeats
@takao @digdeeper @flabberghaster I use keepass2 and it has a plugin for totp
(DIR) Post #AJYRdSuwrXzlpHSBqi by takao@shitposter.club
2022-05-17T20:42:32.745736Z
0 likes, 0 repeats
@Moon @digdeeper @flabberghaster I use oathtool scripted with Tcl and interfacing GnuPG (to protect the secrets)
(DIR) Post #AJYRiZG8iAhwwVnZke by bs@fosstodon.org
2022-05-17T20:43:16Z
0 likes, 0 repeats
@digdeeper Bad Software Idea: Making email not be open anymore.
(DIR) Post #AJYRmUzEXUAIqjlWHA by bs@fosstodon.org
2022-05-17T20:44:04Z
0 likes, 0 repeats
@digdeeper Google really looked at Apple's $99/year for App Store apps and thought "pathetic".
(DIR) Post #AJYWHKWbsvUpCHKlpw by charliebrownau@pieville.net
2022-05-17T11:08:40Z
0 likes, 0 repeats
@ryo @digdeeper Have you seen Delta Chat , it looks like {{{ TELEGRAM }}} yet uses encyption + pop3 emailLets make email great againhttps://delta.chat/en/My video on Delta chat - https://www.joshwhotv.com/v/.QDss2Q?channelName=Charliebrownau
(DIR) Post #AJYWHKqSh7NMBqccmO by ryo@social.076.ne.jp
2022-05-17T21:34:30.844917Z
0 likes, 0 repeats
@charliebrownau @digdeeper I heard about Delta Chat, but the client appears to be made in Electron, so by default it sucks.
(DIR) Post #AJYWSjd6szmaFAoRcm by xianc78@bae.st
2022-05-17T18:36:00.618413Z
1 likes, 0 repeats
@ryo @digdeeper Almost nobody uses mail clients anymore. I remember when my high school switched to Gmail years ago and they stopped using Microsoft Outlook and used their webmail.
(DIR) Post #AJYWWL32Ds1TA9enUe by ryo@social.076.ne.jp
2022-05-17T21:37:15.098730Z
0 likes, 0 repeats
@xianc78 @digdeeper I use Claws Mail as my mail client, I simply can't trust webmail and/or mobile apps with my email.
(DIR) Post #AJYbrtflBT0yOvryk4 by Savagejen@mastodon.social
2022-05-17T22:36:58Z
0 likes, 0 repeats
@digdeeper If you read it, there are two things here that deserve noting:1) It's only required for "restricted scopes" (like if the app accesses the contents of your email)2) It's only required if the application is going to fetch that data to their servers, which a local mail client does not usually. I have seen some that look like local clients, but fetch your email to their servers and then provide it to you. This is what Google is trying to avoid.They're trying to protect users here.
(DIR) Post #AJYerEZMIwe4mgFccC by frumble@chaos.social
2022-05-17T23:10:08Z
0 likes, 0 repeats
@digdeeper What about this?»IMAP will continue to be available, but you will need to use more secure authentication. Most modern email programs support OAuth2 authentication, but if yours does not, then you can enable 2-step verification and use an App Password.«https://support.google.com/mail/thread/157808790?hl=en&msgid=157817737
(DIR) Post #AJYkvC3mAxmBsukXcu by tyil@fedi.tyil.nl
2022-05-18T00:18:38.015Z
0 likes, 0 repeats
@digdeeper@mastodon.honeypot.im The site you linked doesn't seem to support https in $current-year.
(DIR) Post #AJYkvkH4y0cU01Ee5A by ryancrawcour@mstdn.social
2022-05-18T00:18:17Z
0 likes, 0 repeats
@digdeeper wow
(DIR) Post #AJYxlda2IeidkIc2vw by kyrahabattoir@wxw.moe
2022-05-18T02:42:20Z
0 likes, 0 repeats
@digdeeper What in the actual fuck.All this for a fucking auth token?
(DIR) Post #AJZ7DFD3OzuhrD6MvQ by toastal@cybre.space
2022-05-18T04:26:45Z
0 likes, 0 repeats
@digdeeper Most folks on the Fediverse are probably wise and not normie enough to not be using GMail. The *problem* is employers--which is the only reason I need to bother caring about this as they all seem to be completely locked into GSuite.
(DIR) Post #AJZ7DUQioSl93wbzoO by vplock@mamot.fr
2022-05-18T04:28:21Z
0 likes, 0 repeats
@digdeeper What can replace the gmail?
(DIR) Post #AJZFr7e5k8f1cBH5iS by bobjonkman@mastodon.sdf.org
2022-05-18T06:04:43Z
0 likes, 0 repeats
@digdeeper @imyxh I started using Pegasus Mail in 1994, and it existed well before that. Pegasus Mail pioneered things like storing mail in different folders (before that there was just the InBox, which wasn't called "InBox" or anything at all because there was nothing else); Pegasus Mail was the first MUA (Mail User Agent, or mail client) to have automatic filtering rules ('cos nobody needed automatic filtering until Pegasus Mail invented mail folders).
(DIR) Post #AJZIX0w7HJFIsRoDE8 by charliebrownau@pieville.net
2022-05-18T00:21:43Z
1 likes, 0 repeats
@ryo @digdeeper At least it doesnt need pythonProbly the only well make electron app in history
(DIR) Post #AJZLOCQPUhZZlTT12u by baobab@mastodon.honeypot.im
2022-05-18T07:06:51Z
0 likes, 0 repeats
@digdeeper This is why I host everything.
(DIR) Post #AJZLPkrgvsR8rsy9tg by baobab@mastodon.honeypot.im
2022-05-18T07:07:24Z
0 likes, 0 repeats
@digdeeper This is why I host everything that I use (:
(DIR) Post #AJZLW5XOz6ikilV0Km by Camel@lor.sh
2022-05-18T07:08:27Z
0 likes, 0 repeats
@digdeeperAlready moving to glaz@zho.pa (in case you don't speak Russian, for Russians it sounds like eye-on-butt :blobCat: )
(DIR) Post #AJZPyh2XXsGQxOxWFM by derfopps@digitalcourage.social
2022-05-18T07:58:22Z
0 likes, 0 repeats
@digdeeper Does anyone know how Thunderbird, elementary Mail Claws etc. react to this situation? A bunch of under-funded #FLOSS mail clients would be affected if true...
(DIR) Post #AJZPynDOaQVq6o5H04 by anedroid@mstdn.social
2022-05-18T07:58:39Z
0 likes, 0 repeats
@digdeeper Doing this, they just shoot themselves in the foot. I already have an email account in different provider because I want to get rid of Google services completely. Thanks Google - you have motivated me to hurry up, giving me one more reason to leave, one more proof that you're hostile towards user's interest.
(DIR) Post #AJZQ2EdJ6Ung0qqTSa by anedroid@mstdn.social
2022-05-18T07:59:16Z
0 likes, 0 repeats
@digdeeper Doing this, they just shoot themselves in the foot. I already have an email account in different provider because I want to get rid of Google services completely. Thanks Google - you have motivated me to hurry up with moving all my accounts, giving me one more reason to leave, one more proof that you're hostile towards user's interest.
(DIR) Post #AJZQNIxKE6obV8Ftyq by anedroid@mstdn.social
2022-05-18T08:02:55Z
0 likes, 0 repeats
@digdeeper Doing this, they just shoot themselves in the foot. I already have an email account in different provider because I want to get rid of Google services completely. Thanks Google - you have motivated me to hurry up with moving all my accounts, giving me one more reason to leave, one more proof that you're hostile towards user's interest and monopolist killing free market.
(DIR) Post #AJZQOPRTb1KzuKswPw by beejay@ioc.exchange
2022-05-18T08:03:10Z
0 likes, 0 repeats
@digdeeper Oh wow, thats hefty. But remember, that this is an ANNUAL fee ("annual recertification")!
(DIR) Post #AJZRjs4iR11ekL2KuW by selfisekai@donotsta.re
2022-05-18T08:18:23.938817Z
0 likes, 0 repeats
@digdeeper that one is not true. They're turning off "less secure login", the method where you could send your plaintext password over IMAP/POP3/SMTP, without support for 2FA (https://support.google.com/accounts/answer/6010255). But you can create "app passwords" (https://support.google.com/accounts/answer/185833) - they give you a generated string that you insert as the password, it only works for these protocols and also circumvents 2FA.Please stop using gmail anyway.
(DIR) Post #AJa1gKFBMI1rImXbCC by goatwildernesscollective@social.librem.one
2022-05-18T15:00:50Z
0 likes, 0 repeats
@digdeeper sounds a bit like monopolistic anti competitive behaviour to me, as if data left in the hands of google amd on google servers would be any safer than anywhere else
(DIR) Post #AJakf5BGNDpaERUOXY by firefly_lightning@convenient.email
2022-05-18T19:19:43Z
0 likes, 0 repeats
Thanks, I hate itMy partner runs a mail server, which I use, and google already blocks it seemingly randomly
(DIR) Post #AJbPIvvADTgBGOW3FI by aaravchen@fosstodon.org
2022-05-19T06:59:57Z
0 likes, 0 repeats
@digdeeperNot defending Google here, but this is actually a positive change for security, while unfortunately hammering on the little/simple applications that want to connect (often insecurely).The US CISA even just sent a list around that said lack of MFA, and password leaking are the top threats to security. (it's the US Gov, so you know it must be really obvious if they're taking about it).Saving your password in a 3rd party - 1/5
(DIR) Post #AJbPIxRoXZOHzwndmC by aaravchen@fosstodon.org
2022-05-19T06:59:59Z
0 likes, 0 repeats
app is already terribly insecure, and there's no real way to do MFA. The industry standard way for the last 5+ years has been OAuth/OAuth2. This works by the 3rd party app requesting access to Gmail and getting a redirection response. The user is asked to authenticate with Google directly using a normal browser and whatever mechanisms, and it returns an authorization token. The 3rd party app uses that auth token without ever seeing any of the @digdeeper - 2/5
(DIR) Post #AJbPIytVA78GU6lGZU by aaravchen@fosstodon.org
2022-05-19T07:00:01Z
0 likes, 0 repeats
credentials you entered, or needing to know how you authenticated with Gmail.Unfortunately OAuth2 isn't simple to implement, and Google seems to be using this as an opportunity to also vet the apps trying to use OAuth2 for access. That's resulting in very limited permissions, even for authenticated clients, unless they undergo a security check. If you're offering a 3rd party app for this, almost no one is trustworthy or skilled enough to not make a @digdeeper - 3/5
(DIR) Post #AJbPJ0Ga3nBgjyZDBQ by aaravchen@fosstodon.org
2022-05-19T07:00:02Z
0 likes, 0 repeats
security mistake and you really need an outside security check. That's expensive, and I'm sure Google has a small list of reviewers they accept. If you happen to be over of the few people in the world who can actually do it right on your own, you're the extreme exception and being lumped in with the plebs anyway.The outcome sucks, but realistically the bar for entry into the app space for something like a person's primary email is too high between @digdeeper - 4/5
(DIR) Post #AJbPJ1uJxWZPpWASlU by aaravchen@fosstodon.org
2022-05-19T07:00:04Z
0 likes, 0 repeats
the security threats and the user ignorance for plucky developers to be a reality in the area anymore. Gmail targets the particularly ignorant user, so it's not really a surprise. @digdeeper - 5/5
(DIR) Post #AJfVHwPSI6bUqXQzom by heluecht@pirati.ca
2022-05-21T06:25:50Z
0 likes, 0 repeats
I'm running my own mail server on my Synology NAS.
(DIR) Post #AKQIEt419l3jgFNT7Y by Sprinklednights@social.anoxinon.de
2022-06-12T20:11:33Z
0 likes, 0 repeats
@digdeeper @flabberghaster So it works still. I was setting up Gmail on Claws Mail today, and it works.
(DIR) Post #AKQLD66jzKObQ1UPUu by digdeeper@mastodon.honeypot.im
2022-06-12T20:44:51Z
0 likes, 0 repeats
@Sprinklednights @flabberghaster Cool.I tried to set up Thunderbird with Gmail for someone once, and it just sent a confirmation SMS to their phone TWICE, and ended up not accepting any of the confirmations.It's also not a certainty all other mail clients will work the same way as Claws.I think Gmail should still be dumped.
(DIR) Post #AKQX9iohKHEHlRCt1s by ryo@social.076.ne.jp
2022-06-12T22:58:46.509397Z
0 likes, 0 repeats
@digdeeper @Sprinklednights @flabberghaster Email got far too centralized over the past 2 decades.We all went from provider email to either Gmail or Outlook/Live/Hotmail/whateveryouwantocallit or Yahoo or (since more recently) Protonmail.I believe email will never be at the level it's designed to be on until all the more technical people set up their own mail servers for themselves, their friends, and their families.This has proven to work with XMPP, Pleroma, and PeerTube, kind of works with Mastodon, and not at all with Matrix (everyone is on matrix.org) and IRC (everyone used to be on Freenode, now on LiberaChat).And don't even get me started with LBRY, the only instance is still just Odysee, just 1 instance even after 6 years of its existence...
(DIR) Post #ALpeuAnvLRrfowooi0 by expertmanofficial@mstdn.social
2022-07-24T23:45:23Z
0 likes, 0 repeats
@digdeeper I would like to, but I like Gmail's interface. Is there any private email client which has similar interface as Gmail does? I also use CTemplar, but not so much, mostly Gmail.