|
FastMail Forum All posts relating to FastMail.FM should go here: suggestions, comments, requests for help, complaints, technical issues etc. |
|
Thread Tools |
28 Jul 2016, 12:12 AM | #211 |
Master of the @
Join Date: Nov 2002
Location: Canada
Posts: 1,015
|
Since the clients don't support 2FA, you'll need to go into the Password settings and set up App Passwords for each of them.
|
28 Jul 2016, 12:43 AM | #212 | |
Senior Member
Join Date: May 2007
Location: Pakistan
Posts: 192
|
Quote:
SOLUTION; I removed 'App Password' for iPhone, from Settings; deleted the Fastmail account on iPhone and recreated it, with a new App Password. Everything working normal; only change I had to make was, a "Notes" folder was created under Inbox which I deleted from Fastmail email on web page in settings, under folders. Notes are also being synchronised with fastmail account. Everything normal again, including Contacts, Calendar and Notes. I will repeat same process for Mail app for Mac and see if it works. I had changed Password for Mail, using App password and it was working fine yesterday. This also stopped working today. |
|
28 Jul 2016, 06:21 AM | #213 |
Cornerstone of the Community
Join Date: Jun 2004
Posts: 743
|
I think you may have simply forgotten to update the password in the SMTP settings the first time around.
|
28 Jul 2016, 02:57 PM | #214 |
Senior Member
Join Date: May 2007
Location: Pakistan
Posts: 192
|
|
31 Jul 2016, 05:24 AM | #215 | |
The "e" in e-mail
Join Date: Oct 2002
Location: Holon, Israel.
Posts: 4,838
|
How about reenabling the printed list of OTPs as another method of 2FA?
I have been away from the forums for almost 4 years (the welcome message reads: You last visited: 10 Dec 2012 at 11:24 PM).
I'm really happy to see so many names I know still active! Hi everyone! Anyway, I spent a lot of time reading about the changes in how to login, in the blog and places linked to from the blog, and in the FastMail help documents, and this whole thread. I'm quite convinced that eventually this means better security for my email, but right now I'm quite overwhelmed. One thing I don't understand: RobN said: Quote:
What I'd like to see is that in addition to SMS, TOTP, U2F and YubiKey OTP, the "Set up Two-Step Verification" section would have an additional option of "Print list of OTPs". then this would be used just like the TOTP option (after the username and master password are entered, a prompt for and additional unused password from the list, or 3 fields in the login screen, for username, main password and OTP in the classic login page). This shouldn't be too difficult to implement. |
|
31 Jul 2016, 05:41 AM | #216 |
The "e" in e-mail
Join Date: Sep 2004
Location: The Netherlands
Posts: 2,905
|
Wow, 4 years! We/I missed you. I had hoped that not something seriously happened. Welcome back.
|
31 Jul 2016, 06:03 AM | #217 | |
The "e" in e-mail
Join Date: Oct 2002
Location: Holon, Israel.
Posts: 4,838
|
Is 2FA (when enabled) required to change the master password?
Quote:
I ask, because if someone is intercepting the communication when I login, then they can get the password, and then if the second factor is not required again then they can presumably change the master password and lock me out. Why am I asking? Because I know that all my web traffic from my work computer is constantly under MITM attack by this company or the products/services they supply to my employer. The it works is that when I connect using https the certificate is from proxy.employersdomain.tld. They decrypt all traffic that goes in and out (and presumably reencrypt it). So up till now I used a restricted login so that anyone who intecept it cannot kidnap the account. Now that I need to provide the master password I need to know that an attacker cannot use it to change security settings. |
|
31 Jul 2016, 06:06 AM | #218 |
The "e" in e-mail
Join Date: Oct 2002
Location: Holon, Israel.
Posts: 4,838
|
|
31 Jul 2016, 06:49 AM | #219 |
Cornerstone of the Community
Join Date: Jan 2003
Location: The Village
Posts: 605
|
Welcome back This is a good question - one that had not occurred to me. I have my own concerns about the new security system, but will look forward to someone's authoritative response to this!
|
31 Jul 2016, 06:57 AM | #220 | |
Cornerstone of the Community
Join Date: Jan 2003
Location: Oxfordshire, UK
Posts: 603
|
Quote:
|
|
31 Jul 2016, 07:43 AM | #221 | |
The "e" in e-mail
Join Date: Oct 2002
Location: Holon, Israel.
Posts: 4,838
|
Quote:
|
|
31 Jul 2016, 07:48 AM | #222 | |
Cornerstone of the Community
Join Date: Jan 2003
Location: Oxfordshire, UK
Posts: 603
|
Quote:
|
|
31 Jul 2016, 08:11 AM | #223 |
Essential Contributor
Join Date: Oct 2008
Posts: 212
|
It would be great if FM created a type of app password that works for web login, and of course not work for sensitive areas of the website like the security screens.
|
31 Jul 2016, 10:03 AM | #224 |
Member
Join Date: Nov 2010
Posts: 75
|
Great point DG... this reminds me of another pet peeve:
When I go to the security screen it shows me all the ways to do account recovery. If I step away from my computer and somebody navigates to that page, they now know various attack vectors to get my account. Why not just let account recovery information just be shown AFTER you enter a master password on that screen? (Heya hadaso... I too find it cool to see so many old faces here. Just wish it was under better circumstances. ) |
31 Jul 2016, 03:43 PM | #225 | |
The "e" in e-mail
Join Date: Apr 2011
Location: Manchester UK
Posts: 2,616
|
Quote:
https://www.fastmail.com/help/accoun...tyupgrade.html Quote: Alternative logins will be removed on August 31st, 2016: you have just the one password to remember. |
|