Topic: GLBSE 2.0, Is safer now. - page 3. (Read 8809 times)

I bet if you asked him he would have done so for you.

You were never anon. Your IP had been logged, it's tied to this forum where there is a picture of you and messages in the db that I'm sure your email is located. A few members in the trading section have your address and probably a birth name.

Still can not tell if you are serious Goat...

I think this is an understandable concern for people who wish above all things to remain anonymous. We're not asking regular traders to verify their ID, they don't even have to use a real email address (although they had better hope the don't lose their password or need to recover their account.). But Chaang is basically the largest entity being traded on GLBSE over 3 shares and has gotten thousands of BTC in shareholders money.

If you want to have this position, and do these things (get large amounts of other peoples money) showing some ID to the guy who runs the exchange is a very small requirement, a bank loan for 500USD has more requirements.

Do you not remember when GLBSE first started, and everyone, everything was anonymous, the result was time and again shareholders got scammed, we put up with that for nearly a year.

Now there are all very best excuses to delay the identity information submission.   Maybe it need some time to prepare some fake ID and passport. In Thailand, with a white face, visiting the local black market asking for a fake passport... man, it's not a easy job.

give him some time, Nefario.

I cannot understand why Nefario is so wrong to protect the public investor by asking the ID information from the issuer, who raise money from maybe hundreds of people. Isn't Nefario's requirement in the best interest of the community all? we see Garr puts all his information public, and Garr is not alone. Why there are people in this world have so strong ego saying that "trust me or leave and I won't let you effectively verify whether I'm the person who I have said is"?

This.  Seems like a reasonable concern to me despite all of the drama.  I was going to bring it up myself in response to the same post, but he beat me to it.  If the appropriate legal entity can get you to decrypt that USB key and claim all activity on GLBSE is illegal (whether said entities behavior and use of said information is legal or not), then they can come after everyone who they have proof you have worked with.  Personally, I was very concerned about using a main e-mail address instead of a more anonymous one as just a trader, but I believe this falls under the realm of hobbies and I am small time enough that US tax laws don't even touch my holdings for a hobby regardless.

/o\

Just deal with this Goat, enough soap opera...  

You could have sent a message to your share holders via GLBSE and dealt with this in private between yourself and Nefario. It would more than likely be resolved already.

Part of the first email I sent in reply to your question on your account not letting you in.


The documents are stored on a USB hard drive with hardware encryption, hanging off the side of my dying netbook, on the coffee table of the house I live in (in Manchester, UK) where I spend too much of my day in front of.

GLBSE and BitcoinGlobal are not registered as businesses anywhere.
This has been clear from the beginning.


I've been saying for months (and keeping everyone informed)that we're bringing in more verification and processes to increase the reliability of asset issuers and keep out scammers. This is not new.


Why are you only asking these questions now?

You've been using GLBSE for many months, and it's only now you begin to question the legality of it all?

Listen, verify your account and I'll unlock it, you can then reset the password and continue on as you had before.

No one would have known the difference if this were handled differently...

Write down the code then... and don't lose your phone, but just in case you do then write down the code. You can then enter it into another phone.

Also be careful if you have more than one GLBSE account, rename the account in Google Authenticator app before scanning the second code, otherwise it will be overwritten.

It's based on time, so if you get failed attempts it's because the time on your phone and the server are not in sync(or you're making mistakes). The server syncs with time servers and generally is never more than a few milliseconds off.

If you have real trouble try entering the code a little late, a few seconds before it changes.

I just activated this and tried it.

2 failed attempts, dont know why, then it worked like a charm.

What if I lose my phone?

Nefario,

thanks for making things clear in your long post above.

I'm now confident things will resolve to the good side and both glbse and TyGrr-* will come out of this strengthened.

keep up the great work you do for the community.

you have to log in, click on settings and enable it for any (or all) of the supported options
by default it's off

& my 2 million satoshi: any asset issuer could pro-actively seek nefario with a request to verify his identity.
with nefario keeping the submitted docs offline and only indicating their statuses on the asset page it's only between the asset issuer and nefario.

edit: I installed the google authenticator app, enabled 2step authentication in my account and then set up glbse to use it.
and it works like a charm. when enabled, it adds a new entry field on the page and retyping the code is easy. only 6 chars.
should also work over phone once forgotten at home and it would have to be read by somebody else to you. me gusta

Just for the record:
I am aware that it is a new feature.
I have added emphasis to the quoted section of my post (which wasn't directed at you) to clear up that I am not providing accusations here.
I have dded emphasis to your post to your post to indicate the answer that would have been good enough for me.
Nefario has responded adding OTC, and indicating it is not built-in because he wants to keep identity docs secure, but I would have been comfortable assuming you were waiting for it to be built in based on the beta tag and not expected you to contact nefario just to verify your identity if nothing indicated that being necessary.

Two factor authentication has been added for withdrawals, transfers, and password changes(this will effect the account recovery option).

Implemented using GoogleAuth

Goodnight.

Ah, yes. I have even used it before! Just didn't see it on the GLBSE site, that's all.

Check my sig.

Do you have a public GPG key for encryption of docs?

Yes I'll add OTC in there.

At the moment all ID verification (including the collection of document pics to verify) are done manually. I take peoples ID information very seriously, and don't want to keep those docs online. I need a way to automate the collection of the docs, and manage the verification them that is secure.

Identification was not required in 1.0, at the time BIB.goat was issued. Even now, it is optional. Nefario, could you also add OTC as an option for verification? I know you have allowed this for the MPOE-ETF offering. Also, there does not appear to be any functionality built in to 2.0 to provide verification info for previously issued assets.

The000Dustin, how would you like me to prove I'm not goat? I think proving a negative is a pretty hard thing to do.

Does this help?


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

I hereby state that I have viewed photo ID for goat in the form of a Thailand work permit and a utility bill and do solemnly swear that I am not goat and goat is not me, as said ID and utility bill differs from that of mine, which I have also viewed.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.17 (MingW32)

iQEcBAEBAgAGBQJPeqETAAoJELlDeJJBw5c+MLcH/R5A+4TGml0elPe1JrV/JU3V
M+qaCcVl7sW5oYcOJMD4fCc/XxExZk8+LgbnecAJKC7JRsPHBajE1wlpYqUGF79e
otI8J8hxrmzkL1E+Md8zHGpA9/iDUvrgI1M/xamZ10aQ4wglKcBvvuU1yZ1ewlFV
C9ajiSBeSvUfU1kqben3snqLQ3Mzbhei4+obgg1Q3AgDpPJ4ct5+TNG02yvRmhcs
7fKUDMnBA4YUN0gW41ctuDwcUrZ378DKBMeLF7BWWG0FdSJ/EAo8sJqx/H3wF/DK
c5jR7j9mzNfqfKyDdC9mKlQLgsewsTuWA5KQ/SwGI5XarOFf7xVHpwOKKBVx5UM=
=tdAR
-----END PGP SIGNATURE-----

Sure, maybe I faked my otc ID and the trades I did with my otc account (http://bitcoin-otc.com/viewratingdetail.php?nick=brendio&sign=ANY&type=RECV)

I will use the GLBSE for any issue that I would purchase directly from the company. There are some coming up that I would not want to miss.

Nefario has responded immediately to the call for additional security, and is working to clean up a situation that has been pre-existing. I do not have significant concern for the safety of my money in the GLBSE. I do not yet have significant funds invested.

I have some positions established at GLBSE that I will not close over this matter. I will only be opening new positions that are with 100% verified issuers. I may close any positions whose issuers are not verified within the next week.
FWIW, since a pic of a passport is so easily faked, this is insufficient.

For future investments, depending on the amount trying to be raised in an offering,  I will likely require that the passport be verified via credit reporting agency or background check service. I expect any costs of that type of verification will be passed onto IPO buyers. For very small offerings, with definite potential profit, I may consider simple verification.

In the near future, if the issue is large enough, I might add independent financial audits to my list of requirements.

In some ways I'm very intrigued by the idea of investing in anonymous organizations, but I really don't think we have methods to adequately protect ourselves in most of these situations. Very small issues could be fun to work this out.

I wonder what it says when one of the safest seeming, most shit together issues on the board is run by a 16yo.

I don't see any issue with using the GLBSE. I don't have any more deep concern about it than I do about any other large or high profile bitcoin service.

FFS, I'm using beta money, why shouldn't I invest it on a beta stock exchange?!