Rough times for Gmail in the new year

Rough times for Gmail in the new year

Summary: It seems the bug I referred to in my last post is only partially fixed -- but I am confident it will be closed up soon.  In the mean time, I recommend you log out of Gmail when you are not using it until the problems are solved.

SHARE:
TOPICS: Google
4

It seems the bug I referred to in my last post is only partially fixed -- but I am confident it will be closed up soon.  In the mean time, I recommend you log out of Gmail when you are not using it until the problems are solved.

Even though this XSS vulnerability takes the cake for Google's worst new years "oops", something else on Gmail deserves a little attention too.  Do you remember how your quota in Gmail was always increasing?  Well, it now appears to be capped at 2800MB -- though it's pretty tough to complain about that number.

Happy new years everyone! 

Topic: Google

Kick off your day with ZDNet's daily email newsletter. It's the freshest tech news and opinion, served hot. Get it.

Talkback

4 comments
Log in or register to join the discussion
  • Docs & Spreadsheets Down

    And now Google Docs & Spreadsheets is down. Geez.

    I use this like I would files stored on my USB drive. My USB drive is never down.
    timjfisher
  • gmail storage

    i don't think storage has been capped at 2800 megabytes, it just seems to have hit that point for the moment. the login screen says the following:

    'Oh, and you still have over 2800 megabytes (and counting) of free storage.'
    scottrreed
    • Gmail storage

      For me it's stating:
      You are currently using 2621 MB (94%) of your 2800 MB.

      So I think they will cap it for the moment.. and i'm afraid I actually gonna have to delete files, though that was the reason for me getting gmail, not to delete email anymore..
      Cheers..
      jaapwillem
  • Not XSS

    This is NOT an XSS bug, its a CSRF - Cross Site Request Forgery. XSS attacks require the user to click, for the most part. CSRF attacks require that the user only be logged into the site whos data you are trying to attack. CSRF exploits the users existing trust relationship.
    jmanico