GeneralThis forum is for non-technical general discussion which can include both Linux and non-Linux topics. Have fun!
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
So,
I´m travelling and I REALLY need to check my email. The only problem is that when travelling the hostel computer has a load of dodgy.exe´s running right?
I don´t want to login and expose all my google checkout creditcard numbers right?
So what do we do?
Google has 2 factor auth using a mobile phone SMS message but:
- that´s hassle to do every time, including when you dont need this security and
- you have to have a working mobile. Sometimes you don´t have a signal and when you get a new phone number in a new country you have to register the number again, exposing details once again
I can think of 2 ideas but both aren´t ideal and only fix access to email, not google docs etc.
1) Setup squirrelmail on your own server and have that server contact gmail via pop or imap, then use squirrelmail OTP passwords to access email
2) Forward all emails to a low security email address of some kind. The problem with this is that then someone will prbably eventually send you sensitive info
So,
- any other ideas?
- USB ports arent always accessible but it would be handy to have a UbiKey... cant see a way to use that
- I think lasspass needs a browser plugin, it´s not in the cloud and that´s not always possible to install in many places either
- how´s about a SMS forwarding service
Either boot with a live CD (and check gmail from there) if possible, or bring your own netbook / tablet / smartphone / whatever with you. In the former case, there's still the possibility of hardware keyloggers.
Google also offers an Authenticator app if you have an Android, iPhone, or Blackberry smartphone/tablet. It generates a unique code every x seconds that has to be entered along with your password so that only someone with immediate access to your phone can log into your account. If you have the app installed you don't need any kind of cell signal to be able to use it.
This won't prevent keyloggers and data sniffers from seeing whats in your account when you open it, but it will prevent anyone from hijacking your account.
Google also offers an Authenticator app if you have an Android, iPhone, or Blackberry smartphone/tablet.
Thanks, unfortunately I still have Symbian... so...
ordered a GalaxyS1 today mostly for this purpose!
Bit worried about getting it stolen but hopefully I can camoflague it a bit!
Good stuff
-j
p.s...
I guess I could run Google authenticator inside a virtualised android hosted somewhere that does have one time passwords,
that way if my phone gets stolen I can still access my account securely
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.