Re: less secure apps

2016-04-16 Thread Jonathan N. Little 

Stanimir Stamenkov wrote:

Sat, 16 Apr 2016 10:52:08 -0400, /Jonathan N. Little/:



I can see it as available option on all my IMAP accounts, but Christian
Riechers pointed in another reply:

Sat, 16 Apr 2016 12:34:16 +0200, /Christian Riechers/:

Sat, 16 Apr 2016 11:54:11 +0200, /Christian Riechers/:


For Thunderbird OAuth2 only works for the gmail.com and googlemail.com
domains.


I probably should have been more specific.
OAuth2 can be selected as Authentication Method within Account Settings
when the server domain name is either gmail.com or googlemail.com.
This goes for IMAP and SMTP servers only.




Ahh, I missed that. I see that I now have the option on the smtp, but I 
am using pop for receiving so I guess there is no benefit to change 
anything.


--
Take care,

Jonathan
---
LITTLE WORKS STUDIO
http://www.LittleWorksStudio.com
___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey

Re: less secure apps

2016-04-16 Thread Stanimir Stamenkov 

Sat, 16 Apr 2016 10:52:08 -0400, /Jonathan N. Little/:

Philip Chee wrote:


Intresting tidbit: During development, Several Thunderbird developers
wanted to their Oauth2 option to be labelled "less secure Google
authentication".


:-) Good one!

But Oauth2 option is still not available in SeaMonkey yet, right? If
so I do not see the option in 2.40.


I can see it as available option on all my IMAP accounts, but 
Christian Riechers pointed in another reply:


Sat, 16 Apr 2016 12:34:16 +0200, /Christian Riechers/:

Sat, 16 Apr 2016 11:54:11 +0200, /Christian Riechers/:


For Thunderbird OAuth2 only works for the gmail.com and googlemail.com
domains.


I probably should have been more specific.
OAuth2 can be selected as Authentication Method within Account Settings
when the server domain name is either gmail.com or googlemail.com.
This goes for IMAP and SMTP servers only.


--
Stanimir
___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey

Re: less secure apps

2016-04-16 Thread Stanimir Stamenkov 

Sat, 16 Apr 2016 20:59:51 +0800, /Philip Chee/:


The Oauth2 code is 100% shared with Thunderbird. It's also 100% written
by the Thunderbird developers, so everything should work identically. It
might be down to the settings made by the admin of your company Google
account.


Yes, turned out to be some weird combination of properties which 
have ended up in my preferences:


mail.server.server5.realuserName = @
mail.server.server5.userName = sdfdsfds

Setting "userName" to match "realuserName" via  made 
it work.



Intresting tidbit: During development, Several Thunderbird developers
wanted to their Oauth2 option to be labelled "less secure Google
authentication".


--
Stanimir
___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey

Re: less secure apps

2016-04-16 Thread Jonathan N. Little 

Philip Chee wrote:

On 16/04/2016 16:33, Stanimir Stamenkov wrote:


I've tried changing the Server Settings / Authentication method of
my Gmail account (in SeaMonkey) to "OAuth2", and the first time I've
tried to open the Inbox I've been presented with a web form (in a
new window) to log in.  Then I've been able to use my account from
SeaMonkey just like before, even when I've set my Google account to
not allow "less secure apps".

This appears o.k. but then I've found I'm not able to do the same
with my company account, which is also provided by Google but using
a dedicated domain name (the company domain).  For some reason my
username in the OAuth2 login form is always changed to
@gmail.com, rather than using @
which appears to break the whole thing.  It's interesting that a
colleague of mine using Thunderbird doesn't experience the same, and
is now using OAuth2 for accessing his company account from withing
Thunderbird.


The Oauth2 code is 100% shared with Thunderbird. It's also 100% written
by the Thunderbird developers, so everything should work identically. It
might be down to the settings made by the admin of your company Google
account.

Intresting tidbit: During development, Several Thunderbird developers
wanted to their Oauth2 option to be labelled "less secure Google
authentication".


:-) Good one!

But Oauth2 option is still not available in SeaMonkey yet, right? If so 
I do not see the option in 2.40.


--
Take care,

Jonathan
---
LITTLE WORKS STUDIO
http://www.LittleWorksStudio.com
___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey

Re: Message headers return to bold

2016-04-16 Thread Daniel 

On 16/04/2016 4:06 AM, Bruce Hagen wrote:

Daniel wrote:

On 13/04/2016 1:11 PM, Bruce Hagen wrote:

After marking messages as read in a newsgroup, if I leave the group and
come back every message header is bold again. Just reset Windows 10, but
backed up SeaMonkey with MozBackup and all newsgroups came back as
expected. Any thoughts?


Bruce, SM keeps a record of which messages you have read in each group
of a
news server that you have subscribed to. For instance, for this news
server,
news.mozilla.org, the file is news.mozilla.org.rc.

If a message number is missing, in a news group, that indicates to SM
that
that message  is unread, so the message Subject: in the Threads Pane, is
bolded. Ensure that you have not set the relevant *.rc file to be Read
Only,
as that would cause SM to think you have not read any of the messages in
that group.

As you're on Windows 10, you may need to adjust your File Viewing
settings,
in Windows Explorer, so you can display the files buried down in your SM
profile!

HTH




Thanks, but the issue mysteriously ended. Not sure what was up, but it's
all good now.


All's well that ends  as long as it ends!!

--
Daniel

User agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:43.0) Gecko/20100101 
SeaMonkey/2.40 Build identifier: 20160120202951

or
User agent: Mozilla/5.0 (X11; Linux x86_64; rv:41.0) Gecko/20100101 
SeaMonkey/2.38 Build identifier: 20150903203501

___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey

Re: less secure apps

2016-04-16 Thread Philip Chee 
On 16/04/2016 16:33, Stanimir Stamenkov wrote:

> I've tried changing the Server Settings / Authentication method of 
> my Gmail account (in SeaMonkey) to "OAuth2", and the first time I've 
> tried to open the Inbox I've been presented with a web form (in a 
> new window) to log in.  Then I've been able to use my account from 
> SeaMonkey just like before, even when I've set my Google account to 
> not allow "less secure apps".
> 
> This appears o.k. but then I've found I'm not able to do the same 
> with my company account, which is also provided by Google but using 
> a dedicated domain name (the company domain).  For some reason my 
> username in the OAuth2 login form is always changed to 
> @gmail.com, rather than using @ 
> which appears to break the whole thing.  It's interesting that a 
> colleague of mine using Thunderbird doesn't experience the same, and 
> is now using OAuth2 for accessing his company account from withing 
> Thunderbird.

The Oauth2 code is 100% shared with Thunderbird. It's also 100% written
by the Thunderbird developers, so everything should work identically. It
might be down to the settings made by the admin of your company Google
account.

Intresting tidbit: During development, Several Thunderbird developers
wanted to their Oauth2 option to be labelled "less secure Google
authentication".

Phil

-- 
Philip Chee , 
http://flashblock.mozdev.org/ http://xsidebar.mozdev.org
Guard us from the she-wolf and the wolf, and guard us from the thief,
oh Night, and so be good for us to pass.
___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey

Re: less secure apps

2016-04-16 Thread Stanimir Stamenkov 

Sat, 16 Apr 2016 11:33:53 +0300, /Stanimir Stamenkov/:

Wed, 13 Apr 2016 11:16:29 -0500, »Q« wrote:


According to
, Thunderbird
has
supports it as of v. 38, so maybe it's coming to SeaMonkey.


I've tried changing the Server Settings / Authentication method of
my Gmail account (in SeaMonkey) to "OAuth2", and the first time I've
tried to open the Inbox I've been presented with a web form (in a
new window) to log in.  Then I've been able to use my account from
SeaMonkey just like before, even when I've set my Google account to
not allow "less secure apps".

This appears o.k. but then I've found I'm not able to do the same
with my company account, which is also provided by Google but using
a dedicated domain name (the company domain).  For some reason my
username in the OAuth2 login form is always changed to
@gmail.com, rather than using @
which appears to break the whole thing.  It's interesting that a
colleague of mine using Thunderbird doesn't experience the same, and
is now using OAuth2 for accessing his company account from withing
Thunderbird.


All right.  Seems I've resolved it.  For some reasons I had got in 
my settings stuff like:


mail.server.server5.hostname = dsfdsfsd
mail.server.server5.realhostname = imap.gmail.com
mail.server.server5.realuserName = @
mail.server.server5.userName = sdfdsfds

Don't know where these "realxxx" properties come from, but that's 
what I really see in the Preferences GUI, and then for the OAuth2 
login it was using the given "userName" and not the "realuserName". 
 Changing the "userName" value to match "realuserName" (via 
) – I can now successfully authenticate using OAuth2 
and use Gmail with my company account.


--
Stanimir
___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey

Re: less secure apps

2016-04-16 Thread Christian Riechers 
On 04/16/2016 12:05 PM, Stanimir Stamenkov wrote:
> Sat, 16 Apr 2016 11:54:11 +0200, /Christian Riechers/:
>> For Thunderbird OAuth2 only works for the gmail.com and googlemail.com
>> domains.
> 
> Doesn't appear true given my later comment.

I probably should have been more specific.
OAuth2 can be selected as Authentication Method within Account Settings
when the server domain name is either gmail.com or googlemail.com.
This goes for IMAP and SMTP servers only.
___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey

Re: less secure apps

2016-04-16 Thread Stanimir Stamenkov 

Wed, 13 Apr 2016 10:10:58 -0500, »Q« wrote:


By default, Google only accepts OAuth 2.0 authentication.  Enabling
access by what Google calls "less secure apps" just lets you (or your
SeaMonkey) use other methods of secure authentication to log in to your
Gmail account.

Except for Google itself, I don't think there's anyone claiming that
using authentication methods other than OAuth 2.0 reduces security.


It might be considered more secure as the password is not stored on 
the client but just some access token which is not life-time, valid 
only for use by the given client application, and users could always 
review and revoke it, when they log in to the "central" account 
management interface (Google).



It's widely believed that Google made OAuth 2.0 the only method
available by default simply to try to force people to use Google
products to connect to Gmail;  I dunno.


Dunno, given I'm now using SeaMonkey to connect to Gmail using OAuth2.

--
Stanimir
___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey

Re: less secure apps

2016-04-16 Thread Stanimir Stamenkov 

Sat, 16 Apr 2016 11:54:11 +0200, /Christian Riechers/:


For Thunderbird OAuth2 only works for the gmail.com and googlemail.com
domains.


Doesn't appear true given my later comment.


On 04/16/2016 10:33 AM, Stanimir Stamenkov wrote:


It's interesting that a colleague of mine using
Thunderbird doesn't experience the same, and is now using OAuth2 for
accessing his company account from withing Thunderbird.


Why don't you ask your colleague?


I'm the one who made him try the OAuth2 method with his Thunderbird, 
and I've personally seen it all have gone well.


I've further asked him to check up what's seen in his stored 
passwords and I've seen:


Website: oauth://accounts.google.com
Username: @

I'll download a Thunderbird copy to try, and see if it's still the 
same, or I may be missing something.


--
Stanimir
___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey

Re: less secure apps

2016-04-16 Thread Christian Riechers 
On 04/16/2016 10:33 AM, Stanimir Stamenkov wrote:
> Wed, 13 Apr 2016 11:16:29 -0500, »Q« wrote:
>> In ,
>> Rick Merrill  wrote:
>>> I have not heard of  OAuth 2.0 - an open standard - is it not
>>> compatible with seamonkey?
>>
>> I don't know.  According to
>> , Thunderbird has
>> supports it as of v. 38, so maybe it's coming to SeaMonkey.
> 
> I've tried changing the Server Settings / Authentication method of my
> Gmail account (in SeaMonkey) to "OAuth2", and the first time I've tried
> to open the Inbox I've been presented with a web form (in a new window)
> to log in.  Then I've been able to use my account from SeaMonkey just
> like before, even when I've set my Google account to not allow "less
> secure apps".

With OAuth2 "less secure apps" don't need to be allowed.

> This appears o.k. but then I've found I'm not able to do the same with
> my company account, which is also provided by Google but using a
> dedicated domain name (the company domain).  For some reason my username
> in the OAuth2 login form is always changed to @gmail.com,
> rather than using @ which appears to break the
> whole thing.

For Thunderbird OAuth2 only works for the gmail.com and googlemail.com
domains.

> It's interesting that a colleague of mine using
> Thunderbird doesn't experience the same, and is now using OAuth2 for
> accessing his company account from withing Thunderbird.

Why don't you ask your colleague?
___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey

Re: less secure apps

2016-04-16 Thread Stanimir Stamenkov 

Wed, 13 Apr 2016 11:16:29 -0500, »Q« wrote:

In ,
Rick Merrill  wrote:


I have not heard of  OAuth 2.0 - an open standard - is it not
compatible with seamonkey?


I don't know.  According to
, Thunderbird has
supports it as of v. 38, so maybe it's coming to SeaMonkey.


I've tried changing the Server Settings / Authentication method of 
my Gmail account (in SeaMonkey) to "OAuth2", and the first time I've 
tried to open the Inbox I've been presented with a web form (in a 
new window) to log in.  Then I've been able to use my account from 
SeaMonkey just like before, even when I've set my Google account to 
not allow "less secure apps".


This appears o.k. but then I've found I'm not able to do the same 
with my company account, which is also provided by Google but using 
a dedicated domain name (the company domain).  For some reason my 
username in the OAuth2 login form is always changed to 
@gmail.com, rather than using @ 
which appears to break the whole thing.  It's interesting that a 
colleague of mine using Thunderbird doesn't experience the same, and 
is now using OAuth2 for accessing his company account from withing 
Thunderbird.


--
Stanimir
___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey