0

Does anyone know which security protocol yahoo is using? It isn't mentioned in this article. I only know that neither Thunderbird nor Outlook 2010 are working if I enable the proposed security setting.

Currently IMAP with SSL/TLS is used. Do I need another authentication method? Or which email client does work with the new security setting?

testing
  • 879
  • 8
  • 23
  • 40
  • 2
    Save yourself the hassle, and leave yahoo for a better provider. They have violated responsible disclosure rules twice, was is to say they are not hiding even worse things they haven't disclosed. – cybernard Dec 28 '16 at 00:34
  • The only security that really exits for IMAP is SSL/TLS...Yahoo on their backend can detect your device type and require "device passwords" in place of your 2FA. TLS and 2FA are not connected – Ramhound Dec 28 '16 at 01:21
  • @cybernard: I saw [this post](http://superuser.com/questions/606406/feasibility-of-transferring-email-from-yahoo-to-gmail-using-imap-and-pc-email-cl) before and it looks interesting. I know it's another question, but how does the swap looks like? Leave the account as mentioned in the post and install a forwarding rule? – testing Dec 28 '16 at 16:29
  • @Ramhound: So I should enable 2FA so that I can manage the devices? – testing Dec 28 '16 at 16:29
  • That's not what I am saying – Ramhound Dec 28 '16 at 18:17
  • 1
    @testing log into gmail. Settings->Account and import. Import contacts and mail. Enter the source information as requested and everything is imported. – cybernard Dec 28 '16 at 19:35
  • @cybernard: So this is using IMAP to access the other accounts emails? What should happen with the yahoo account in the long term? If I would redirect now, I would get the email twice. – testing Dec 29 '16 at 17:51
  • 1
    @testing once gmail or whatever has everything imported. Delete every scrap of information in the yahoo account. Forward emails. Send out an email to all your contact "Please update your records, now on I will be using me@gmail.com. Also delete any references to @yahoo.com". After everyone has updated their records, change the password to something secure. Leave it for approx 3 mos to make sure all your contact got the message. You need to make sure all websites you have logins at are updated. Then delete the account. – cybernard Dec 29 '16 at 19:13
  • Some people say keep the account empty so someone else can't claim it, and then use it to reset a password for another account that still has your old email. – cybernard Dec 29 '16 at 19:14

0 Answers0