Hi - Yuri made the comment at the meeting the other night that he would never do his internet banking on any OS other than Linux because of security concerns.
Coincidentally, I started the sign-up process yesterday for internet banking access with TSB Bank, and I was bemused to find in their terms and conditions the statement that I would be 'negligent' (and therefore unprotected) if I did not use 'the recommended protective software and operating system'. The terms did not explain what is 'recommended'. So, somewhat mischievously, I asked them to explain. The response was as follows: "I have spoken with our IS team to clarify this for you. They have advised me that as long as industry standard anti-virus programs are being used (ie Norton or AVG or similar) then this is fine. Also, do not allow your operating system to automatically save your password." No mention of the recommended OS so I feel none the wiser, but I'm led to ask you guys: - Does one need AV protection in a Linux environment? - Is Yuri right that Linux is inherently more secure for internet banking? - Or is the security really a function of the choice of web browser? - How good is the security in Linux applications that save your passwords? Would the use of these tools contravene their t&c's? I guess what I'm leading to is that maybe we could argue a case that Linux (installed and operated according to spec) really was more secure? Then how about we mount a campaign with banks to get them to actively promote Linux over the alternatives? ;-) - David
