social.noyu.me

google i swear to god, if you're going to scare me with a “suspicious activity in your account” warning and expect me to take action, you have to actually tell me what the activity was. all you've told me, literally everything, is that it was from a Mac, 22 minutes ago

what was the activity? you give me no information, only that it is “suspicious”

what IP address was the user using? you won't tell me

do you know anything else? well, you won't tell me that either

this is incredibly unhelpful

oh, they do give very approximate location info, but not on the page for the activity itself, and less precisely than when i get a 2FA prompt. google what the fuck are you doing

look at this shit. LOOK AT IT. this is all the information google provides me accessing the page by the most normal route, the one that you take when they send you an email warning

things that would be infinitely more helpful:

• google, i have more than one device that you think is a Mac. you're wrong about that, but still. but i know you have more information than this. at least tell me the history of the session token!!!
• GIVE ME THE IP DAMNIT

while i'm at it, the “Next” button on the “Verify your recovery email” screen (part of the “Add or confirm your recovery email or phone number” sequence, after confirming the phone number) seems to do nothing whatsoever????

have google never heard of the concept of the boy who cries wolf. to know whether their warnings are credible i need to know WHY it thinks activity is suspicious, WHAT that activity is, and WHICH device it happened on. not just some “Mac”. which. i know you know more than that.

see google could, if they cared, tell me all of the following:

• the full user-agent string
• the IP address
• when that session token was created (when did someone log in)
• what has that session token been doing recently
• what characteristics the device has (screen size?)