[nzlug] Linux-friendly banks in NZ?
Matthew Poole
matt at p00le.net
Fri May 2 17:11:30 NZST 2008
On Fri, 2 May 2008, Jack Pivac wrote:
> requires your password to be stored in the php script... which may be against
> T&C's...
>
And, really, this is the achilles heel of the whole thing. It requires
storing, at best reversibly-encrypted, your online banking details. In
full. In one place. On a, by definition, net-connected system.
Seriously, I'd be nixing this idea with very minimal additional thought
simply because of the enormous security concerns it presents. If the bank
finds out, you'd quite likely be told to stop, probably not very politely.
If your account got compromised, you'd clearly have failed to take
adequate precautions to ensure that your PIN/passcode was kept secure.
Remember the bit about not writing it down?
--
Matthew Poole
"Don't use force. Get a bigger hammer."
More information about the NZLUG
mailing list