I think I posted this a while ago asking for a way to get this working after 5/30. To be more precise, Google is doing away with the less
secure apps side of their email. Is there a way around this? I have

Mystic supports SSL (TLS 1.2) when sending e-mail. I don't know what Google's change is exactly (and I haven't tested it) so I cannot comment more.

Some people have told me they are using smtp2go.com for their SMTP with Mystic.

... What hair color do they put on the driver's licenses of bald men?

--- Mystic BBS v1.12 A48 2022/04/26 (Windows/64)
* Origin: Sector 7 * Mystic WHQ (1:129/215)

On 13 May 2022, g00r00 said the following...

Mystic supports SSL (TLS 1.2) when sending e-mail. I don't know what Google's change is exactly (and I haven't tested it) so I cannot comment more.

Some people have told me they are using smtp2go.com for their SMTP with Mystic.

They haven't changed their protocols, just won't allow non secure apps to login anymore as of 5/30. No biggie, I am going to give Yahoo a shot because according to what I am reading they still have the less secure apps setup...

... 24 hours in a day and 24 beers in a case. Hmmmm...

--- Mystic BBS v1.12 A47 2021/12/25 (Windows/32)
* Origin: The Wrong Number Family Of BBS' - Wrong Number ][ (1:267/157)

On 13 May 2022 at 07:13p, Al DeRosa pondered and said...

They haven't changed their protocols, just won't allow non secure apps
to login anymore as of 5/30. No biggie, I am going to give Yahoo a shot because according to what I am reading they still have the less secure apps setup...

I'm also wondering how I will keep this option running and have been using Gmail too until now.

--- Mystic BBS v1.12 A47 2021/12/24 (Linux/64)
* Origin: Agency BBS | Dunedin, New Zealand | agency.bbs.nz (3:770/100)

Paul Hayton wrote to Al DeRosa <=-

On 13 May 2022 at 07:13p, Al DeRosa pondered and said...

They haven't changed their protocols, just won't allow non secure apps
to login anymore as of 5/30. No biggie, I am going to give Yahoo a shot because according to what I am reading they still have the less secure apps setup...

I'm also wondering how I will keep this option running and have
been using Gmail too until now.

I also use a Gmail account to send automated/timed emails, from an event
or even a cron job. Going to check out how Yahoo does it, and I heard somewhere else that a site called 'smtp2go.com' offers a free level
account for doing similar things.

Let's keep this thread going as any of us learn more about best
solutions.



... She sells unix shells by the sea shore.
=== MultiMail/Linux v0.52
--- SBBSecho 3.15-Linux
* Origin: Palantir * palantirbbs.ddns.net * Pensacola, FL * (1:123/115)

They haven't changed their protocols, just won't allow non secure apps
to login anymore as of 5/30. No biggie, I am going to give Yahoo a shot

I can't really seem to find anything that specifies what the difference between a "more secure app" and a "less secure app" is on the Google site...

If I could figure out what they need I might be able to update it so it will continue to work. I guess I just need to find some time and get my fingers dirty trying it myself.

Let us know how Yahoo works out if you give it a shot. I know smtp2go.com was brought up a couple of times, but their free account is limited to 1000 emails per month (which is probably fine for most people).

... There are two types of people; those who finish what they start and

--- Mystic BBS v1.12 A48 2022/04/26 (Windows/64)
* Origin: Sector 7 * Mystic WHQ (1:129/215)

On 14 May 2022, Paul Hayton said the following...

I'm also wondering how I will keep this option running and have been
using Gmail too until now.

I have tried their apps password, I have tried Yahoo, Hotmail all of them have done away with Less Secure apps access, nothing works.. If you figure something out let us know.. :) Thanks Paul...

Al

... What was the best thing before sliced bread?

--- Mystic BBS v1.12 A47 2021/12/25 (Windows/32)
* Origin: The Wrong Number Family Of BBS' - Wrong Number ][ (1:267/157)

On 13 May 2022, Dan Clough said the following...

I also use a Gmail account to send automated/timed emails, from an event or even a cron job. Going to check out how Yahoo does it, and I heard somewhere else that a site called 'smtp2go.com' offers a free level account for doing similar things.

Yahoo did away with it also.. I will have to check out smtp2go..

AL

... No one knows what's next, but everybody does it.

--- Mystic BBS v1.12 A47 2021/12/25 (Windows/32)
* Origin: The Wrong Number Family Of BBS' - Wrong Number ][ (1:267/157)

On 13 May 2022, g00r00 said the following...

I can't really seem to find anything that specifies what the difference between a "more secure app" and a "less secure app" is on the Google site...

If I could figure out what they need I might be able to update it so it will continue to work. I guess I just need to find some time and get my fingers dirty trying it myself.

Let us know how Yahoo works out if you give it a shot. I know
smtp2go.com was brought up a couple of times, but their free account is limited to 1000 emails per month (which is probably fine for most
people).

Yahoo is a no go.. :( They also did away with the less secure apps switch.. As for the difference, they want you to now use a "App Password" for less secure apps, I think it may have something to do with the 2 step verification has to be turned on to get the password prompt. Not sure what the difference in the sending of user id and password is though.. I just get a could not connect to smtp server in my error log.

I know I am not being much of a help if there is anything I can do let me know.. I will also check out smtptogo..

Al

... A Skydiver is taken by the gravity of his situation.

--- Mystic BBS v1.12 A47 2021/12/25 (Windows/32)
* Origin: The Wrong Number Family Of BBS' - Wrong Number ][ (1:267/157)

On 13 May 2022, g00r00 said the following...

Let us know how Yahoo works out if you give it a shot. I know
smtp2go.com was brought up a couple of times, but their free account is limited to 1000 emails per month (which is probably fine for most
people).

Is there a place to set the "Send From" email address (and name)? Places like gmail would populate/override this for you automatically but sending from smtp2go.com emails are sent from "sysop@bbs.nrbbs.net" when one may prefer to have "warpslide@nrbbs.net" as the sending address (in case someone wants a reply) or perhaps "noreply@nrbbs.net" if they didn't.

===
From: "Northern Realms" <sysop@bbs.nrbbs.net>
To: "Warpslide" <user@example.domian>
Date: Sat, 14 May 2022 09:32:02
Subject: E-mail validation code for Northern Realms

Enter the following code when prompted by the BBS to validate e-mail:
SFTEUHNA
===

It's also worth noting that smtp2go & sendgrid require a custom domain name
to be able to work. It seems like AOL email still allows SMTP and may actually work if we were able to set the "From" email address to the account name:

===
SMTP R:220 smtp.mail.yahoo.com ESMTP ready
SMTP S:EHLO bbs.nrbbs.net
SMTP R:250-hermes--canary-production-bf1-579c78cbb7-l4mcv Hello bbs.nrbbs.net SMTP R:250-PIPELINING
SMTP R:250-ENHANCEDSTATUSCODES
SMTP R:250-8BITMIME
SMTP R:250-SIZE 41697280
SMTP R:250 STARTTLS
SMTP S:STARTTLS
SMTP R:220 2.0.0 Ready to start TLS
SMTP S:EHLO bbs.nrbbs.net
SMTP R:250-hermes--canary-production-bf1-579c78cbb7-l4mcv Hello bbs.nrbbs.net SMTP R:250-PIPELINING
SMTP R:250-ENHANCEDSTATUSCODES
SMTP R:250-8BITMIME
SMTP R:250-SIZE 41697280
SMTP R:250 AUTH PLAIN LOGIN XOAUTH2 OAUTHBEARER
SMTP S:AUTH LOGIN
SMTP R:334 VXNlcm5hbWU6
SMTP S:bnJiYnNAYW9sLmNvbQ==
SMTP R:334 UGFzc3dvcmQ6
SMTP S:bmF4cGN2aWxsbWR5a2Fsbw==
SMTP R:235 2.7.0 Authentication successful
SMTP S:MAIL FROM:<sysop@bbs.nrbbs.net>
SMTP R:550 Request failed; Mailbox unavailable
===


Domain Name | bbs.nrbbs.net
Max BBS Nodes | 3
Start Hidden | No
Max Poll Threads | 0
Poll DL Limit | 0
Poll UL Limit | 0
Enable SMTP Send | Yes
SMTP Host | smtp.aol.com:587
SMTP IP Type | IPV4 Only
SMTP Login | nrbbs@aol.com
SMTP Password | ****************
SMTP Auth Type | Login
SMTP Use SSL/TLS | Yes



Jay

... The worst thing about censorship is ██████████.

--- Mystic BBS v1.12 A48 2022/04/26 (Raspberry Pi/32)
* Origin: Northern Realms (1:229/664)

On 14 May 2022, Jay Harris said the following...

It seems like AOL email still allows SMTP and may actually work if we
were able to set the "From" email address to the account name:

Confirmed. I setup Thunderbird and forced it to use basic authentication and I was able to send messages about via SMTP:

mailnews.smtp: Sending message <b44ba687-2eb9-f38e-9585-c8a05baaec28@aol.com> mailnews.smtp: Connecting to smtp://smtp.aol.com:465
mailnews.smtp: Connected
mailnews.smtp: S: 220 smtp.mail.yahoo.com ESMTP ready
mailnews.smtp: C: EHLO [10.0.1.124]
mailnews.smtp: S: 250-hermes--canary-production-bf1-579c78cbb7-s7xvc Hello 250-PIPELINING
250-ENHANCEDSTATUSCODES
250-8BITMIME
250-SIZE 41697280
250 AUTH PLAIN LOGIN XOAUTH2 OAUTHBEARER
mailnews.smtp: Possible auth methods: PLAIN,LOGIN
mailnews.smtp: Maximum allowed message size: 41697280
mailnews.smtp: Current auth method: PLAIN
mailnews.smtp: Authentication via AUTH PLAIN
mailnews.smtp: C: Logging suppressed (it probably contained auth information) mailnews.smtp: S: 235 2.7.0 Authentication successful
mailnews.smtp: Authentication successful.
mailnews.smtp: C: MAIL FROM:<nrbbs@aol.com> BODY=8BITMIME SIZE=419 mailnews.smtp: S: 250 2.1.0 Sender <nrbbs@aol.com> OK
mailnews.smtp: MAIL FROM successful, proceeding with 1 recipients
[...]


Thunderbird by default wanted to use OAuth2 to log in which brings up a separate webpage where you would log in with your username, password and presumably 2FA/MFA if you had that enabled.

So it would appear if we could set the From email address then AOL & Yahoo (and sendgrid) would work, but longer term it appears that OAuth2 would need to be implemented which would also allow GMail to be used again:

https://developers.google.com/gmail/imap/xoauth2-protocol


Jay

... I knew I was an unwanted baby. One of my bath toys were a toaster.

--- Mystic BBS v1.12 A48 2022/04/26 (Raspberry Pi/32)
* Origin: Northern Realms (1:229/664)

Re: Re: Password Reset email..
By: Al DeRosa to Paul Hayton on Sat May 14 2022 06:53 am

I'm also wondering how I will keep this option running and have been using Gmail too until now.

I have tried their apps password, I have tried Yahoo, Hotmail all of them have done away with Less Secure apps access, nothing works.. If you figure something out let us know.. :) Thanks Paul...

Okay, I've got this sorted out. I can send automated (from a script or a cron job) emails via gmail.com still, using their "apps password". Here are the basic steps to get this working:

1. Log in to the gmail account you want to use for the emails. Since I don't want to 2-factor respond every time I login to one of my "regular" gmail accounts, I created a new account, for use with this automated sending only.

2. Enable the 2-factor authentication for this account. Somewhere under "Security" in settings.

3. Also in the Security section, you'll see a choice/link for "Apps passwords". Go in there, choose "Other" for the app, then give it a custom name (I chose 'mailx' since that's what's sending my emails). Then click "Generate" and it will give you a 16-character password to use for that account.

4. Have your script or whatever (even an email app like Thunderbird I suppose) log in with the account name and that new password, and it won't ask you for any 2-factor stuff.

For my use (on Linux), I have a mail config file called '.mailrc' in my home directory. Part of it's contents are:

account ReminderBoy {
set smtp-use-starttls
set ssl-verify=ignore
set smtp=smtp://smtp.gmail.com:587
set smtp-auth=login
set smtp-auth-user=XXXXXXXX@gmail.com
set smtp-auth-password=XXXXXXXXXXXXXXXX
set from="XXXXXXXX@gmail.com (Reminder Boy)"
}

This "account" is referenced from a script that calls the mailing program 'mailx', like this:

cat report | mailx -A ReminderBoy -s "Email subject here" recipient@XXX.net

Works like a champ. :-)

Let me know if any of you have success with this, if you would.
--- SBBSecho 3.15-Linux
* Origin: Palantir * palantirbbs.ddns.net * Pensacola, FL * (1:123/115)

On 13 May 2022 at 08:05p, Dan Clough pondered and said...

I also use a Gmail account to send automated/timed emails, from an event or even a cron job. Going to check out how Yahoo does it, and I heard somewhere else that a site called 'smtp2go.com' offers a free level account for doing similar things.

yes I saw g00r00 posting about this a few days ago, I'll have a look also. What I found with Gmail is they the Google account linked to it would from time to time auto disable the 'allow insecure apps' switch to off after I had enabled it in order to allow Mystic to engage with Gmail. It's been a pain as the ability for users to run a email/password reset option works then it does not until I catch it is broken again because of that Google change in setting.

Let's keep this thread going as any of us learn more about best solutions.

Yep agreed, now that I know Gmail/Google is going to be a bust I need to find some way to easily do what I was mostly easily doing using a free email service like Gmail.

--- Mystic BBS v1.12 A47 2021/12/24 (Linux/64)
* Origin: Agency BBS | Dunedin, New Zealand | agency.bbs.nz (3:770/100)

On 13 May 2022 at 11:52p, g00r00 pondered and said...

I can't really seem to find anything that specifies what the difference between a "more secure app" and a "less secure app" is on the Google site...

If I could figure out what they need I might be able to update it so it will continue to work. I guess I just need to find some time and get my fingers dirty trying it myself.

If you can this would be great, I too was wondering what would be required to jump that bar such that Google would continue to accept the sessions with Mystic for Gmail.

--- Mystic BBS v1.12 A47 2021/12/24 (Linux/64)
* Origin: Agency BBS | Dunedin, New Zealand | agency.bbs.nz (3:770/100)

On 14 May 2022 at 06:53a, Al DeRosa pondered and said...

I have tried their apps password, I have tried Yahoo, Hotmail all of
them have done away with Less Secure apps access, nothing works.. If you figure something out let us know.. :) Thanks Paul...

I'm not sure I can suss it Al :) But there's a good brains trust here in the group that I hope between all of us will :)

--- Mystic BBS v1.12 A47 2021/12/24 (Linux/64)
* Origin: Agency BBS | Dunedin, New Zealand | agency.bbs.nz (3:770/100)

Re: Re: Password Reset email..
By: Al DeRosa to Paul Hayton on Sat May 14 2022 06:53 am

Okay, I've got this sorted out. I can send automated (from a script or a cron job) emails via gmail.com still, using their "apps password". Here are the basic steps to get this working:

1. Log in to the gmail account you want to use for the emails. Since I don't want to 2-factor respond every time I login to one of my "regular" gmail accounts, I created a new account, for use with this automated sending only.

2. Enable the 2-factor authentication for this account. Somewhere under "Security" in settings.

3. Also in the Security section, you'll see a choice/link for "Apps passwords". Go in there, choose "Other" for the app, then give it a custom name (I chose 'mailx' since that's what's sending my emails). Then click "Generate" and it will give you a 16-character password to use for that account.

4. Have your script or whatever (even an email app like Thunderbird I suppose) log in with the account name and that new password, and it won't ask you for any 2-factor stuff.

For my use (on Linux), I have a mail config file called '.mailrc' in my home directory. Part of it's contents are:

account ReminderBoy {
set smtp-use-starttls
set ssl-verify=ignore
set smtp=smtp://smtp.gmail.com:587
set smtp-auth=login
set smtp-auth-user=XXXXXXXX@gmail.com
set smtp-auth-password=XXXXXXXXXXXXXXXX
set from="XXXXXXXX@gmail.com (Reminder Boy)"
}

This "account" is referenced from a script that calls the mailing program 'mailx', like this:

cat report | mailx -A ReminderBoy -s "Email subject here" recipient@XXX.net

Works like a champ. :-)

Let me know if any of you have success with this, if you would.

Running in Windows, but I will definitely give everything here a shot, will respond back with how it goes..

Al
--- SBBSecho 3.14-Win32
* Origin: The Wrong Number Family Of BBS' - Bucko's Den BBS (1:267/157.1)

Al Derosa wrote to Dan Clough <=-

This "account" is referenced from a script that calls the mailing program 'mailx', like this:

cat report | mailx -A ReminderBoy -s "Email subject here" recipient@XXX.net

Works like a champ. :-)

Let me know if any of you have success with this, if you would.

Running in Windows, but I will definitely give everything here a
shot, will respond back with how it goes..

Thanks and good luck, I don't know how to do any of that in Windows.
Look forward to hearing how you do with it.


... I was wondering why the baseball was getting bigger. Then it hit me.
=== MultiMail/Linux v0.52
--- SBBSecho 3.15-Linux
* Origin: Palantir * palantirbbs.ddns.net * Pensacola, FL * (1:123/115)

I have tried their apps password, I have tried Yahoo, Hotmail all of
them have done away with Less Secure apps access, nothing works.. If you figure something out let us know.. :) Thanks Paul...

"Less Secure App" isn't really a meaningful thing its just a term they made up I think. Mystic support TLS over SMTP which would make it use secure protocols.

I am wondering if it just means that you have to register the application with your Google account and they will give you a client ID and password to login with. This is how Google does things for home automations I think, so it might make sense here.

I am too busy again this weekend to work on it but I can try to take a look next weekend. I have a lot of stuff going on outside of work so my time off work is spent on other stuff right now :(

... You can learn many things from children... like how much patience you have

--- Mystic BBS v1.12 A48 2022/04/26 (Windows/64)
* Origin: Sector 7 * Mystic WHQ (1:129/215)

g00r00 wrote to Al DeRosa <=-

I have tried their apps password, I have tried Yahoo, Hotmail all of
them have done away with Less Secure apps access, nothing works.. If you figure something out let us know.. :) Thanks Paul...

"Less Secure App" isn't really a meaningful thing its just a term
they made up I think. Mystic support TLS over SMTP which would
make it use secure protocols.

I am wondering if it just means that you have to register the
application with your Google account and they will give you a
client ID and password to login with. This is how Google does
things for home automations I think, so it might make sense here.

I am too busy again this weekend to work on it but I can try to
take a look next weekend. I have a lot of stuff going on outside
of work so my time off work is spent on other stuff right now :(

I have already answered this, and provided the solution, right here in
this message thread.



... Pros are those who do their jobs well, even when they don't feel like it. === MultiMail/Linux v0.52
--- SBBSecho 3.15-Linux
* Origin: Palantir * palantirbbs.ddns.net * Pensacola, FL * (1:123/115)

On 15 May 2022, Paul Hayton said the following...

I'm not sure I can suss it Al :) But there's a good brains trust here in the group that I hope between all of us will :)

Oh I am sure it will get worked out.. The folks here know what they are doing!!

Al

... Confucius say: "Man who runs behind car gets exhausted"

--- Mystic BBS v1.12 A47 2021/12/25 (Windows/32)
* Origin: The Wrong Number Family Of BBS' - Wrong Number ][ (1:267/157)

On 15 May 2022, g00r00 said the following...

"Less Secure App" isn't really a meaningful thing its just a term they made up I think. Mystic support TLS over SMTP which would make it use secure protocols.

I am wondering if it just means that you have to register the
application with your Google account and they will give you a client ID and password to login with. This is how Google does things for home automations I think, so it might make sense here.

I am too busy again this weekend to work on it but I can try to take a look next weekend. I have a lot of stuff going on outside of work so my time off work is spent on other stuff right now :(

... You can learn many things from children... like how much patience
you have

--- Mystic BBS v1.12 A48 2022/04/26 (Windows/64)
* Origin: Sector 7 * Mystic WHQ (1:129/215)

No rush.. When you can look into it great.. It works for now, if it stops before we can get a full working set up so be it.. I won't push things but i will keep trying different things...

... 640K ought to be enough for anybody. -Bill Gates, 1981.

--- Mystic BBS v1.12 A47 2021/12/25 (Windows/32)
* Origin: The Wrong Number Family Of BBS' - Wrong Number ][ (1:267/157)

Al DeRosa wrote to g00r00 <=-

"Less Secure App" isn't really a meaningful thing its just a term they made up I think. Mystic support TLS over SMTP which would make it use secure protocols.

I am wondering if it just means that you have to register the
application with your Google account and they will give you a client ID and password to login with. This is how Google does things for home automations I think, so it might make sense here.

I am too busy again this weekend to work on it but I can try to take a look next weekend. I have a lot of stuff going on outside of work so my time off work is spent on other stuff right now :(

No rush.. When you can look into it great.. It works for now, if
it stops before we can get a full working set up so be it.. I
won't push things but i will keep trying different things...

Are you guys not seeing my posts here? I thought you answered one of
them... I already posted the answer to this, right in this thread.


... MultiMail, the new multi-platform, multi-format offline reader!
=== MultiMail/Linux v0.52
--- SBBSecho 3.15-Linux
* Origin: Palantir * palantirbbs.ddns.net * Pensacola, FL * (1:123/115)

|03Quoting message from |11Al Derosa |03to |11G00R00
|03on |1113 May 22 19:13:29|03.

On 13 May 2022, g00r00 said the following...

Mystic supports SSL (TLS 1.2) when sending e-mail. I don't know what Google's change is exactly (and I haven't tested it) so I cannot comm more.

Some people have told me they are using smtp2go.com for their SMTP wi Mystic.

They haven't changed their protocols, just won't allow non secure apps to login anymore as of 5/30. No biggie, I am going to give Yahoo a shot becau according to what I am reading they still have the less secure apps setup.

are you sure you configured it correctly with the app password? i got it working with pretty much everything

you could always run synchronet for only the email server and send it through that.

... Chthulhu calls his shots.

--- Renegade v1.30/DOS
* Origin: The Titantic BBS Telnet - ttb.rgbbs.info (1:129/305)

On 15 May 2022, Dan Clough said the following...

Are you guys not seeing my posts here? I thought you answered one of them... I already posted the answer to this, right in this thread.

LOL Yes, Dan I saw your post, I haven't tried your suggestion yet via a .bat file in Windows, but what g00r00 is trying to do is make a permanent fix in Mystic so scripts/bat files are not needed.. :)

Al

... Isn’t it a bit unnerving that doctors call what they do "practice"?

--- Mystic BBS v1.12 A47 2021/12/25 (Windows/32)
* Origin: The Wrong Number Family Of BBS' - Wrong Number ][ (1:267/157)

On 16 May 2022, Jas Hud said the following...

are you sure you configured it correctly with the app password? i got it working with pretty much everything

you could always run synchronet for only the email server and send it through that.

Everything is configured properly. I've been over the settings numerous times. I do run Synchronet, as a 2nd BBS along with a Door Server with SynchroNet, I am not looking per se' for a full blown email server, I can do that with my NAS. I am looking to make sure the password reset and email validation I used works. Thanks...

... Press any key to continue or any other key to quit...

--- Mystic BBS v1.12 A47 2021/12/25 (Windows/32)
* Origin: The Wrong Number Family Of BBS' - Wrong Number ][ (1:267/157)

Are you guys not seeing my posts here? I thought you answered one of them... I already posted the answer to this, right in this thread.

Your posts are coming in. But they are after the messages you're responding to.

... How is it possible to have a civil war?

--- Mystic BBS v1.12 A48 2022/04/26 (Windows/64)
* Origin: Sector 7 * Mystic WHQ (1:129/215)