Re: Confining the guest account using AppArmor
Originally Posted by
bodhi.zazen
Some day they will convert to a more secure OS and stop using javascript and flash, IMO there is no role for such things when it comes to financial transactions, certainly not at the expense of security.
Unfortunately, there's no financial incentive for them to change. As KrebsOnSecurity reports, banks turn to the courts to make it increasingly difficult for customers to sue them for bad security practices. (Unlike personal accounts, commercial accounts are exempt from reimbursement for losses due to online fraud.) Plus, banks rely on third parties to provide the security which further insulates them from having to share their customer's pain.
I've been building a custom remix of Ubuntu to use for eBanking that runs from a Live USB. Works great, and I plan on doing a writeup. I'd actually feel safe using this to access my bank from any PC -- in an Internet cafe, hotel lobby, or other unsafe location.
The difference between theory and reality is that, in theory, there should be no difference but, in reality, there always is.
Bookmarks