On-line banking
in [UK Linux]
|
Prev: Edimax EW-7628IG driver
Next: using dd to wipe a disk
From: Ben Bacarisse on 17 May 2006 22:56 This may be slightly off topic, but I would like to take your views of banks whose on-line services behave well with Linux browsers (particularly Epiphany 2.14.1). This latest update has a new user agent string which seems to make it look different enough to plain Firefox that my bank (The Royal Bank of Scotland) now rejects my connection. I know I can change it (the user agent string) but a recent email tells me sternly that I should not (it will compromise security!) and this feels like the last straw. The RBS was late in introducing Internet banking, took ages to get their pages usable in Firefox and are not saying that they can't guarantee my security if I use a comparatively up-to-date Linux browser but they could if I used IE 5 on Window 95. -- Ben.
From: Nemo on 18 May 2006 00:41 Ben Bacarisse wrote: > This may be slightly off topic, but I would like to take your views of > banks whose on-line services behave well with Linux browsers > (particularly Epiphany 2.14.1). Change your bank. -- Nemo
From: ac on 18 May 2006 01:48 Ben Bacarisse wrote: > This may be slightly off topic, but I would like to take your views of > banks whose on-line services behave well with Linux browsers (particularly > Epiphany 2.14.1). This latest update has a new user agent string which > seems to make it look different enough to plain Firefox that my bank (The > Royal Bank of Scotland) now rejects my connection. > > I know I can change it (the user agent string) but a recent email tells me > sternly that I should not (it will compromise security!) and this feels > like the last straw. The RBS was late in introducing Internet banking, > took ages to get their pages usable in Firefox and are not saying that > they can't guarantee my security if I use a comparatively up-to-date Linux > browser but they could if I used IE 5 on Window 95. > there are several issue here. - The principle that the bank seems to continue with a blinkered approach perhaps not wanting to be bothered with non ie browsers however popular or beneficial. Partly an economic business decision, but long term a bad decision. Intensely annoying and dis agreeable for OSS users though - an emotional or even political decision as a customer. Who *do* you want to give your money to? - the reality that as an organisation they are attempting in some way, even incompetently) to define an environment which they think is safe for their banking. Ultimately then question is - how many and exactly which, browsers will they check out in any detail? - ie is known to be pretty flakey, and I would never use it, but the alternatives (I use firefox or konquerer) are also going to have weaknessess. These may not be currently known of course. And probably much less risk than ie. - does your browser have weaknessess (when used with their system)? How can this be known? How active is the community etc support of your browser? Is your browser more or less likely to be a specific target for malware? Banks sometimes provide a test version online of their approach, maybe that will be useful in deciding. Have you emailed your bank explaining you might move your account for security reasons? If you change banks or open an alternative account as part of the change process, ensure that you inform the new bank why. It is a significant hassle to change banks, not unsimilar to changing operating systems (!) Good luck -- ac
From: gort on 18 May 2006 01:52 are not saying that > they can't guarantee my security if I use a comparatively up-to-date Linux > browser but they could if I used IE 5 on Window 95. Well theres your proof that they don't know what they are talking about. Security and IE, two words which should never be used together. Change your bank pronto. I have to say I have been with LloydsTSB for years and never had any trouble with any browser in Linux or windows for that matter. But I always use Linux to access my account, just for the added security. HTH Dave
From: chris on 18 May 2006 02:23
Ben Bacarisse wrote: > This may be slightly off topic, but I would like to take your views of > banks whose on-line services behave well with Linux browsers (particularly > Epiphany 2.14.1). This latest update has a new user agent string which > seems to make it look different enough to plain Firefox that my bank (The > Royal Bank of Scotland) now rejects my connection. > > I know I can change it (the user agent string) but a recent email tells me > sternly that I should not (it will compromise security!) and this feels > like the last straw. The RBS was late in introducing Internet banking, > took ages to get their pages usable in Firefox and are not saying that > they can't guarantee my security if I use a comparatively up-to-date Linux > browser but they could if I used IE 5 on Window 95. It's entirely /on/ topic! A quick check around the major British banks shows that almost all of them use Windows 2000 with IIS for their web presence. This does not suggest that they are aware of or understand the security implications of their choice of software. IIS is renowned for being non-compliant, and the bug fix and "security" patch list is awesome! I certainly wouldn't consider using "online banking" with any of this crowd - I have little enough money as it is, and wouldn't want to take the risk that it would be misappropriated. The use of a non-compliant web server also suggests that they don't actually understand the web. As time passes, ever more computer users will migrate away from Gates-ware and discover the delights of other browsers. In the Windows world, a good and ever-growing proportion of users are using Firefox, and Apple are getting a growing market share too. Perhaps you should consider moving bank - it's really not too difficult. Check out each bank's website before you make your choice! Make sure that you write a firmly-worded letter to RBS explaining why you're leaving them, and that their online service isn't secure. It's only a small protest, but if enough people "vote with their feet", eventually they'll be forced to take notice! Chris |