online banking security
Hi all, I'm new to Linux(Ubuntu 11.4), just installed it two weeks ago. I've been a
member of Linuxquestion for about 2 or 3 years mostly lurking. I have building/buying computers for 30 years, first DOS,Windows 3.1, then Windows 95 through all to Win7. My question is for security of online banking and other financial things. Everything I've been reading on here indicates that no Antivirous/Malware is needed. Being new to Linux, I can't tell if ClamAV is working or if is even needed. I had thought about doing banking on my wife's machine(Windows only) rebooting to a Ubuntu LiveCD. Does this sound like a more secure idea? Our two other machines are both dual boot with Ubuntu alongside of Windows XP & Windows 7. Thanks in advance for any help and or suggestions. Bob |
Out of the box, Linux is far more secure than Windows. Generally speaking, antivirus and anti-spyware tools are not needed. There are some great articles out there that deal with this subject. Here is one such document: http://linux.oneandoneis2.org/LNW.htm You also mentioned using Ubuntu. I would recommend that you read the sticky posts in the security section of Ubuntuforums.org. There is a very well written and excellent white paper on Linux Security oriented towards new users coming from a window Environment.
Also, from most of the comments I have heard on the subject, using a liveCD for your banking is a very good move as by its nature it is impervious to most malware as it doesn't have perpetual storage. |
Quote:
If you are worried about security, for banking purposes, I suggest you "Make sure you have a physical firewall first." This is a suggestion. But, if you are connecting directly to the internet, without a firewall or at least a NAT'd address, with your Windows machines, you will probably find that you are being scanned quite a bit for vulnerabilities. As to linux. Yes, it is more secure. Yes, for banking it would be a sound idea to use a live CD as there is no permanent storage. |
A physical firewall is always a good idea. However, this is one of the really key differences between Linux and Windows. In Windows, a firewall is all but an absolute requirement to keep "bad" things out and without one you will become compromised in minutes, if not seconds. This won't happen with Linux. Linux keeps all of the ports closed by default and only if you install a server application that listens on the port will they be opened. You can use the firewall built into Linux, called iptables, which as it is a little difficult for beginners, use UFCW or Firestarter which are graphical front ends for it. The thing about a firewall in Linux is that it acts as a secondary, backup, barrier in case something does get opened.
|
Linux is not fully secure though no os is I would suggest a hardware firewall and a av program just incase, not much for securiety more for the possibality of a virus chances are small, but still never can be to careful.
|
I believe that the problems with security in on line banking are related to the protocols and are, therefore, platform independent. I would not use any platform to access my personal bank account over the Internet. I have specifically asked my bank to ensure that my account cannot be accessed over the Internet.
A man in the middle attack can happen to anyone. Every convenience carries a security vulnerability. |
Security is a group of tasks. You have to do as many as you can to be somewhat protected. Unfortunately you have to do a lot of your own work to see that your bank account has not been hacked. While it might be said linux is more secure the problem is that applications are the most risk.
Any system is subject to attack. See pawn2own for how short of a time it takes a hacker to run code. |
Five basic rules for banking security:
1. Firewall. 2. Don't use public or unencrypted wireless. Someone might sniff your connection. 3. Don't store your banking (or other financial) passwords on your computer and certainly not in a browser password manager, no matter how secure the browser claims to be. 4. Make sure the connection is https. 5. Ignore any emails that claim to come from your bank and request information. Banks don't do that. |
Quote:
Quote:
You can run, eg, ClamAV, but you'll probably never find anything that was going to harm you. The danger is that it might stop you from doing something more worthwhile thinking that an antivirus program is somehow all you need or particularly constructive. If you have a server that could pass files on to a windows box, then you can see the advantage, otherwise Rkhunter, maybe a more constructive use of your time....if you still feel nervous, the belt 'n braces approach of doing both isn't actually a problem. Quote:
The Frankbell list is quite good, but Quote:
The browser should be up-to-date, at least as far as security patches are concerned. There are people still running ancient versions of Internet Exploder, and asking whether that would be insecure is a bit like asking whether water could get through the holes in a sieve. And with just about as many leaks. Which doesn't let ancient versions of other browsers off the hook, but IE is distinctly worse than average, and average ain't good enough... @stress_junkie Quote:
|
All times are GMT -5. The time now is 02:54 PM. |