Topic: eXch - instant exchange BTC / LN / XMR / LTC / ETH / ERC20 - page 24. (Read 27792 times)

Perhaps to prevent his name from being associated with illegal companies/services or ones that he doesn't support. Or, you don't want companies to use your name, only individual users.

Doubt it. eXch (OP) uses perfect English, while the exch.cx website and the support messages use slightly broken English.


They've been out for a month, then back with no explanation. The site doesn't have a canary. I don't recall if it had one.

Wouldn't be surprised if exch.cx was infiltrated by LE and all transfers are under scrutiny now.

This Animesh phishing is a convenient red herring.

It's possible, but even in that case the exchanger definitely earned his fee / - partner's percentage. They don't need to worry about how the partner spends their affiliate profits.

I guess it's meant to avoid using the affiliate program as a discount on your own exchange. Since the user is anonymous, it would be trivially easy to abuse. Showing a real website with real users that contains the link makes it more likely to have legitimate users.
But I'm just guessing here

If I may ask, why is additional verification and special approval required for affiliate partner ID activation?
As far as I understand, affiliate profit is paid only after successful transactions. There can be no abuse here, artificial generation of leads because the calculation is made only based on the profit that the partner has made possible by bringing in new clients.
How do you recognize illegitimate partner activities here and what are the examples of illegal promotions that banned an aff account?

Even if the partner uses his affiliate link for swap, the exchange still makes a real profit and the activity of the partner does not harm the service itself.

Great, then ready. I think users need to get more used to visiting this page, whenever they face a problem, to check whether it is already being addressed or not.

Previous message had the wrong date. I did get the money, for some reason that part is not in the signature - but I'm on mobile so not too surprising.

About this point, they already keep the following page updated, which I think serves the same purpose: https://exch.cx/status

Firstly, thank you for the clarifications.
I would like to share some suggestions, as customer support is often what differentiates different services.

Based on your description, and knowing how other support services work. You don't do anything bad, or anything very different from what other support services do. Now, you can do a few different things.

For example, even if a point has already been resolved, because it is common or was already being addressed when the request was made, respond. Even if it's with a simple sentence: "Situation is normalized. If you have any questions, please get in touch again."

Another suggestion, which I don't understand if it has already been made or not. Whenever you have to deal with a common issue, place an alert on the website or on the support page (you can even create a page just for these notifications). This may reduce the number of support tickets. If they already do, I apologize, I hadn't noticed yet.

Bumping the current raffle!
We still have some free slots

I am not arguing about who is in the right position.
My only suggestion to eXch is to reassure everyone with some kind of message in the forum.
It takes only a few seconds of effort, and it reassures everyone that they are actively working on solving the issue.

Just my two cents.

See they are online they just ignore emails that not related to customer issues.
 

Pointing to 3 and 4 so DDOS is the reason why we can't access the Tor link with HTTPS? When accessing it always redirects me to HTTP and the browser always warns me that it is not secure that is why we brought it here because sometimes I use the service to exchange my BTC to monero and stable coins I just want to make sure that if we use the non-HTTPS the page we use is not hijacked by hackers or those who did DDOS because everything in non-https is unprotected and not encrypted.

Excuse me, but please get your facts straight.

I was not trying to spread FUD about you on this forum about that or damage your reputation. I was in a panic, since it is not normal to go for long periods of time without an answer in the support case. First I waited for around two weeks according to what the support agent said. When I didn't get any further response to my "is there an update" message, I sent you a notification by forum PM - which by the way, you did not answer even though you were online on the 8th of July.

About 3 weeks had passed when I then resorted to contacting icopress privately to see if he could expedite the response time. To which he said he would notify you, and I'm sure he did because you're here now.

It was only after that when all my other options were exhausted did I post about my situation on the thread, hoping for anyone to help me get in contact with you. As I was worried by that point that I would lose my affiliate earnings like how some other sites did me.

You should know, that if I was trying to inflict reputational damage, then I would've created a scam accusation. I didn't, because I had a bit of hope that you would resolve the situation eventually.

But to me it is unacceptable that you fail to follow up your reply, for nearly a whole month, when so much money was on the line. Do you know how worried I was that I wouldn't get my money? Because it has happened to me before since I launched BitMixList.

When my clients in other places have an issue with me and they talk to me, I don't make them wait for weeks for an answer unless I explicitly tell them ahead of time first.

And speaking of which - you still haven't authorized my refid or even bothered to reply to my support ticket after the SYSTEM message. So why don't you try doing that first. I'm tired of waiting in the dark for my money.

Edit: here is proof for all this:





You said you are going to "fulfill our part of the deal". Do it then.

A few statements in regards to all the above comments:

1. We always respond support requests via email within 48 hours, but even if that time is exceeded, we never leave any exchange-related messages without a reply. Any person claiming we didn't respond their email after a few days is telling a lie. In regards to support tickets - we might opt to not respond if the issue is apparently solved and user abandoned the ticket/order page right after his order was complete automatically, but all other tickets are usually responded within 48 hours (except non-order specific questions). In regards to SimpleX - only 1 person has access to it, who is on his usual annual vacations which happen every year. Who was a customer of our service in the past knows we tend to be slower in responses during this period of year. Anybody who expects a more responsive customer support service from us - please opt by other type of exchanges that have mandatory KYC but have awesome ChatGPT-powered support (Binance, Kraken, Bybit or so). We are a bit different kind of service not suitable for everyone and sadly without any decent competition.

2. NotATether's issue is not the "customer issue" at all, since his issue is related with affiliation account approval which is related to B2B relations only (not customer relations), which he didn't even combine with us prior to starting using it. After he used his auto-generated affiliation ID to earn a partner fee from clicks on his site, he started to use it directly without notifying us which is mandatory to have withdrawals enabled afterwards, since we do not simply approve them for everyone and have a right to reject approval. After he earned a bit in fees and realized he needs to ask for approval to enable automatic withdrawals, he contacted us to enable them and was kindly asked to wait for approval. He then decided to proceed with reputational damage and fearmongering in this thread, which invoked our personal decision to cease the current partnership with him after allowing him to withdraw his earnings to fulfill our part of the deal. When somebody decides to employ their forum influence to push on us this way - this is a guaranteed unilateral partnership closure from us.

3. Tor with HTTPS is more reliable than without HTTP, because it gives users a chance to verify the TLS certificate's fingerprint and confirm they are on the correct resource, since the certificate employed on the HTTPS version is signed directly by us and works similar to our PGP public key. Without HTTP it's very easy to become a victim of a phishing scheme, and since our project is often targeted by such, we recommend Tor users to prefer the HTTPS version with performing constant certificate fingerprint verification.

Now, on HTTPS over Tor security. Is HTTPS over Tor for .onion domains secure? Absolutely! Is HTTPS over Tor for .onion domains more secure than HTTP over Tor? Absolutely, in case you can confirm the TLS certificate belongs to the resource you are using. The "insecure" wording used by current Firefox branch (and therefore Tor Browser, since it's its fork) can be extremely misleading when users access HTTPS .onion sites over Tor, since most sites like ours will opt by using a self-signed certificated because it's still very complicated to get a certificate signed by known certificate authorities for .onion domains, therefore Firefox's default behavior is to mark any self-signed certificate as "insecure", meanwhile it can mean the opposite, like in our case. However there are some developments that soon might allow facilitated issue and verification of .onion HTTPS certificates (like this one https://github.com/alecmuffett/onion-dv-certificate-proposal/blob/master/text/draft-muffett-same-origin-onion-certificates.txt).

Some people prefer HTTPS over HTTP for .onion domains simply because it multiplies their security factor by 2 and in case there is a hypothetical chance that Tor's standard encryption may fail (which is of course very unlikely), and since very few Tor users are PhD cryptographers and coders that can audit Onion Services protocol security (don't forget that it's VERY complex for an average cryptography expert, since it also requires expertise in network security), it's simplier to rely on additional security like HTTPS instead of Internet posts from Stack Exchange Security.

4. Our Tor domain is being DDoSed since the previous month, therefore access issues some users are currently experiencing are normal and will persist till the DDoS stops. Since the DDoS technique employed by attackers is targeting available circuits in the network (paths) ready to process client communication with the HS and not directly the HS, we are using multi-hop path distribution protection technique to make the resource available by assigning multiple Tor instances to as much as possible different circuits. One or a few circuit changes is everything users need to do to successfully access the .onion domain if it appears offline to them.

5. In regards to Cloudflare DNS used by our domain name, it was already answered by me a long time ago in exactly this thread and I don't feel like re-writing what I wrote already just because some don't understand the difference between the terms "DNS" and "reverse-proxy":


Source: https://bitcointalksearch.org/topic/m.62841789

Few people know about the owner's location and the location of the exch server, as far as I understood, they tried quite hard to hide that part. I assume this represents an additional problem for hiring more dedicated support because it would affect their anonymity. In the long term, it can be tiring and a problem.

If it is a one-man business (or one that has just a handful of staff but only a select one or few has access to the servers), then if physical health becomes a factor it could take a lot of time to resolve. I suppose a lot of the confusion and theories could have been removed as possibilities if they had made a post when they logged back in to the forum. I hope these issues are not related to people operating the business being affected with any sort of health conditions.

That is true, life certainly is full of unforeseen or unanticipated circumstances. Even in the most ideal situations, there are going to be eventual occasional bumps and blips along the way (but I think the issue being raised by several members here is the length of time involved).

In ideal conditions where everything works perfectly, everyone should have customer support within a reasonable time. However, life is full of unforeseen situations that, unfortunately, few people today have an understanding of.

Every service has occasional problems and I think we all know that. Unfortunately, those who used the exchange at the time when these problems occurred obviously experienced inconvenience, but I completely agree with @icopress that we just need to be patient and that everything will be solved.

I don't know if there is any data from where the owners of the service come from or where the servers are located, but it's hellishly hot in most of Europe and parts of the US, so there are frequent power outages and there may be problems with server operation. It should also be taken into account that it is the time of annual vacations in the northern hemisphere.

When someone so reputable is gone for a month, I'm not worried about their integrity. I'm worried about their physical wellbeingness.

I hope the people behind eXch are very careful with their anonymity.

This service is not a scam, just be patient. Anyone who doubts eXch's solvency should remember that they have been operating for 10 years, not to mention the fact that about a month ago they donated $220,000 to non-profit projects.