Quick Points on Gmail Security

At the end of my article in the current issue (Subscribe! TM) about the devastating hack of my wife's Gmail account, I promise a detailed online how-to about password generation and other handy security tips.

That will come ... real soon now

In the meantime, let me deal with the most frequent questions that have shown up in emails, concerning one of my two must-do recommendations*: if you use Gmail, you must switch on the two-step authentication system. For the official word from Google about this feature, see this and this. Here are the main questions I keep receiving:

1) Can I use this system even if I'm out of cell phone range? Yes. The app that generates new authorization codes is clock-based, rather than depending on a signal. (At least that is how the one for my Android phone works). You can get a code from the app on your smartphone whether or not it has any coverage at all.

2) What if I lose my phone or don't have it with me? You can generate a special set of one-time-use codes, print them out, and keep them in your purse or wallet. Then you use one of those if you happen to want to log on somewhere and you don't happen to have your phone. OK, if you're mugged, someone could get those codes -- and in theory, if the muggers also know your password (before you changed it), and understood what the codes were, they could get into your Gmail account. But that would be low on my list of worries during a mugging.

3) Is this a big nuisance? It is "a" nuisance, but not a big one. The nuisance/reward tradeoff is  comparable to having to carry keys to your house, versus leaving the door unlocked. On any machine you normally use for email, you can set things up so you have to enter the authorization code once per 30 days. It's only when you're using some unfamiliar machine -- at an internet cafe, at someone's home or office -- that you have to enter a code as well as your password. It's a five-second chore each time you do it. On the other hand, it creates a virtually impassable barrier for someone in Lagos or Moscow or Tianjin who has cracked your password but without the code, still cannot get into your account.  It protects you from what my wife encountered: the loss of six years' worth of mail, documents, photos, life. Take your choice. (And there can be a small additional one-time nuisance in generating special "application specific codes" for your iPad and certain other devices and mail programs. Tough it out.)

That's it for a few days. But do it now!

* Oh, yes, the other must-do chore: For any account that matters -- banking, email, sensitive data of any sort -- use a password that applies to that account alone, and that you have never used anywhere else. Reasoning explained in the piece.

Presented by

James Fallows is a national correspondent for The Atlantic and has written for the magazine since the late 1970s. He has reported extensively from outside the United States and once worked as President Carter's chief speechwriter. His latest book is China Airborne. More

James Fallows is based in Washington as a national correspondent for The Atlantic. He has worked for the magazine for nearly 30 years and in that time has also lived in Seattle, Berkeley, Austin, Tokyo, Kuala Lumpur, Shanghai, and Beijing. He was raised in Redlands, California, received his undergraduate degree in American history and literature from Harvard, and received a graduate degree in economics from Oxford as a Rhodes scholar. In addition to working for The Atlantic, he has spent two years as chief White House speechwriter for Jimmy Carter, two years as the editor of US News & World Report, and six months as a program designer at Microsoft. He is an instrument-rated private pilot. He is also now the chair in U.S. media at the U.S. Studies Centre at the University of Sydney, in Australia.

Fallows has been a finalist for the National Magazine Award five times and has won once; he has also won the American Book Award for nonfiction and a N.Y. Emmy award for the documentary series Doing Business in China. He was the founding chairman of the New America Foundation. His recent books Blind Into Baghdad (2006) and Postcards From Tomorrow Square (2009) are based on his writings for The Atlantic. His latest book is China Airborne. He is married to Deborah Fallows, author of the recent book Dreaming in Chinese. They have two married sons.

Fallows welcomes and frequently quotes from reader mail sent via the "Email" button below. Unless you specify otherwise, we consider any incoming mail available for possible quotation -- but not with the sender's real name unless you explicitly state that it may be used. If you are wondering why Fallows does not use a "Comments" field below his posts, please see previous explanations here and here.

The Horrors of Rat Hole Mining

"The river was our source of water. Now, the people won't touch it. They are repulsed by it."


The Horrors of Rat Hole Mining

"The river was our source of water. Now, the people won't touch it."


What's Your Favorite Slang Word?

From "swag" to "on fleek," tweens choose.


Cryotherapy's Dubious Appeal

James Hamblin tries a questionable medical treatment.


Confessions of Moms Around the World

In Europe, mothers get maternity leave, discounted daycare, and flexible working hours.


How Do Trees Know When It's Spring?

The science behind beautiful seasonal blooming

More in Technology

From This Author

Just In