Queries about Internet Banking, Ebay, Paypal and Cookies
 

Gents, What can you guys tell me about using any of the following - Internet Banking, Ebay, Paypal and also about Cookies - when I am using Linux (specifically Zorin).

My past windows experience is that some web pages will not work unless you set your windows internet options to "allow all cookies".

Similarly my Internet Banking did not work with windows when I blocked "Java".

Hence I am worried some of these activities might be affected when I try to access using Zorin.

Comments?

I do not do economic transactions over the internet, so shall limit myself to the cookie issue.
Different browsers have different degrees of cookie management. Firefox allows a configuration where the user must confirm or reject every cookie. (Can be very troublesome if using a site that has many cookies. I have seen a few that have scores. No exaggeration.) Other browsers, like Midori and dwb, do not allow that fine-grained a level of control, but do have the option of "no third-party cookies." However, all browsers will allow some degree of cookie management.

I would think the first thing is make sure you have all security updates. I just came from Windows XP a few months ago and towards the end I was very concerned about the above activities. I would not even go to those sites until running multiple virus scans and then going directly to the site. Now I feel very comfortable with using ebay and paypal with Xubuntu. I figure this is about as secure as I can get. However, when I do land on the page I always click the "info" (not sure what it is called), on Chrome you click the green portion before URL that shows it is secure connection. That confirms it is indeed Ebay etc. and also it tells if I visited before. So that is extra security to make sure you didn't end up on a bogus site pretending to be ebay etc. or you spelled the URL wrong etc. I try to avoid online banking, but still much more comfortable with linux.

Why are you so concerned about cookies? I just checked in Chrome and you can "manage exceptions" so that say you must have them enabled for ebay, you can set it for just that site to allow. I am pretty sure Firefox has similar.

Java is the one thing that would worry me! I was hoping to never use it again. I'm sure there are experts here who can guide you on that; maybe you can set up so it just enables for the banking site. (you do mean "java" and not "javascript", correct?)

At least you are much safer than with Windows! Again, make sure you have all security updates and a good browser. Also, if you are not aware of the Ebay problem recently, go change your password there!

I've been doing online banking, paypal, and online shopping for years using both Windows & Linux using Firefox & Chrome and never had a problem. Could it happen, sure, but I have to live life and online financial transactions are part of that. Keep your system updated is the best advice.

The Linux distro you use is pretty moot in this discussion as all work basically the same. Zorin is a spin of Ubuntu which is a spin of Debian...

I find internet banking makes it easy to keep track, and notice any little "mistakes" quickly - which I think is worth the risks involved, especially since my current bank started taking steps to reduce the security of real-world transactions. :rolleyes:

I normally use "Private Browsing" (or equivalent) for banking, as well as for sites that go out of their way to track me (*cough*Farcebook*cough*) - that way, they can use whatever cookies they want, and they all get thrown away as soon as I finish.

I recommend:

1. In Firefox use the allow by exception options for cookies and javascript/pop-ups
2. us noscript FF plugin and again, allow by exception
3. use the https-everywhere plugin in FF: get it from eff.org

Personally I have a separate install for banking only (!!) and do the above, plus absolutely no googling: type in bank website names by hand and bookmark them.
Set default page to none.

Optionally flashblock and Ghostery FF plugins.

HTH :)

Run Ghostery. Seriously, get Ghostery. Set it to block everything, and then whitelist sites and trackers as necessary. Java is a security nightmare, and banks which use it are pitifully unaware of security requirements. If your bank requires it, then you have to make a choice - accept the security risks or change banks. I've been doing online banking since sometime in the late '80s, and never had a problem. It just takes some common sense and caution. Cookies are very small text files which allow sites to identify you. You can delete them after each browsing session if you want. There are browser addons that do that for you. But sites do need to be able to set cookies to insure you're who you claim to be while you're logged on to the site. Without them, it would be possible for a third party to get to your financial data after you log on. Cookies are not necessarily bad things. They let you move around the site after you log in, without having to log in again every time you go to a different page. Install BetterPrivacy and you can easily manage them. I have it set to delete most stuff, but allow what my bank sets, so the bank knows who I am when I log in. YMMV.