Get Gentoo!
gentoo.org sites
gentoo.org Wiki Bugs Forums Packages
Planet Archives Sources
Infra Status

Gentoo Archives: gentoo-user

From: Floyd Anderson <f.a@×××××.net>
To: gentoo-user@l.g.o
Subject: Re: [gentoo-user] What Firefox (what browser) for Online-Banking?
Date: Sat, 07 Jan 2017 22:28:18
Message-Id: 20170107222741.GC13827@xmail.net
In Reply to: [gentoo-user] What Firefox (what browser) for Online-Banking? by Meino.Cramer@gmx.de
1 On Sat, 07 Jan 16:51:41 +0100
2 Meino.Cramer@×××.de wrote:
3 >Hi,
4 >
5 >what Firefox-Version/what browser is the most secure one for Online-Banking?
6
7 Who is able to tell about that? I think nobody which has evaluated this
8 for every version (if some really has) is reading this list.
9
10 I would recommended at least a separate well configured browser profile
11 for the banking purpose and to strip off all unnecessary connections.
12
13 The latter can be achieved by using a Proxy Auto Config (PAC) file [1].
14 Have a look at [2] for more background information on this — even when
15 it’s quite old.
16
17 For Mozilla Firefox create a file (e.g. “proxy.pac”) with following
18 content for example (don’t copy ’n paste, the spaces aren’t such):
19
20 function FindProxyForURL(url, host) {
21     // Proxy bypass logic
22     if (
23            dnsDomainIs(host, '.your-bank.com')
24     //  || dnsDomainIs(host, 'addons.cdn.mozilla.net')
25     //  || dnsDomainIs(host, 'addons.mozilla.org')
26     ) { return 'DIRECT'; }
27
28     // Redirect all other requests through localhost which should always 
29     // fail due no listen server.
30     return 'PROXY 127.0.0.1:65535';
31 }
32
33 and place it in the root of your browser profile, apply it due property
34 “network.proxy.autoconfig_url” or via GUI by using the “file:” protocol
35 in about:preferences#advanced > Network > Connection Settings.
36
37 Before you ask, I’ve never tried to use a relative path definition which
38 may be important on an USB device nor can say if it’ll also work.
39
40 Notice the comment lines for the mozilla domains. Comment those out if
41 you really need to use add-ons in a banking profile and want to have a
42 more comfortable way to update them. But you know, comfort/add-ons and
43 security is often like fire and water nowadays.
44
45 To test that only your banking connection is possible invoke:
46
47 /usr/bin/firefox --private-window "https://www.example.com/" --no-remote -P banking.profile
48
49
50 [1] <https://calomel.org/proxy_auto_config.html>
51 [2] <https://web.archive.org/web/20040821144727/http://developer.netscape.com/docs/manuals/proxy/adminux/>
52
53
54 --
55 Best regards,
56 Floyd Anderson

Replies

Subject Author
[gentoo-user] Re: What Firefox (what browser) for Online-Banking? Ian Zimmerman <itz@×××××××.net>
[gentoo-user] Palemoon as Tor browser? WAS: What Firefox (what browser) for Online-Banking? Miroslav Rovis <miro.rovis@××××××××××××××.hr>
Report Message
Find on MARC Find on Google Groups