Re: [gentoo-user] What Firefox (what browser) for Online-Banking?

2017-01-07 Thread Floyd Anderson 

On Sat, 07 Jan 16:51:41 +0100
meino.cra...@gmx.de wrote:

Hi,

what Firefox-Version/what browser is the most secure one for Online-Banking?


Who is able to tell about that? I think nobody which has evaluated this 
for every version (if some really has) is reading this list.


I would recommended at least a separate well configured browser profile 
for the banking purpose and to strip off all unnecessary connections.


The latter can be achieved by using a Proxy Auto Config (PAC) file [1]. 
Have a look at [2] for more background information on this — even when 
it’s quite old.


For Mozilla Firefox create a file (e.g. “proxy.pac”) with following 
content for example (don’t copy ’n paste, the spaces aren’t such):


function FindProxyForURL(url, host) {
// Proxy bypass logic
if (
   dnsDomainIs(host, '.your-bank.com')
//  || dnsDomainIs(host, 'addons.cdn.mozilla.net')
//  || dnsDomainIs(host, 'addons.mozilla.org')
) { return 'DIRECT'; }

// Redirect all other requests through localhost which should always 
// fail due no listen server.
return 'PROXY 127.0.0.1:65535';
}

and place it in the root of your browser profile, apply it due property 
“network.proxy.autoconfig_url” or via GUI by using the “file:” protocol 
in about:preferences#advanced > Network > Connection Settings.


Before you ask, I’ve never tried to use a relative path definition which 
may be important on an USB device nor can say if it’ll also work.


Notice the comment lines for the mozilla domains. Comment those out if 
you really need to use add-ons in a banking profile and want to have a 
more comfortable way to update them. But you know, comfort/add-ons and 
security is often like fire and water nowadays.


To test that only your banking connection is possible invoke:

/usr/bin/firefox --private-window "https://www.example.com/" --no-remote -P 
banking.profile


[1] 
[2] 



--
Best regards,
Floyd Anderson

Re: [gentoo-user] What Firefox (what browser) for Online-Banking?

2017-01-07 Thread Meino . Cramer 
wabe  [17-01-07 17:48]:
> meino.cra...@gmx.de wrote:
> 
> > Hi,
> > 
> > what Firefox-Version/what browser is the most secure one for
> > Online-Banking?
> 
> I use a dedicated virtual machine for that purpose. I never 
> use that VM for other purposes and only visit the online 
> banking website of my bank and nothing else.
> 
> I think a dedicated (virtual) machine for online banking is 
> much more important than the use of a specific browser.
> 
> --
> Rergards
> wabe
> 

Hi Wabe,

...yes, I know. That's why I had set up an dedicted US-Stick
(live-system, so nothing can be written to that stick, everything
else is RAM-based) and now I was looking for the browser in question.
Even if this is only important in the second place:

What browser is the best for this purpose?

Cheers
Meino

Re: [gentoo-user] What Firefox (what browser) for Online-Banking?

2017-01-07 Thread wabe 
meino.cra...@gmx.de wrote:

> Hi,
> 
> what Firefox-Version/what browser is the most secure one for
> Online-Banking?

I use a dedicated virtual machine for that purpose. I never 
use that VM for other purposes and only visit the online 
banking website of my bank and nothing else.

I think a dedicated (virtual) machine for online banking is 
much more important than the use of a specific browser.

--
Rergards
wabe