Re: google account say it will no longer deliver email

To: debian-user@lists.debian.org
Subject: Re: google account say it will no longer deliver email
From: Brian <ad44@cityscape.co.uk>
Date: Sat, 14 May 2022 12:42:28 +0100
Message-id: <[🔎] 14052022123527.9dc6a92dec9c@desktop.copernicus.org.uk>
In-reply-to: <Yn884/H+wwEnzkFg@tuxteam.de>
References: <[🔎] CABC2iTrhMekt385nPZ_mB53hqi8q0CuTViHhUwDJhbsmhjRWEA@mail.gmail.com> <[🔎] 11052022184915.da1551f4026c@desktop.copernicus.org.uk> <[🔎] CABC2iTp3yf=gfFOtrdC2B4ipXtNKivZ-x4zRnqY24h8Jdfjw-g@mail.gmail.com> <[🔎] slrnt7pn41.bb8.virgo.parna@dragon.ad.gaiasoft.ee> <[🔎] CABC2iTqxYpLTcQJZ5prvJkB2Nsab6ZhB54u9aMhTtfhdUtO40g@mail.gmail.com> <[🔎] d62f09f1-e725-2c5b-9c7f-d3ee15a59232@transient.nz> <[🔎] CAJmb-Yk6Z0k5X8LjDATDaBrgWqCbj-kZSic8jFW_0M5G60QLJA@mail.gmail.com> <[🔎] e066eeb3-0a73-a2d5-2637-849d9e9af4e5@transient.nz> <Yn884/H+wwEnzkFg@tuxteam.de>

On Sat 14 May 2022 at 07:23:47 +0200, tomas@tuxteam.de wrote:

> On Sat, May 14, 2022 at 02:40:53PM +1200, Ash Joubert wrote:
> > On 13/05/2022 12:23, Nicholas Geovanis wrote:
> > > That's the value added in exchange for Ash's "massive pain in the arse".
> > > Just making the 1st factor be
> > > a loong password is not equivalent to 2FA in any way. Machine reaching back
> > > to you is the difference.
> > 
> > There are attacks that 2FA can defeat, especially things like password reset
> > via compromised email server, but in general, two weak factors are not a
> > match for a strong unique random password [...]
> 
> [strong, unique, random]
> 
> That's it. The unique part can't be stressed enough: if your have
> umpteen services out there, it's a matter of time until one of
> those passwords leak (incompetent service provider, phishing,
> etc.). It better be different from your other passwords.
> 
> To minimise stress, I let a tool generate my passwords (pwgen).
> Important ones are 16 char (disk & backup encryption, bank account
> key armor, etc.), less important ones (e.g. local login) just 8.

Let me introduce you to my bank: they reduced the maximum 20 chars
to 16 and did not allow some special chars such as "!" and ".".
Mind you, I feel much more secure - 3FA is used :).

-- 
Brian.

Reply to:

Follow-Ups:
- Re: google account say it will no longer deliver email
  - From: <tomas@tuxteam.de>

References:
- google account say it will no longer deliver email
  - From: Fero Dali <ferodali@gmail.com>
- Re: google account say it will no longer deliver email
  - From: Brian <ad44@cityscape.co.uk>
- Re: google account say it will no longer deliver email
  - From: Fero Dali <ferodali@gmail.com>
- Re: google account say it will no longer deliver email
  - From: Virgo Pärna <virgo.parna@mail.ee>
- Re: google account say it will no longer deliver email
  - From: Fero Dali <ferodali@gmail.com>
- Re: google account say it will no longer deliver email
  - From: Ash Joubert <ash@transient.nz>
- Re: google account say it will no longer deliver email
  - From: Nicholas Geovanis <nickgeovanis@gmail.com>
- Re: google account say it will no longer deliver email
  - From: Ash Joubert <ash@transient.nz>
- Re: google account say it will no longer deliver email
  - From: <tomas@tuxteam.de>

Prev by Date: Re: Editing the DNS with Network Manager Non Root
Next by Date: Re: google account say it will no longer deliver email
Previous by thread: Re: google account say it will no longer deliver email
Next by thread: Re: google account say it will no longer deliver email
Index(es):
- Date
- Thread