On Friday 18 January 2008, Joel Wiramu Pauling wrote: > > in the end a scrubbing proxy would be a good idea if your uber > > paranoid. > > > > does your bank not use SSL? or do you have some scrubbing proxy > > that you trust enough to MITM connections to your bank? > > No but having a scrubbing proxy reduces the chances of the browser > picking up anything nasty on the stream of consciousness browsing > sessions that are sure to ensue. You could of course also have the > proxy restrict access to anything but your banking sites, but then > again there are simpler ways to do this. All in scrubbing proxies, > for ad's malware, and just for ACL controls are good ideas. Of course > when combined with sane firewall policies etc as well.
Stuart, Whether or not your bank uses SSL is (unfortunately) irrelevant. Banks do get hacked and banks do distribute malware to their customers. This exact thing happened to the Bank of India last year. http://www.malwarehelp.org/news/View.php?ArticleID=6199 You don't need to be uber-paranoid to use a scrubbing proxy, yet as you mentioned, it is a MITM, and should be vetted before use. kind regards, jcr
