I don't use bill pay from my bank, but I pay most of my bills online with the payee websites. Works very well for me.

The downside is that I use few checks, which make reordering a pain. I had to reorder on Monday, and the printer that my bank chose deletes your information if you haven't ordered in two years. And you can't order on the web unless they have the info on file, so I had to call. What a pain, and supre high prices too. That's the LAST time that I will use them.

Sorry to go OT..

Jim

cgallery, can you (or anyone) address the security issues in summary form? This is a topic of little discussion in our family - we're not going to do it. That's it. No discussion.

I don't really know what the risks are, but one of LOML's friends lost a lot of dough, probably due to some sort of sniffing. Do anti-virus programs provide adequate defense? What other steps can be taken to mitigate the risks? How effective are they?

JR

This is another reason that going through the individual companies might be more secure than an online account that can pay anyone, anywhere. Yes they could mischarge you, but a reputable company is unlikely to make it too hard to correct the mistake. And it hasn't happened to me in about 15 years of using many different company's autopay options...

-Tim

I've found that the worst problems are solved with a decent AV and a firewall. The rest of the problems tend to be a behavioral fault of the user. But the standard rules apply, don't take candy from a stranger and don't give personal info on a call that you didn't initiate.

#1 use a firewall, I prefer hardware, a decent router will do.
#2 Install a good Antivirus. I used to use AVG, but have found Avira Personal much more effective and light weight recently. Both are free for personal use.
#3 enable the popup blocker in your browser and make sure you read the boxes you see on your screen and only allow the ones you requested to excecute.
#4 Occasionally scan with a good malware/spyware scanner. I've had very good results with Malwarebytes and SuperAntiSpyware in recent months.

Most importantly don't click on ads or other internet noise that's smeared across websites. And only download if you are **** sure what your getting, avoid widgets and search/toolbars. When doing sensitive things like banking always type the address directly into the address bar or use a Bookmark that you created yourself. Never follow a link requesting personal information that came in an email.

One thing that I added recently is a script to my router that periodically downloads a blacklist of attack sites and redirects them to local host or a local HTTP honeypot. Even sites like amazon show blanks and or unauthorized actions where ads used to be. Infact, some ads have been blocked on this site.

Back to the original topic, I've been using BofA billpay since it came online and the only errors have been typo's on my wifes part (fortunately only under pays) since she handles all of the bills. After you add the payee it will tell you how far in advance you need to schedule the payment. Depending on batch cycles and EFT availability most payees take 1, 3 or 5 days. When I lived in SoCal I used it to send a check to my mother - It was there the next day (2-days if I mailed it myself).

I don't worry about viruses, keyloggers or any of that other stuff. I do all my banking from my Linux system. Works and a whole lot less worries.

Note: some banks are not yet Linux/Firefox friendly. My bank is.

I have two wireless systems set up at my house - one unsecured for visitors and a secured / firewalled that LOML and I both use for our computers.

To all of this I would add use a Macintosh.

g.

Mac's and Linux may or may not be safer than Windows, but I wouldn't personally rely on that for the basis of my security...

And I'm a Mac user (as well as a Win user...)

This, BY NO MEANS will be complete.

Just to give you an idea.
How computer literate is the person using the pc? The reason for this, is they both may have better security measures, or they may be overconfident. They also may be the type to notice a mistake/damage quicker, or more hard headed to believe they have a problem, WHEN they have a problem.

Using a computer for ANYTHING other then bill paying, leaves you open to software you either don't know about, or understand, as well as being at risk of Active x/Java/Javascript attacks, from websites, that have been hacked.

Keyloggers, are normally, installed from/at the machine. (not always) If they have gotten that far, your security is already out the Window. (ever see someones kid use their parents credit card?, same thing). They keep all the keystrokes that you make so one can look at a site, and guess your password.

Spoofing attacks........ This is where you get an email, claiming to be from your bank, credit company, mortgage company, Paypal, etc. They claim there is a problem, and you need to visit this site, enter all your info and correct it (you give them all they need)

Bots..... This is where software takes over your computer, to do whatever program it is told to do. This can be anything from trying to takedown a website, to using them in masse, to try to crack passwords.

Autofill,autocomplete, "remember me".......... These are where, like this site, you can have your computer remember either/both a password and login name. This can be held via cookies, and/or via some place in the software on the machine. Anyone with access to your machine (physically, or remotely) can look at these and use them to log in and post/spend as you.

HTTP, verses HTTPS, methods of transfering information. S is supposed to be a secure method, that won't send your password in Clear, readable, text, that can be read by anymachine in between.

Like I said, by no means complete, but I am running out of energy tonight.

Wireless and secured contradict each other. There really is no way to make a wireless network truly secure.