[6/*] OK, Google. Well, it might have been nice to _not have a giant ad for the family plan with an upgrade button if I can't use it_. But, whatever. So I cancel my Premium subscription.
-
Show this thread
-
[7/*] I then go to a personal GMail account. You may ask why I have that. I have that because, even though now you can, you could not get Google Fi with G Suite originally, because that didn't work for several years. So I _already had_ a second account because of that nonsense.
1 reply 0 retweets 32 likesShow this thread -
[8/*] I signed up for YouTube Premium on that account. That seemed to work fine. So far, so good. I hit the "upgrade" button, and this time, it worked. It let me pay the upcharge and have a Family.
2 replies 0 retweets 30 likesShow this thread -
[9/*] I created a dummy account on GMail that was just for logging into the PlayStation, and I added it to my family. I also, just to see, tried adding my G Suite account to the family. It of course let me. And it even sent the invitation.
1 reply 0 retweets 30 likesShow this thread -
[10/*] But then when I clicked to accept the invitation, it brought me to a page saying that I couldn't join my family, because I was on G Suite. No big surprise there!
1 reply 0 retweets 35 likesShow this thread -
[11/*] So now I believe I am ready to log in to YouTube on the PlayStation, having insulated myself from the rather obvious security hole that neither Google nor Sony seems to think is concerning (which is especially amusing, considering Sony has had major hacks in the past).
1 reply 0 retweets 40 likesShow this thread -
[12/*] I click "TV & Video" on the Sony menu bar. This brings me to a menu, but YouTube is oddly absent. YouTubeTV is in its place, I guess because they are pushing that for the Olympics? So I go into the Apps and launch YouTube from there.
2 replies 0 retweets 30 likesShow this thread -
[13/*] I select "Sign In" from the menu, and it comes up with a EULA. I agree. It comes up with _an embedded web browser - the slowest one you can possible imagine_, and shows the Google sign-in.
2 replies 0 retweets 37 likesShow this thread -
Replying to @cmuratori
The browser is possibly the only acceptable part of the story. OAuth(-like) stuff kinda requires it. Google is providing the sign in form here, not Sony. It's likely that your password never goes to Sony, just Google (I mean, unless they have a keylogger in the browser).
1 reply 0 retweets 0 likes -
Replying to @laserbeam333 @cmuratori
OAuth, SAML, and other auth protocols are pretty ingenious in this regard, and if you saw the standard google form you used one of 'em. They make it pretty hard to screw up security. Sony doesn't get your pass, and whatever tokens Sony gets can't be used by other apps/services.
1 reply 0 retweets 0 likes
The virtual keyboard on the PS4 remembers everything you've typed for future autocomplete. It is _literally_ a keylogger. All it would take is a small bug - or even it accidentally just not marking that password box as a password - and your password would be visible to all users.
-
-
Replying to @cmuratori @laserbeam333
It is 100% not a secure environment to enter a password, period.
2 replies 0 retweets 1 likeThanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.