You are viewing lotso

Steps to secure your site

So, in today’s lesson I will elaborate on how 1 site decides to put additional “protection” towards phishing or in a more general term, how to secure your site against malware or other badwares.

1. Open an account with RHBBank (rhbbank.com.my)
2. Subscribe to internet banking
3. Go Overseas
4. Attempt to pay your credit card fees etc via internet
5. Pull hairs in attempts

So basically, I’ve been trying to access to RHBbank’s secure site (https://logon.rhbbank.com.my/) and keep getting either permission denied or server errors or something along those lines.

So, in an off-hunch, I tunnelled to my home squid proxy server and used that as the proxy for firefox. I fired up the browser and was greeted with the RHB secure page!!

Open up opera, (normal settings) and fire up the same page and “internal server error”

So, either one of two things is happening.

1. RHB is looking at IP addresses and denying access to anyone out of M’sia IP address range
2. My Company’s outgoing filter regards RHBbank as malware etc and prohibits me to visit it.

funny business.
Tags:

Comments

(Anonymous)

works for me

I just gave it a quick try:

http://p173.de/s/1204804620.png

(Konqueror is accessing the website from a China Telecom DSL connection and Firefox through a Germany based proxy server)

Your blog (livejournal.com) gave me a little trouble though - it seems to be blocked by the Great Firewall of China... so a new entry in my 'redirect through foreign proxy' ACL on my local squid was necessary.

Cheers,
Patrick.

April 2009

S M T W T F S
   1234
567891011
12131415161718
19202122232425
2627282930  
Powered by LiveJournal.com