On 2017-02-10 12:14:05 (+0100), Klaus Ethgen <klaus+mai...@ethgen.de> wrote: > Am Do den 9. Feb 2017 um 21:25 schrieb John Levine: > > >I never understand why users won't just collect mail from the 'proper' > > >mail server rather than having to forward it all to gmail/hotmail. A > > >large portion of our support issues are to do with this forwarding. > > > > Bad reason: setting up POP collection takes two minutes, while adding a > > forward only takes 15 seconds. > > > > Better reason: POP polling can add noticable delays to your mail, and > > most places don't let you set the polling schedule. > > Much better reason: > > We teach people to not give their passwords away and now you want them > to give them to google? WTF? > > Never, never ever tell that to your users. Forward is the better idea > for that. Sure, you have to handle the spam yourself.
We are drifting a bit from mailop-appropriate topics but: This can be easily mitigated by deploying single-use passwords. Users need to be encouraged to set up two-factor authentication everywhere and pretty much all two-factor authentication schemes allow for setting up what are often called "application passwords" precisely for this kind of usecase. Don't say: "just give Google your password" but do say: "please generate a password for Google". Security is hard. Philip -- Philip Paeps Senior Reality Engineer Ministry of Information _______________________________________________ mailop mailing list mailop@mailop.org https://chilli.nosignal.org/cgi-bin/mailman/listinfo/mailop
