security
Lee Braiden
lee_b at digitalunleashed.com
Mon Sep 5 16:51:00 UTC 2005
On Monday 05 September 2005 17:37, Sean Sieger wrote:
> Lee Braiden <lee_b at digitalunleashed.com> writes:
>
> This is *always* possible.
>
> Would a daemon have to be running?
No. It could be running on the bank's own server, or one of the computers in
between. There are many possible ways for your security to be compromised --
especially if someone is monitoring you already and deliberately asks you to
do what they need you to do.
Basically, it all comes down to levels of trust. How much do you trust the
bank to get their security setup right in the beginning? How much do you
trust them to continue that maintenance? How much do you trust the Ubuntu
team to do a good job of security issues? The guy on the phone? And your
own administration and security knowledge? If you choose to go ahead when
you know there's a risk... well, that's a risk. At the same time, you have
to take *some* risks, or you'll never get anything done.
> Right, and I didn't give any information to this guy. My concern was
> that he could see what I was doing (paranoid?!) on my machine.
Probably paranoid, yes. But that would depend on your circumstances, the
person, and what questions they were asking.
Basically, you're probably worrying about nothing. But the questions
themselves are not silly questions.
--
Lee Braiden
http://www.DigitalUnleashed.com
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
URL: <https://lists.ubuntu.com/archives/ubuntu-users/attachments/20050905/0f7baf8b/attachment.sig>
More information about the ubuntu-users
mailing list