« FreedomPop - free mobile phone useUpgrading to Windows 10 »

Insecure email clients


Insecure email clients

Permalink 08:48:00 pm by Eugene Gardner, Categories: Security

There be confusion in the shires as people receive "Password Incorrect" errors when the password has been held in the mail client (Windows Live Mail, Outlook, Thunderbird, 3rd party email apps on Android devices etc.) unchanged for years. This causes folks to think their account has been hacked so they change the password; but woa - the same error message pops up again ! What's that about ?

The security minded people who run Gmail unilaterally decided that the old way of authenticating: passing your username and password in unencrypted form, is too insecure for comfort. So rather than setting an appropriate error message they chose to frighten folks with a cryptic puzzler.

This only applies with mail clients using the older 'basic' authentication methods such as those above; clients using OAuth 2.0 will not suffer so. What's to be done ? There are three possible solutions.

  1. Switch to a better secured mail client. Sounds simple enough but it's a right pain to get all old messages, contacts, and calendar entries moved. Never mind learning a new interface.
  2. Switch on two factor authentication. This is a good balance between increased security and spending a lot of time reconfiguring. You will need a second device to authenticate with, but who doesn't have a smartphone these days. If you don't there are alternatives such as Google Authenticator and GAuth Authenticator. You may need to create an app specific password in the process for the app or service too.
  3. Turn off Gmail's enforcement of the limitation by modifying your Google account to "allow less secure apps".

Trackback address for this post

Trackback URL (right click and copy shortcut/link location)

No feedback yet

Click here to return to the 1ComputerCare home page.

This is designed to supersede the newsletters that I just don't have time to produce to the standard I would want any more. Please register so that you may read and leave comments and subscribe to have posts automatically e-mailed to you.

Comments and suggestions are always welcome.

User tools


December 2023
Mon Tue Wed Thu Fri Sat Sun
 << <   > >>
        1 2 3
4 5 6 7 8 9 10
11 12 13 14 15 16 17
18 19 20 21 22 23 24
25 26 27 28 29 30 31


XML Feeds

Multiple blogs solution