I have been called a retro-grouch for my firm stance against keeping my data in "the cloud", but this is a perfect example of how the cloud can go wrong.
How do you protect yourself from a similar fate? The way I do it is by managing all of my data locally on my laptop (and of course making religious, at-least-once-daily backups of said data). I download all my email using POP3, from a VPS that I am paying for into fetchmail / procmail / mutt on my laptop. My address book is managed locally in a YAML database, and my calendar is managed using flat text files and Remind. Note that none of this precludes remote access to my data, either; I carry a copy of PuTTY on my USB drive, and with the appropriate SSH key and/or S/Key password I can access my data, securely, from anywhere in the world.
That's just one way of going about it, of course; you don't have to go all Unix-retro to achieve the same peace of mind. The theory is simple: just find a way to consolidate the master copies of your important data on machines that are physically under your control, and then make frequent backups of these machines. If possible, also make sure that you have some sort of service agreement with the servers you rely upon for email, Web service, XMPP, and so on. Yes, it is more expensive, and yes it's more difficult than just signing up for a free GMail account, but your data is worth it.
I think there are two questions about the cloud: Do we trust the company? Do they care?
In this case I don't think anyone's terribly worried about Google not having backups or dropping off the radar tomorrow, but they pretty obviously don't care about individual customers.
That can be solved by dealing with a small to medium sized business that has real interest in keeping you as a customer. We pay all of $10 a month for the place where our email is hosted, and the customer support has always been a charm usually responding within an hour and at the longest thusfar, three hours.
One piece of advice: Keep local copies of all your email. This bit me once when I needed to make a meeting downtown and only had the address on GMail. I couldn't get a connection (low signal to noise ratio) and I almost missed the thing.
Luckily, I conjured up the street number from memory as I glanced at the many building numbers on the 1700 block of K, and the company I was meeting with was listed on the matching building's directory.
That evening I connected Thunderbird with GMail (POP) and changed my settings to delete all mail from the server. I have local copies of everything with the added benefit that, theoretically, less of my email is floating around Google's server rooms.
You don't have to delete from the server. Gmail supports IMAP, and if you set Thunderbird to cache the whole account, even if Google locks you out your entire offline cache is safe (and can be copied into another account if necessary).
Right, but I don't necessarily want alll of my messages vulnerable to compromise. Once I've deleted it from the server, I don't have to worry about somebody getting into my account, or the possibility of unscrupulous practices by Google.
I must say, the failure of Google to adequately communicate the reason behind an account suspension scares me. As someone who depends on Google just as much day to day, and even sets up Google for Business accounts for some of our customers, it worries me.
This is somewhat of a chink in Google's armor (the whole cloud concept really). Managing that many users AND monitoring for misuse of accounts with finite resources is a more than daunting task.
It's never a good idea to store your data in one place that someone else owns, especially when you are one of millions of users. With a free solution you're not going to get the attention you deserve.
Google for Business gets semi-special treatment in the fact that Google actually has real info on their customers whereas a random Google account is sometimes difficult to truly authenticate for.
You can't even sell the domain names you purchase with the google for business thing. Maybe you can if you shell out the money for the 'real' account, but for the 10$ domain and normal account, as far as I can tell, you are SOL if you want to sell the domain to someone else:
I'm a "superuser" over on Google Groups to support different Google products (free schwag...)
This kind of thing happens all of the time. Sometimes it gets resolved, sometimes it does not. Everytime, it takes longer to fix than it should.
Google does not support any of these services you have mentioned (other than adwords). Think long and hard about this. If you rely on any of these services, this same situation could happen to you. Be prepared: Have backups and a backup plan ready just in case.
My wife was once in a similar situation: gmail, blogs, contacts, everything was blocked. After one week they finally unblocked the account. It seems they have not enough staff to solve these issues.
Google's profit model relies on a high volume of customers, all of whom they make a very small amount off of. Thus it's understandable that their customer support is non-existent. If they had someone to answer the amount of queries they'd receive from their billion users, they'd be financially unsustainable.
That's one of the many reasons we just pay $8 a month for Exchange hosting.
This is partly why my @jgc.org email is forwarded to gmail and not managed by Google. I retain control of the domain and the receiving MX which then forwards to gmail. If gmail were to die I can reroute around it in seconds.
I have that set up, but how much of your email comes in to your @gmail.com address?
If you use gmail as your outgoing email, then the sent emails will have a Sender: header (and return-path) of your @gmail.com address, even if you set a role.
If you search gmail for 'to: you@gmail.com' you'll see how much mail is bypassing your domain.
> then the sent emails will have a Sender: header (and return-path) of your @gmail.com address
You can setup alternate e-mail addresses in Gmail and tell it to reply with the one it was sent to. It's still sent off Gmail servers, but with the Sender changed (so you just setup your SPF to allow Gmail).
But your reply-to is set to your own domain. Unless someone willfully types in your "@gmail.com" address then when they reply to your email it will go to your own domain.
That's unfortunate. I think it'll get resolved soon, but still, what a pain!
I pay for the premium google apps service. I like to think the turnaround will be pretty quick if I run into any issues like this. I think it's worth it for imo the best email client and storage around with the least hassle.
I used to use oddpost (paid for that as well), but then they were swallowed by Yahoo. I can't stand Yahoo's mail. Way too cluttered for my taste.
Email is such an important application for me, day to day, that I have absolutely no problem paying google a modest yearly fee for their service. Sure there are plenty of free options out there, but I bet their support is equally dismal. Good customer support is expensive because there are a lot of whiny user's out there that also need to be supported. Pay the premium.
One more reason why I have my own server with a reputable host. Not only can I configure my spam filters however I want, forward my emails however I please, keep local and online copies simultaneously... yadi yada, I have full control over my email.
------------------------------------------------------------------
This message was sent from a notification-only email address that does not accept incoming email. Please do not reply to this message. If you have any questions, please visit the Google AdWords Help Centre at https://adwords.google.com/support/?hl=en_GB to find answers to frequently asked questions and a 'contact us' link near the bottom of the page. ----------------------------------------------------------------
That's a relief. Is there a website that has these posted when they appear "in the wild?" It would be nice to check against the known attacks, and post when a new one appears.
I don't know anything about the author, but has he done anything to enrage the G?
If this is truly just a random account disablement, then it would seem that Google needs to augment their customer support accessibility and procedures. If the author is/was somehow "competing" with Google on some level, or making anti-G remarks, I would be curious about such details.
Thanks for taking the time to reply to my comment. I trust your response, which means that this is truly an oddly random event, and indicative (IMO) of Google not being truly ready for things to lose the "beta" icon.
If the author is/was somehow ... making anti-G remarks
Are you saying that would have been a fair reason to suspend his accounts?
At Justin.TV, one of the things I'm proud of is that we clearly communicate the things that can get your account suspended. Making "anti-Justin.TV remarks" is certainly not one of them!
> I swear I've seen this story on HN a week ago where a very nice google employee decided to step in and help the guy out. In fact the first paragraph was exactly the same as I remembered the bit about Adwords being cut off as well as other services.
Edit; knew I saw this on HN - I thought this had been resolved.
As brk said I also think there is more to this. I doubt any service with a reputation to uphold would just randomly give a block without any detail at all.
I love Google, I'm a sucker for the whole cloud concept and I think Google is the place to go for this - they're open, they're free and they're not going to go away anytime soon. I don't keep my extra confidential documents on Docs and am sensible enough to make backups - therefore I've got nothing to worry about in that respect.
Just make sure you have everything covered. All those sites, all your data.
It's very easy to say making backups is obvious, but how easy is it to make backups of adwords keyword lists every time you change them... Maybe your google account is a simple one with not many services in use.
Ashamed to admit it (especially here) but I still use Hotmail. Why? You can use a local client and send/recieve via WebDav.
As a consultant I'm regularly working on site at companies where they have everything except port 80 blocked. So IMAP, POP and (especially) SMTP are out. If you want a local copy of your mail in this situation WebDav's really the best solution.
Obviously and rather sadly a big drawback of freemium services is lack of support. Before signing up for these services,you need to ask yourself a question: How long can I live without accessing my data?
If the answer is "Not very long" then you will have to crack open your wallet.
Right there on the home page mibbit.com is asking for Yahoo!Messenger passwords. So it is essentially a phishing operation, no? Google is right to disassociate itself from that.
Update: I just spent a couple of hours getting imap-ssl and smtp-ssl setup with mysql auth etc on my server. Mail config isn't something I enjoy, but I guess if you want something done properly...
Have you thought about trying google apps? The premier version gives you a phone number to call, 99.9% uptime guarantee, and they handle backups for you.
I am using google apps - free version for now.
I'm not convinced the premium ver would be any better at support though. I've been calling the adwords support, as I spend a fair amount with adwords, and they are still "looking into it".
I actually am using Apple Mail to access ymail most of the time, with the web access as a secondary method now - but thanks for your insightful analysis.
1) He goes on about how secure his password is, but then admits that someone got into his secondary email account. His secondary account should be just as secure. This calls to doubt his security savvy.
My backup email received some "password reset instructions" emails for my main google account. - eg someone clicked on [forgot my password] on google, and entered my account name.
How do you protect yourself from a similar fate? The way I do it is by managing all of my data locally on my laptop (and of course making religious, at-least-once-daily backups of said data). I download all my email using POP3, from a VPS that I am paying for into fetchmail / procmail / mutt on my laptop. My address book is managed locally in a YAML database, and my calendar is managed using flat text files and Remind. Note that none of this precludes remote access to my data, either; I carry a copy of PuTTY on my USB drive, and with the appropriate SSH key and/or S/Key password I can access my data, securely, from anywhere in the world.
That's just one way of going about it, of course; you don't have to go all Unix-retro to achieve the same peace of mind. The theory is simple: just find a way to consolidate the master copies of your important data on machines that are physically under your control, and then make frequent backups of these machines. If possible, also make sure that you have some sort of service agreement with the servers you rely upon for email, Web service, XMPP, and so on. Yes, it is more expensive, and yes it's more difficult than just signing up for a free GMail account, but your data is worth it.