yahoo oauth2 & imap worked - then their security blocked me

[petspy]

any work around for this? or are all yahoo email owners screwed out of enjoying poppeeper

Hi (my name),
Your account is currently not enabled to sign in from apps, that do not meet modern security standards (ex. Older versions of mail and calendar apps such as Outlook). As a result, we prevented a sign in to your Yahoo account (my account name).
Date and Time: Fri, Jun 16, 2017 10:03 AM EDT
Location: United States (IP Address: 24.xx.xxx.241)
We strongly recommend that you switch to Yahoo's apps such as Yahoo Mail on desktop and mobile and remove your account from all other less secure apps.
If you still want to use an app that uses less secure sign in, go to https://login.yahoo.com/account/security#other-apps and turn on "Allow apps that use less secure sign in". This is not recommended and may leave your account more vulnerable to compromise. To learn more, please visit our help page: https://help.yahoo.com/kb/account/SLN27791.html
Yahoo blocked this sign in attempt, but if it looks suspicious to you or it’s not from an application that you’re using, go to https://login.yahoo.com/account/change-password and change the password for your account.
You are receiving this notification because AccountXX@yahoo.com is listed as a recovery email for (my account name)
Sincerely,
Yahoo

[mjs]

This is a relatively common problem with Yahoo accounts that can be triggered by Yahoo in a number of ways which is easily addressed as discussed below.

Using OAuth2 will avoid this specific warning from Yahoo or the alternative is to set Yahoo accounts to use "less secure apps". The former is what we recommend you do (use OAuth2) to resolve this which can be done by using the IMAP protocol (Server type = "IMAP") for your Yahoo accounts in combination with using OAuth2 by pressing the "OAuth2" button in the accounts edit window and follow the subsequent steps.

The warning from Yahoo that you have posted is a security measure Yahoo has implemented for some time now that in this case is triggered by a combination of things which includes POP Peeper accessing your Yahoo account(s) which is what you of course want. By following the recommendation above this essentially informs Yahoo that it is okay for POP Peeper to do this.

There are a number of topics that discusses this, you can click HERE and HEREand HERE for just a few of the most recent topics that have posts that explicitly discuss the above where in the former two links I have redirected the link to a post in that topic that specifically addresses the comments regarding using "Oauth2" above (the last link discusses this topic exclusively, where interestingly the OP stumbled upon the "OAuth2" option on their own ).

[petspy]

thanks for the prompt reply - flipping this account setting switch ON my yahoo account seemed to do the trick

[Jeff]

Just to re-iterate what lakrsrool mentioned: using OAuth2 is the preferred method instead of enabling "allow apps that use less secure sign in."