Linux - SecurityThis forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
Want to know if using a live CD, say Knoppix, gives a good level of protection when moving money about? I am very unsophisticated on the subject of security.
This question has been addressed before on this site
Code:
if you have enough RAM you can ignore your local disks all together, and avoid the security risk of a swap file
How you do that then?
Perhaps it would be better to use an operating system inside the software computer, virtual box, that only ever gets used for this b*nking purpose?
Thanks any help. I'm not the greatest intellectual on the planet - this security stuff is a bit over-awing.
I'm paranoid, I thought some scum bag (or douche bag - incidentally, if you are an American, what is a "douche bag"?) might search up banking and target me.
I'm paranoid, I thought some scum bag... might search up banking and target me.
This seems unlikely. If you're of the financial means to attract this level of attention, I recommend that you physically sit down with your bank manager and come up with a solution that you're comfortable with. It may mean disabling all online bank account access, telephone system access, etc.
This seems unlikely. If you're of the financial means to attract this level of attention, I recommend that you physically sit down with your bank manager and come up with a solution that you're comfortable with. It may mean disabling all online bank account access, telephone system access, etc.
Thanks. I do not have great financial means but, very probably foolishly, most of them are on line. This gets me nervous.
Might a solution be to put them off line. Then using a Knoppix live CD put them on line. Do the transaction. Then take them off line again. All under the live Knoppix CD. ??
I know bugger all about this stuff, thought someone might know.
A live CD CANNOT get valuable security updates to the browser or the kernel or anything. Your stuck with whats on the CD and if a key security exploit is discovered you are in trouble.
Might a solution be to put them off line. Then using a Knoppix live CD put them on line. Do the transaction. Then take them off line again. All under the live Knoppix CD. ??
I'm not sure your banking institution would be amenable to that level of overhead.
If you need to perform banking transactions online, my recommendation would be to set up a Linux workstation / laptop for that purpose.
Keep it up to date.
Throw up a host-level firewall and deny all inbound traffic.
Bookmark your financial URLs.
Install Noscript, and allow only needed sites.
Pay attention to SSL warnings.
Don't use the banking box for anything but online banking.
IMO, that (along with common sense diligence) is sufficient for us middle-classers.
If you need to perform banking transactions online, my recommendation would be to set up a Linux workstation / laptop for that purpose.
Keep it up to date.
Throw up a host-level firewall and deny all inbound traffic.
Bookmark your financial URLs.
Install Noscript, and allow only needed sites.
Pay attention to SSL warnings.
Don't use the banking box for anything but online banking.
I really don't understand this, I've posted similar questions about security and was under the impression that security is not an issue so long as you don't run root. Many replies also came back about people not using even a firewall.
That said, do you really need to go noscript and have a firewall?
I really don't understand this, I've posted similar questions about security and was under the impression that security is not an issue so long as you don't run root. Many replies also came back about people not using even a firewall.
That said, do you really need to go noscript and have a firewall?
I believe he is trying to adjust your approach to your level of paranoia.You can do the level that makes you feel comfortable. My only concern about on-line banking is browser security and misleading websites.
I believe that the OP is right to be concerned about online security. A friend of mine had his banking account raided and, although he eventually got his money back from the bank, it was a real hassle.
If I remember rightly, my friend had to show that his computer security was okay before the bank would do anything and in the interim he didn't have any money in his account to conduct his normal daily affairs.
It sounds to me that kellyapproved has the right idea though I must confess that I don't know what noscript is.
I really don't understand this, I've posted similar questions about security and was under the impression that security is not an issue so long as you don't run root.
Security "not an issue"? That's silly. Not running as root addresses numerous attack vectors, but there are plenty it does not.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.