On Sun, 18 Nov 2012, Mike wrote:
> On Sun, 18 Nov 2012 09:05:09 -0500, David Schmidt
>> On 11/18/2012 12:58 AM, Mike wrote:
>>> I'm getting the "Verify Your Identity" questions when I try to login:
>>> "Enter the name of the city where you usually sign in"
>> I'm not sure of that one - I'd guess Cupertino, given the tone of the
>> other questions?
Yes, I think it's a real question.
The problem with gmail is that people are using it, and thus there is a
lot of information there. Order from some big chain, wham, your address
is likely in some email. Things like that, which makes gmail a really
good thing to break into, if you think that sort of thing is good.
Which means google is adding security measures. That thing about wanting
your "mobile phone" number isn't some restriction, it's an attempt at
adding something that won't be out of your possesion. Like those attempts
at preventing the copying of old programs, they'd do things like put
soemthing in the manual that you needed to run the program, and then make
that page hard to photocopy. Or stick a "dongle" on the back, so the
software wouldn't run without it. If you set up gmail so it needs the
"mobile phone" to access the account, it eliminates a lot of chances taht
someone could access the gmail account.
They can track where you are coming from. They notice that it's not the
same IP address as the last time. They wonder if it's a breakin, so they
throw up something so you need not only the password but some bit of
information you entered when you set up the gmail account.
I had this happen a few months ago when I used my tablet from some public
wifi access point. They asked one of those password recovery questions
for added security, I couldnt' remember what answer it was supposed to be.
THis shared use of a gmail account is precisely what gmail doesn't want.
And since it gets IP addresses from all over, the activity is seen as
suspicious. And then the login information keeps changing (maybe because
someone forgets the pasword and goes through the motions to reset it?),
which then causes login attempts that fail. That causes more suspicion.
They asked for the city where you normally sign in because they know (or
would on most accounts) the usual IP address and thus location where an
account is normally accessed, and you would know that too. If you can
answer properly, then that increases the chances that you are who you say
Repeated wrong answers will jut keep causing flags to go up.
And that's just going to keep happening with a shared account. Someone
won't remember the password, make gueses, and then make it harder for the
next. Some of these questions may not be about the password changing, but
just that something has caused a flag to go up, but since people aren't
realizing it, they fuss over thinking the password has changed.
>>> "Answer your security question