re: Peter Ford

"All of these things should mean I am about as secure as a bank,"

No, you would be about as secure as a bank, computer wise, if you were running an original unpatched Windows 98 (not SE) install, using IE4, with an outdated firewall and anti virus.

Okay, that's probably exgurating the situation, but seriously, if you see your average bank computer (not server), you'll probably find half a dozen vectors for malware to get in.

Here in the Netherlands, liability is entirely on the bank unless they can prove beyond reasonable doubt that you were a direct cause or contributor to the fraud. For example, if your PIN code is written on a piece of paper or if you're using the above mentioned windows 98 machine to do your internet banking with.

And the Postbank, one of the bigger banks around here, uses one time authentication (TAN codes, they call them) to authorise the actaul payments. You log in with a normal username + password, but without the TAN codes a potential malicious user wouldn't be able to do much.