CAUTION: Free Online Banking Security Software
Per Ardua ad Astraeus
Join Date: Mar 2000
Location: UK
Posts: 18,579
Likes: 0
Received 0 Likes
on
0 Posts
So, back to my query - have all the 'incompatibility' issues with Zone Alarm etc been sorted out and does anyone have any 'bad' experiences to share?
I suspect it will not be long before it will become a mandatory download for some banks.
I suspect it will not be long before it will become a mandatory download for some banks.
Chief Tardis Technician
Join Date: Jan 2001
Location: Western Australia S31.715 E115.737
Age: 71
Posts: 554
Likes: 0
Received 0 Likes
on
0 Posts
I seriously doubt the banks can make it mandatory. They would then be liable for computer repairs should the software cause a crash, not to mention that it wont work on linux and mac platforms.
Join Date: May 2005
Location: Abroad
Posts: 1,172
Likes: 0
Received 0 Likes
on
0 Posts
Interesting story indeed, even if I don't do MS at a personal nor professional level.
However, the real lesson here is to stay away from online banking until they catch up with the current state of technology and its implications.
However, the real lesson here is to stay away from online banking until they catch up with the current state of technology and its implications.
Cool Mod
Join Date: Apr 1998
Location: 18nm N of LGW
Posts: 6,185
Likes: 0
Received 0 Likes
on
0 Posts
I am trying to be worried about Rapport but I am not. I installed it in 2008 and it works as far as I know. I don't recall, or recognize, any fault I have that could be related to its installtion. I would be happy to listen if someone feels that I am not being careful enough - but as I say I have not had a problem.
PPP
PPP
Thread Starter
Join Date: Dec 1999
Location: U.K.
Posts: 19
Likes: 0
Received 0 Likes
on
0 Posts
BOAC you posted:
More and more institutions keep nagging me to download and install - any updates/latest opinions?
PPrune Pop posted:
I am trying to be worried about Rapport but I am not. I installed it in 2008 and it works as far as I know. I don't recall, or recognize, any fault I have that could be related to its installtion. I would be happy to listen if someone feels that I am not being careful enough - but as I say I have not had a problem.
As the originator of this thread and with my poor experiences with Rapport, I am still reluctant to install it, even though two of the banks I use have ‘nag’ screens about installing it. My reasons are as follows:
On contacting the Banks concerned, I found it very difficult to establish contact with their Senior IT Managers. However, persistence paid off and eventually I was able to discuss my concerns with them. I would also suggest anyone else considering installing this software should do the same. Then simply ask them that if you should install the software and if it causes any problems to your computer, will they take the responsible action and pay or arrange to have your computer corrected. Just watch them duck and dive and squirm. They WILL NOT give you this assurance. Yet they are categorical in their assurances that it SHOULD not cause a problem.
Whilst I have not fully looked into the full current situation with Rapport, these recent postings encouraged me to briefly look and update myself at some of the major original concerns that I had with it after my previous experiences.
This has highlighted that many of these remain.
To give just a few examples:
1.Does Rapport store or send any information on me?
From Rapport’s own website under the FAQs, the following is stated, ‘Rapport creates an encrypted signature of your credentials on your computer. This information cannot be used to retrieve your credentials and is used by Rapport to identify any unauthorized leakage of your credentials. Rapport sends anonymous reports about security events and internal errors to a central server. This information is used to improve the product and the policy. You can specifically instruct Rapport not to send out any information.’
My comment and feelings:
I personally am not comfortable with any software that automatically sends out information that I am not aware of. How many of you ‘satisfied’ Rapport users have actually been able to OR EVEN KNOW HOW TO specifically instruct Rapport not to send out any information. Where is this information going to? It is an Israeli company, so is this information ending up there? What control is there in that country about the storage and use of personal information?
2. If I were to try and install Rapport, it would still actual disable some functionality within my purchased Internet Security Program.
My comment and feelings:
I personally am not comfortable with any software that automatically changes functionality with my installed Internet Security Program. Even more so if one is not told what functionality is actually changed? How many of you ‘satisfied’ Rapport users are actually aware as to what has been changed? I am not confident with any installed software that has to make changes to currently installed programs to be able to make it function - they should be stand-alone within their own rights in the same manner that all the other software that we load.
3. Having recently helped a colleague out, whom after installing Rapport, had problems and wished to uninstall it. Rapport would still not FULLY uninstall using the normal uninstall procedures. Only by the use of the special ‘uninstall’ tool provided to me by Trusteer after my previous experience of their program, was I able to remove certain aspects of their program.
Ironically and interestingly, I have upgraded my computer since I had installed Rapport. As I was passing that computer on to a family member, I wished to format the hard drives fully. Whilst not able to be certain, it appears that possible ‘Rapport’ related information was even still well embedded within the root of the drive.
My comment and feelings:
Why is it not able to be removed fully from a computer using the normal accepted procedures? What is it still actually leaving? Considering that it does store and does send information on the user, could this still be the case when you believe that you have uninstalled it?
4. This software is provided free. However, this is certainly not like most freeware sources that one experiences – a couple of enthusiasts producing software that they need and providing it free to others. Trusteer is operated like a huge commercial Software House with 7/24 support etc etc.
My comment and feelings:
This must surely beg the question where is their revenue stream for all this?
If the Banks that almost ‘force’ us to use it have to pay for it, you can be sure they would attempt to pass on the cost to the customer. Instead commercial banking staff at senior levels are more than likely being offered junkets to increase the Rapport user base.
I might be wrong and it might be a large collection of public spirited Israelis who have no commercial interests and are being provided with all free facilities and have decided to provide the rest of the world with free software!
IN CONCLUSION - I STILL feel Rapport from Trusteer definitely needs to be considered with caution.
Google for "Rapport Problems" and you'll find all the blogs and forums you need. A well-maintained, properly secured PC does not need this or any of the problems that come with it. Also, purely out of interest, look out for patronising posts from Trusteer support on the blogs and forums...they are usually accompanied by a post from some guy telling you how he and his brother both use Rapport and how wonderful it is.
To anyone such as PPrune Pop whom is satisfied with it, then stick with it.
Like many things in life, one has to make one’s own judgement, which is why I deliberately originally titled this thread ‘CAUTION – Free Online Banking Security Software.’
More and more institutions keep nagging me to download and install - any updates/latest opinions?
PPrune Pop posted:
I am trying to be worried about Rapport but I am not. I installed it in 2008 and it works as far as I know. I don't recall, or recognize, any fault I have that could be related to its installtion. I would be happy to listen if someone feels that I am not being careful enough - but as I say I have not had a problem.
As the originator of this thread and with my poor experiences with Rapport, I am still reluctant to install it, even though two of the banks I use have ‘nag’ screens about installing it. My reasons are as follows:
On contacting the Banks concerned, I found it very difficult to establish contact with their Senior IT Managers. However, persistence paid off and eventually I was able to discuss my concerns with them. I would also suggest anyone else considering installing this software should do the same. Then simply ask them that if you should install the software and if it causes any problems to your computer, will they take the responsible action and pay or arrange to have your computer corrected. Just watch them duck and dive and squirm. They WILL NOT give you this assurance. Yet they are categorical in their assurances that it SHOULD not cause a problem.
Whilst I have not fully looked into the full current situation with Rapport, these recent postings encouraged me to briefly look and update myself at some of the major original concerns that I had with it after my previous experiences.
This has highlighted that many of these remain.
To give just a few examples:
1.Does Rapport store or send any information on me?
From Rapport’s own website under the FAQs, the following is stated, ‘Rapport creates an encrypted signature of your credentials on your computer. This information cannot be used to retrieve your credentials and is used by Rapport to identify any unauthorized leakage of your credentials. Rapport sends anonymous reports about security events and internal errors to a central server. This information is used to improve the product and the policy. You can specifically instruct Rapport not to send out any information.’
My comment and feelings:
I personally am not comfortable with any software that automatically sends out information that I am not aware of. How many of you ‘satisfied’ Rapport users have actually been able to OR EVEN KNOW HOW TO specifically instruct Rapport not to send out any information. Where is this information going to? It is an Israeli company, so is this information ending up there? What control is there in that country about the storage and use of personal information?
2. If I were to try and install Rapport, it would still actual disable some functionality within my purchased Internet Security Program.
My comment and feelings:
I personally am not comfortable with any software that automatically changes functionality with my installed Internet Security Program. Even more so if one is not told what functionality is actually changed? How many of you ‘satisfied’ Rapport users are actually aware as to what has been changed? I am not confident with any installed software that has to make changes to currently installed programs to be able to make it function - they should be stand-alone within their own rights in the same manner that all the other software that we load.
3. Having recently helped a colleague out, whom after installing Rapport, had problems and wished to uninstall it. Rapport would still not FULLY uninstall using the normal uninstall procedures. Only by the use of the special ‘uninstall’ tool provided to me by Trusteer after my previous experience of their program, was I able to remove certain aspects of their program.
Ironically and interestingly, I have upgraded my computer since I had installed Rapport. As I was passing that computer on to a family member, I wished to format the hard drives fully. Whilst not able to be certain, it appears that possible ‘Rapport’ related information was even still well embedded within the root of the drive.
My comment and feelings:
Why is it not able to be removed fully from a computer using the normal accepted procedures? What is it still actually leaving? Considering that it does store and does send information on the user, could this still be the case when you believe that you have uninstalled it?
4. This software is provided free. However, this is certainly not like most freeware sources that one experiences – a couple of enthusiasts producing software that they need and providing it free to others. Trusteer is operated like a huge commercial Software House with 7/24 support etc etc.
My comment and feelings:
This must surely beg the question where is their revenue stream for all this?
If the Banks that almost ‘force’ us to use it have to pay for it, you can be sure they would attempt to pass on the cost to the customer. Instead commercial banking staff at senior levels are more than likely being offered junkets to increase the Rapport user base.
I might be wrong and it might be a large collection of public spirited Israelis who have no commercial interests and are being provided with all free facilities and have decided to provide the rest of the world with free software!
IN CONCLUSION - I STILL feel Rapport from Trusteer definitely needs to be considered with caution.
Google for "Rapport Problems" and you'll find all the blogs and forums you need. A well-maintained, properly secured PC does not need this or any of the problems that come with it. Also, purely out of interest, look out for patronising posts from Trusteer support on the blogs and forums...they are usually accompanied by a post from some guy telling you how he and his brother both use Rapport and how wonderful it is.
To anyone such as PPrune Pop whom is satisfied with it, then stick with it.
Like many things in life, one has to make one’s own judgement, which is why I deliberately originally titled this thread ‘CAUTION – Free Online Banking Security Software.’
Join Date: Feb 2001
Location: In transit
Age: 70
Posts: 3,052
Likes: 0
Received 0 Likes
on
0 Posts
I find this odd. My bank have started sending my credit card statements by email. They are accompanied by this email.
What is the point of encrypting it if the unencryption tool is referenced in the same email, and does not require any security or password?
Am I missing something here? This seems to me a bit like locking your valuables in the safe and leaving a note on the safe to tell burglars where they key is!
What is the point of encrypting it if the unencryption tool is referenced in the same email, and does not require any security or password?
Am I missing something here? This seems to me a bit like locking your valuables in the safe and leaving a note on the safe to tell burglars where they key is!
Attached is your Standard Bank Gold credit card statement. For your security it has been encrypted. This means that you will need a decoder to view your statement.
Before you can view your statement, you must download and install the decoder.
If you downloaded and installed the decoder previously, you do not need to download and install it again.
If you have not installed a decoder please download it by going to this link.
https://www.standardbank.co.za/secur...redecoder.html
Regards,
Standard Bank
Before you can view your statement, you must download and install the decoder.
If you downloaded and installed the decoder previously, you do not need to download and install it again.
If you have not installed a decoder please download it by going to this link.
https://www.standardbank.co.za/secur...redecoder.html
Regards,
Standard Bank
Join Date: Jan 2003
Location: Retired to Leafy Bucks
Posts: 94
Likes: 0
Received 0 Likes
on
0 Posts
You can download Truecrypt which I use to encrypt some stuff, doesn't mean you can read my files! Kind of guess there is some logon/password needed that only the customer would know.
Join Date: Feb 2001
Location: In transit
Age: 70
Posts: 3,052
Likes: 0
Received 0 Likes
on
0 Posts
Kind of guess there is some logon/password needed that only the customer would know.
Join Date: Feb 2011
Location: Israel
Posts: 1
Likes: 0
Received 0 Likes
on
0 Posts
Dear Forum members,
We will attempt to address VB's latest post.
1. Regarding disabling Rapport's anonymous reports - During the installation process there is a check box that clearly states that you agree to send these reports. Clearing the check box disables the report sending. There is also an option to enable or disable this feature inside the Rapport console under "Edit policy".
2. Rapport does not automatically disable any functionality of your installed security product. If you believe that Rapport has conflicted with a security product on your computer, please contact support and let us know. We run extensive tests with many security products to ensure compatibility, and the page which displays this has already been shared on this thread.
3. The files that remain after uninstalling Rapport are user data and logs that can be manually deleted after restarting the computer. These are left there like many other software products leave them, for 2 main reasons - a. A re-install would result in all of your personal settings still in place so you won't have to repeat decisions and processes you did with Rapport. b. If you choose to report a problem to us, the encrypted logs can be sent to Trusteer to be analyzed.
These files do not have any effect whatsoever once Rapport is removed from the program files folder, which occurs after normally uninstalling through the control panel and restarting the computer. The technical information within them is not sent anywhere and is encrypted.
4. Regarding our revenue - You can read everything about our company right here:
Company | Trusteer
Best Regards,
Trusteer Support Team
We will attempt to address VB's latest post.
1. Regarding disabling Rapport's anonymous reports - During the installation process there is a check box that clearly states that you agree to send these reports. Clearing the check box disables the report sending. There is also an option to enable or disable this feature inside the Rapport console under "Edit policy".
2. Rapport does not automatically disable any functionality of your installed security product. If you believe that Rapport has conflicted with a security product on your computer, please contact support and let us know. We run extensive tests with many security products to ensure compatibility, and the page which displays this has already been shared on this thread.
3. The files that remain after uninstalling Rapport are user data and logs that can be manually deleted after restarting the computer. These are left there like many other software products leave them, for 2 main reasons - a. A re-install would result in all of your personal settings still in place so you won't have to repeat decisions and processes you did with Rapport. b. If you choose to report a problem to us, the encrypted logs can be sent to Trusteer to be analyzed.
These files do not have any effect whatsoever once Rapport is removed from the program files folder, which occurs after normally uninstalling through the control panel and restarting the computer. The technical information within them is not sent anywhere and is encrypted.
4. Regarding our revenue - You can read everything about our company right here:
Company | Trusteer
Best Regards,
Trusteer Support Team
Join Date: Aug 2003
Location: Mallorca
Posts: 309
Likes: 0
Received 0 Likes
on
0 Posts
Having taken over this computer from a now deceased acquaintance who did use online banking, how can I check if Rapport is installed on this machine or has been incompletely removed from it? I can see nothing obvious among the installed software and have done a simple search for any file containing "rapport", both with no results.
Thank you in advance!
Thank you in advance!
fresh install ?
If you are that concerned and you 'inherited' the computer, perhaps time for a clean start ? Regedit would perhaps show traces even if software had been removed, but at least you would know it had once been on (and probably still is).
Official PPRuNe Chaplain
Join Date: Apr 2001
Location: Witnesham, Suffolk
Age: 80
Posts: 3,498
Likes: 0
Received 0 Likes
on
0 Posts
I'm happy to report that my bank is no longer nagging me to install Trusteer Rapport every time I log on. I haven't installed it, and don't intend to.
Controversial, moi?
A very good friend of mine used to work in Criminal Intelligence which is a division of the UK Metropolitan Police (the London police service) but answerable to the Home Secretary. Their security policy regarding the computers they used for their intelligence work was interesting.....they were never connected to the internet!
Very interesting thread.
Very interesting thread.
Join Date: Jan 2008
Location: The Land of Beer and Chocolate
Age: 56
Posts: 798
Likes: 0
Received 0 Likes
on
0 Posts
After reading the last post from "TrusteerSupport", I would be more than wary regarding the use of that "software".
There's a simple reason. When you "uninstall" it, why does it leave ANYTHING? After all, if you are getting rid of that programme you will want EVERYTHING deleted, you want no reference to the programme what you are getting rid of. There should be no "profiles", there should be no "legacy" files or registry entries. You "uninstall" and everything goes. Period. Otherwise you are just as bad as Symantec.
My bank over here doesn't use something that, in my mind, is malware. If the Trusteer people can tell us why their software does not wipe out EVERYTHING when you uninstall it, I would think we would all like to know.
After all, it is, at least, piss poor programming. And if they cannot get that right then why should anyone trust the chances that their software is actually "secure"........................
There's a simple reason. When you "uninstall" it, why does it leave ANYTHING? After all, if you are getting rid of that programme you will want EVERYTHING deleted, you want no reference to the programme what you are getting rid of. There should be no "profiles", there should be no "legacy" files or registry entries. You "uninstall" and everything goes. Period. Otherwise you are just as bad as Symantec.
My bank over here doesn't use something that, in my mind, is malware. If the Trusteer people can tell us why their software does not wipe out EVERYTHING when you uninstall it, I would think we would all like to know.
After all, it is, at least, piss poor programming. And if they cannot get that right then why should anyone trust the chances that their software is actually "secure"........................