undefined | Better HN

0 pointscodedokode7y ago0 comments

By the way, to use IMAP/SMTP you will need to switch "enable unsecure apps" in Google Account preferences. Google considers all auth methods except OAuth2 to be insecure (and OAuth2 doesn't work in my slightly outdated version of Thunderbird). But I think the opposite: with OAuth2 the token is stored on your device, with password auth the password is not stored anywhere.

0 comments

pas7y ago

That stored token is the same as a long lived session cookie, providing the same level of security.

j / k navigate · click thread line to collapse

0 pointscodedokode7y ago0 comments

0 comments

pas7y ago

That stored token is the same as a long lived session cookie, providing the same level of security.

j / k navigate · click thread line to collapse