July 7, 2008

Find Who Has Access to Your Gmail Account

After years of testing, Gmail has finally added a very useful security feature: tracking open sessions. If you log in to Gmail from more than one computer and you forget to sign out, you'll be able to see the list of locations where your account can still be accessed.


Until now, the only solution when you forgot to log out from Gmail after using a public computer was to change your password. Otherwise, anyone could access your account without knowing the password. Now you can sign out remotely from all the locations where your Gmail account is still open.

If you click on "Details" in Gmail's footer, you'll find a lot of interesting information about your sessions. "The top table, under Concurrent session information, indicates all open sessions, along with IP address and access type -- which refers to how email was retrieved, for example, through iGoogle, POP3 or a mobile phone. The bottom table, under Recent activity, contains my most recent history along with times of access. I can also view my current IP address at the very bottom of this window, where it says This computer is using IP address...".


This could be useful if you want to find whether someone else has access to your account: you'll be able to find the IP address and the date of the most recent activity in your account.

Gmail's blog mentions that this feature is currently being rolled out in the new version of Gmail, so you may not see it right now. Google AdSense, PayPal and orkut are three other services that show the time of your last login so you can protect against abuse, but Gmail's new feature is much more advanced.

Among the things you can do to protect your Gmail account, it's a good idea to sign out after reading your email, not to select "remember me" when you log in from a public computer and to choose a good password that should remain secret.

54 comments:

  1. Google's excellent care of USERS, COMMENDABLE !

    ReplyDelete
  2. Only available in the new GMail? What about us Opera users?

    ReplyDelete
  3. You Opera guys crack me up. Less than 1% market share.

    ReplyDelete
  4. doesn't work on my gmail...no details at the bottom of the screen

    ReplyDelete
  5. I'm still signed onto my Grandma's computer after I installed the Gtalk client onto her computer. Any chance that I will be able to log off from Gtalk on her computer?

    ReplyDelete
    Replies
    1. it is easy.. change the password.. automatically will be logged out

      Delete
  6. A really simple but innovative feature for enhanced security and control for users

    ReplyDelete
  7. I wonder when google apps users will have the chance to enjoy this new feature?

    ReplyDelete
  8. It is a great security feature...
    but doesn't work on my gmail...no details link in footer...any idea when this feature will be available...

    ReplyDelete
  9. How long is google storing that kind of information?

    ReplyDelete
  10. @KenBW2:
    Until Google stops using browser sniffing to prevent Opera from loading the new Gmail, bookmark this URL:
    http://mail.google.com/mail/?ui=2&nobrowsercheck=1

    (nobrowsercheck=1 skips browser detection)

    ReplyDelete
  11. @Nick who said:
    << doesn't work on my gmail...no details at the bottom of the screen >>

    I only see the new feature in one of my Gmail accounts, so we should wait a couple of days until all the accounts have it.

    ReplyDelete
  12. oh, is it a linkable page or do we actually have to wait? :)

    ReplyDelete
  13. How come I don't see this option on the bottom of my inbox as described? Do you have to do something special to turn this feature on?

    ReplyDelete
  14. Having a GMail account is great (besides from the fact that GMaail means Google Mail), you can access your emails from any pc with an internet connection. In addition you never have to delete or backup your emails. That's brilliant and the truth be told I would not want to be without it. Even though all my emails are indexed and held on the Google servers forever - if your got nothing to hide what does it matter!

    Anyway this is a useful little tool to see if your account has become compromise any way.
    http://tnetech.net

    ReplyDelete
  15. @tnetech, re : "if your got nothing to hide what does it matter!"

    see http://writ.news.findlaw.com/dean/20071019.html

    Personally i trust google quite a bit with my data, but it is always your choise who you share data with, just once you have then they might pass that on.

    People should not *have* to trust *anyone*
    - imma
    ps: sorry if i'm overreacting here :-(

    ReplyDelete
  16. Finally Google implements this. Thanks

    ReplyDelete
  17. How does this work with the legacy survivors of the Gmail bug?
    My email address some.guy@gmail.com is shared by someguy@gmail.com -- which is a bug they fixed 2 years ago but really didn't mitigate any of the current users with the problem.

    Do I see someguy@gmail.com's accesses?

    ReplyDelete
  18. Of course... lower class citizens are not so lucky...

    ReplyDelete
  19. wen u checked my account it showed me one of my sessions which was 2 days old...

    i guess any session lasts 4 about 30 mins... so even if i didnt sign out, how can my 2-day old session be dangerous?

    ReplyDelete
  20. This is just simply fantastic!
    I am so glad they decided to add this into Gmail, losing an e-mail account or having someone sneakily read your e-mails can be incredibly bad, and very annoying.

    ReplyDelete
  21. Note: PayPal is, contrary to this post, not a Google product. Google Checkout is the cleaner, Googley counterpart.

    ReplyDelete
  22. @Anonymous:
    I didn't say that PayPal is a Google product.

    ReplyDelete
  23. I'm using Gmail under Google Apps and now I see the new feature. However, it's not showing the logins I make to the account from the mobile Gmail client on my N95.

    ReplyDelete
  24. Simple, logical, now give me folders on gmail! :P

    ReplyDelete
  25. very good feature....

    ReplyDelete
  26. This is great, but it would be even better if there was an option to log out all other sessions when signed in from multiple locations. For example, in the past I have forgotten to sign out of gmail from the work computer. It would be so helpful if I could log in from home (or another location) and log myself out of the other session (the one I forgot to log myself out of). I know AOL Instant Messenger (AIM) has this feature - or at least it did when I used to use it.

    ReplyDelete
  27. @Noshaba:
    That's exactly what you can do with the new feature: remotely log out from all the open sessions.

    ReplyDelete
  28. Thanks! I was actually just informed of the same thing by a friend. Must have overlooked it - my mistake :). I should not underestimate Google.

    Specifically about remote sign outs: http://gmailblog.blogspot.com/2008/07/remote-sign-out-and-info-to-help-you.html

    ReplyDelete
  29. thank u 4 this post.

    I found it very useful to me.

    I also want u 2 excuse me to use this on my blog .. I'll surely mention ur post

    ReplyDelete
  30. hey guys...i dont think the times shown in the table for the previous login are correct in any respect...this is very misleading...

    ReplyDelete
  31. Something must be done to know who is logging into my account.this may be implimented by say,if the account access IP of my account and somebody else's account is same at the same time,den it is quite probable dat he is d culprit...

    GOOGLE find some efficient ways for it...

    ReplyDelete
  32. how to find IP address who is trying to log on to my account by giving different password but correct user id.

    ReplyDelete
  33. Completely useless feature, some dumbass thought that it's best if ONLY the last 48 hours show up. I have suspicions for 4 days ago and I can't verify... nice work...

    ReplyDelete
  34. Thank you for the information. It'll help me because sometime i access through cybercafe. When the session expires,I'm unable to log off.

    ReplyDelete
  35. While this is a fantastic option, I question how many people are aware of it. I have seen countless instances of people leaving themselves signed into their Gmail accounts (at work, school and at home!). I think it should be the default that, whenever you sign in at location X, you are automatically signed out of location Y. In my experience, this has actually seemed to be the case...

    ReplyDelete
  36. can i see more than the last 5 log in sessions??

    ReplyDelete
  37. after knowing the ip address ..then what next? how will we know the person who has accessed the gmail

    ReplyDelete
  38. I came to know about this very recently. This allows us to know only latest 10 logins'. Is it possible to know at least latest 25 logins'? Please help. Somebody has logged into my mail and i want to know it very badly.

    ReplyDelete
  39. guys i too want too see more than 5 sessions.someone has hacked into my account..please let me know the same.

    ReplyDelete
  40. I too have a need to know past logins from longer ago. I only recently found out about this and need to see who accessed my account 2 months ago. Is there finally a way to turn on a audit trail from longer ago?

    ReplyDelete
  41. when i tried to login to my account ,it shows account cant open b'cos of some illegal activity on my account. hw can i recover it.

    ReplyDelete
  42. Wheneven I try to login my gmail account this shows server certificate is expired . What do I do ?

    ReplyDelete
  43. If I've forgotten who's been invited to view my google calendar, how do I find out who has access?

    ReplyDelete
    Replies
    1. Need help need to find out whos been using my acct. this would be the 5. Acct i have to get rid of. I'm tierd of my bank acct being exposed and google is n1sexxymommie ot helping. texts and ails are coming and going in front of my eyes help...

      Delete
  44. I am very diligent about logging out of each session (Account has been hacked and I'm aware of the security measures that must be taken) With that said, I just logged into my account and checked "Details" right away (Once hacked, forever paranoid) And it does show an open session, showing my current session and another open session at my current home IP address. WHAT does this mean? Also, My gmail had shown open by "unknown device" in NV. I live in CA. I closed sessions and changed password. I then "disabled IMAP and I no longer access gmail via my cell phone. These arbitrary out of state sessions no longer happen. YET this new problem of the session being open at my home or work IP does now exist. Passwords changed regularly, computers and networks are clean. Any ideas? Thanks for the advice!

    ReplyDelete
  45. someone was accessing my gmail account and has deleted some mails. how do i verify from which ip address it was done from? i want the details from 8th July 2012 till 15th Sep 2012. Please help fast. Thanks

    ReplyDelete
  46. Hi,
    I someone is accessing my gmail account even after all the security like 2 step security & strong password etc...

    Can I get the log details of my mail??? For 6 month's access log???

    Please anyone help me how to get this information...

    Thanks in Advance.

    ReplyDelete
  47. Hi,
    I someone is accessing my gmail account even after all the security like 2 step security & strong password etc...

    Can I get the log details of my mail??? For 6 month's access log???

    Please anyone help me how to get this information...

    Thanks in Advance.

    ReplyDelete
  48. Hi,
    I someone is accessing my gmail account even after all the security like 2 step security & strong password etc...

    Can I get the log details of my mail??? For 6 month's access log???

    Please anyone help me how to get this information...

    Thanks in Advance.

    ReplyDelete
  49. How do I find out whose ip address (i have the ip number) accessed my account in London when I was not there and have never been there on a particular date?

    ReplyDelete
  50. Someone has logged in my account I want to my dashboard 12/23/2015.To see a that said current device. Was a Linux and I could find location on it

    ReplyDelete

Note: Only a member of this blog may post a comment.