Puppy Linux Discussion Forum Forum Index Puppy Linux Discussion Forum
Puppy HOME page : puppylinux.com
"THE" alternative forum : puppylinux.info
 
 FAQFAQ   SearchSearch   MemberlistMemberlist   UsergroupsUsergroups   RegisterRegister 
 ProfileProfile   Log in to check your private messagesLog in to check your private messages   Log inLog in 

The time now is Mon 24 Nov 2014, 17:51
All times are UTC - 4
 Forum index » Off-Topic Area » Security
Question re online banking security and Puppy
Post new topic   Reply to topic View previous topic :: View next topic
Page 1 of 1 [10 Posts]  
Author Message
sfl7fl

Joined: 11 Jun 2009
Posts: 25
Location: tampa bay

PostPosted: Tue 20 Oct 2009, 11:15    Post subject:  Question re online banking security and Puppy  

a nephew of mine works for the pentagon. He sets up networks. They sent out email to their employees telling them for online banking, use Mac or Ubuntu. how does Puppy fit in this scenario?
Back to top
View user's profile Send private message Visit poster's website 
Lobster
Official Crustacean


Joined: 04 May 2005
Posts: 15117
Location: Paradox Realm

PostPosted: Wed 21 Oct 2009, 00:30    Post subject:  

"If you are using the internet for a commercial transaction, use a Linux boot up disk - such as Ubuntu or some of the other flavours. Puppylinux is a nice small distribution that boots up fairly quickly. It gives you an operating system which is perfectly clean and operates only in the memory of the computer and is a perfectly safe way of doing internet banking."
Detective Inspector Bruce van der Graaf from the Computer Crime Investigation Unit

Use this secure banking print out
http://www.murga-linux.com/puppy/viewtopic.php?p=353045#353045

_________________
Puppy WIKI
Back to top
View user's profile Send private message Visit poster's website 
sfl7fl

Joined: 11 Jun 2009
Posts: 25
Location: tampa bay

PostPosted: Wed 21 Oct 2009, 06:38    Post subject: security  

thanks, i really like the distro.
i use it primarily.
Back to top
View user's profile Send private message Visit poster's website 
Wognath

Joined: 19 Apr 2009
Posts: 191

PostPosted: Sun 23 May 2010, 12:07    Post subject: Puppy in windows  

Lobster,
Is there any security advantage to using Puppy within windows for online transactions? Thanks.
Back to top
View user's profile Send private message 
Lobster
Official Crustacean


Joined: 04 May 2005
Posts: 15117
Location: Paradox Realm

PostPosted: Sun 23 May 2010, 13:08    Post subject:  

If possible put a Puppy CD into your Windows powered PC. Boot up with puppy pfix=ram

setup firewall (with wizard)
Then connect to the net - do your transacting and shut down the computer.

I would suggest that is better than some military grade security.

I am also aware - forget who is doing it - that one of our puppys is setting up Puppy Linux for online banking.

_________________
Puppy WIKI

Last edited by Lobster on Sun 23 May 2010, 21:18; edited 1 time in total
Back to top
View user's profile Send private message Visit poster's website 
Sylvander

Joined: 15 Dec 2008
Posts: 3517
Location: West Lothian, Scotland, UK

PostPosted: Sun 23 May 2010, 13:32    Post subject:  

See this at post #237 of my Puppy Linux thread.

Lots of other goodies in my Puppy Linux thread.
Begin here at the bottom of page 10, and work backwards toward the beginning.
Back to top
View user's profile Send private message 
DMcCunney

Joined: 02 Feb 2009
Posts: 897

PostPosted: Sun 23 May 2010, 16:09    Post subject: Re: Question re online banking security and Puppy  

sfl7fl wrote:
a nephew of mine works for the pentagon. He sets up networks. They sent out email to their employees telling them for online banking, use Mac or Ubuntu. how does Puppy fit in this scenario?

The same way Ubuntu does: it's a Linux system. The point I see to the memo is "To be really secure, don't use Windows".

Online banking sessions use https, creating an encrypted session between you and the financial institution. The problem is that Windows is vulnerable to trojans like keystroke loggers that can capture the information that you enter before it is encrypted and sent and phone home. Such things don't exist for Mac OS/X or Linux.

I do banking from Windows, but with layered defenses: Windows is kept fully patched via auto-update, I don't use IE (Firefox here, but SeaMonkey, Opera, Chrome, and Safari are alternatives), I have current A/V with regularly updated signatures, I run a firewall (two, in fact), and I use NoScript in Firefox to turn of scripting for sites that aren't in a whitelist. I also prefer not to do banking using wifi in public hotspots. It can wait till I'm at home behind my router using WPA2 security.

You should be able to do banking from Puppy - the issue will be a supported browser. Your bank may want support for stuff an older browser won't do, and experimentation is required. Puppy ships with a SeaMonkey 1.1 version. Try it and see if it works. If not, other things including SeaMonkey 2, Firefox, Opera 10, and Google Chrome are available.
______
Dennis
Back to top
View user's profile Send private message 
jonyo

Joined: 28 Dec 2006
Posts: 2727

PostPosted: Sun 23 May 2010, 16:18    Post subject:  

what 2 firewalls?
Back to top
View user's profile Send private message 
rumex

Joined: 25 Jun 2009
Posts: 26

PostPosted: Mon 24 May 2010, 17:34    Post subject:  

I use Puppy for banking.
I have it effectively on a USB stick with a physical read-only switch so it boots quickly. Very few USB sticks have switches, so I have resorted to a SDHC card + USB adapter. A small class 10 SDHC card absolutely flies.
The card should never be written to after the operating system is connected to the internet. I like the fact that if the running form does get penetrated the next reboot is clean.

It might be advisable to download a version of Puppy on a trusted operating environment. write it to read only media and then verify its signature on a third system. I also wait for a couple of months and check the downloaded version has not revealed any unintentional freeloaders. Am I paranoid or what Smile
Back to top
View user's profile Send private message 
snowshaker

Joined: 24 Aug 2008
Posts: 23
Location: Midwesterner running Slacko Puppy 5.3

PostPosted: Fri 28 May 2010, 09:49    Post subject:  

rumex wrote:
I have resorted to a SDHC card + USB adapter. A small class 10 SDHC card absolutely flies. The card should never be written to after the operating system is connected to the internet. I like the fact that if the running form does get penetrated the next reboot is clean.

.... Am I paranoid or what Smile


That is how I do it. I also set the write switch to "off" on the SD card so the original OS never changes. If you also have installed Puppy user files on the PC's drives, you need to set pfix=ram or it will boot off those files. The above links, probably discuss how you can configure the memory stick copy of Puppy to automatically do that.

Booting off CD or memory stick is probably as safe as you can be if the first browser action is for banking. For browsing dodgy sites, it's probably safe too, but being as paranoid as rumex, I would boot off a PC with no drives if I wanted to do that.
Back to top
View user's profile Send private message 
Display posts from previous:   Sort by:   
Page 1 of 1 [10 Posts]  
Post new topic   Reply to topic View previous topic :: View next topic
 Forum index » Off-Topic Area » Security
Jump to:  

You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You can download files in this forum


Powered by phpBB © 2001, 2005 phpBB Group
[ Time: 0.0658s ][ Queries: 11 (0.0054s) ][ GZIP on ]