Pages:
Author

Topic: I'm selling through PayPal! - page 4. (Read 6821 times)

member
Activity: 112
Merit: 10
Don't get eaten by wolves!
August 25, 2011, 05:41:51 PM
#34
Why do you care if someone has your phone number, a PUBLIC address, and a physical address? What's he going to do? Give you more money? Send you something? Call you for a nice chat? Madness!
newbie
Activity: 29
Merit: 0
August 25, 2011, 05:37:51 PM
#33
Been waiting for my pin for a while now and still haven't received it..
In some cases it takes some time to arrive. Please make sure that the number you wrote is properly detected at http://www.donotcompare.com/btc/existsNumber.php

why you identify by phone ?
isn't receive address unique enough for it ?

Also, you can hash not phone itself but some constant text + phone
thus leaking only db won't harm anyone

The identification by phone is to identify unique users. When a scammer makes a chargeback, it more effective to block his access by his phone number (he might have several phones, but a limited number after all) rather than by his bitcoin address (which can -and should- vary with each purchase), or even his IP.
When I pass from the BETA state to the production mode, phone numbers will be encrypted with a secret key.


In order to better fit the policy of Paypal and to avoid a fraud rate too high I am implementing an automated deliver of a physical good to the user's Paypal address. Which object to choose is not obvious, since I has to comply with the following:
  - It has to be cheap, in order to avoid increasing the price too much
  - It can be sent cheapily worldwide
  - It can only be delivered in case I have sent the Bitcoins
  - The user doesn't need it to cash his coins (i.e. the transaction will still be instantaneous)
  - It has to prove that the coins were sent, even to a person with no knowledge of Bitcoin and no mathematical background.
  - If a scammer uses the system he would not want that object to be delivered to the real owner's address.
  - The user has no way to forge the object, and to say that what he received was not what he expected.

Many criteria but I think I got it. I will also avoid sending the PIN at each purchase. It is expensive for me and a source of troubles for users.

In matter of days I expect to have the BETA2 ready. Thanks again for your support!
So you will have access to phone number + address + bitcoin address?
You must be kidding!
full member
Activity: 141
Merit: 100
August 25, 2011, 05:33:57 PM
#32
Site's up and I got my BTC! Great service, when it works.

+1
sr. member
Activity: 364
Merit: 250
August 25, 2011, 05:23:09 PM
#31
Got 0.1 BTC real quick Smiley
When will actual system come into place?
newbie
Activity: 59
Merit: 0
August 25, 2011, 05:11:26 PM
#30
Its showing me like this:
Current* price: 1 BTC = $ 6.986
Current Bitcoins available: BTC

That happens when it cannot retrieve the balance from the wallet, but it seems to be working fine here. Try Ctrl+F5 to reconnect with the server.
There are 0.3445 BTC available at the moment
sr. member
Activity: 364
Merit: 250
August 25, 2011, 05:07:28 PM
#29
Its showing me like this:

Current* price: 1 BTC = $ 6.986

Current Bitcoins available: BTC

Are there no bitcoins available currently?
newbie
Activity: 59
Merit: 0
August 25, 2011, 04:57:28 PM
#28
Been waiting for my pin for a while now and still haven't received it..
In some cases it takes some time to arrive. Please make sure that the number you wrote is properly detected at http://www.donotcompare.com/btc/existsNumber.php

why you identify by phone ?
isn't receive address unique enough for it ?

Also, you can hash not phone itself but some constant text + phone
thus leaking only db won't harm anyone

The identification by phone is to identify unique users. When a scammer makes a chargeback, it more effective to block his access by his phone number (he might have several phones, but a limited number after all) rather than by his bitcoin address (which can -and should- vary with each purchase), or even his IP.
When I pass from the BETA state to the production mode, phone numbers will be encrypted with a secret key.


In order to better fit the policy of Paypal and to avoid a fraud rate too high I am implementing an automated deliver of a physical good to the user's Paypal address. Which object to choose is not obvious, since I has to comply with the following:
  - It has to be cheap, in order to avoid increasing the price too much
  - It can be sent cheapily worldwide
  - It can only be delivered in case I have sent the Bitcoins
  - The user doesn't need it to cash his coins (i.e. the transaction will still be instantaneous)
  - It has to prove that the coins were sent, even to a person with no knowledge of Bitcoin and no mathematical background.
  - If a scammer uses the system he would not want that object to be delivered to the real owner's address.
  - The user has no way to forge the object, and to say that what he received was not what he expected.

Many criteria but I think I got it. I will also avoid sending the PIN at each purchase. It is expensive for me and a source of troubles for users.

In matter of days I expect to have the BETA2 ready. Thanks again for your support!
sr. member
Activity: 461
Merit: 251
August 25, 2011, 04:04:39 PM
#27
Been waiting for my pin for a while now and still haven't received it..
newbie
Activity: 5
Merit: 0
August 25, 2011, 03:59:42 PM
#26
Quote
A hashed version will be stored in a database in order to anonymously identify you for your future purchases and increase your limit.
Wat?
6 seconds to calculate the hashes of all the phone numbers containing 6 digits
-> 60000s < 20h to calculate the hashes of all the phone numbers containing 10 digits

And this only on a CPU, imagine on a GPU...
why you identify by phone ?
isn't receive address unique enough for it ?

Also, you can hash not phone itself but some constant text + phone
thus leaking only db won't harm anyone
newbie
Activity: 21
Merit: 0
August 25, 2011, 03:23:42 PM
#25
excellent service
member
Activity: 85
Merit: 10
August 25, 2011, 01:09:55 PM
#24
Great service - ordered 0.1 BTC and within 15 minutes was in my wallet!
Easy to use and quick. A+
member
Activity: 80
Merit: 10
August 25, 2011, 09:07:29 AM
#23
Careful though.. I've heard several occasions where Paypal blocked an account for btc trading.
newbie
Activity: 59
Merit: 0
August 25, 2011, 07:59:59 AM
#22
At this moment I am negotiating with Paypal and Moneybookers the conditions. I expect to reach a conclusion soon and start in production mode. These will be the features:

 - An initial limit higher than 10 cBTC (slightly higher)
 - Faster limit increase with purchases
 - Prices slightly higher than market
 - More coins to sell
 - Daily limit on PINs sent (so please make sure you write your number correctly).

And of course a better layout ^_^

Thanks for your testing and I invite you to keep using the BETA!
newbie
Activity: 55
Merit: 0
August 24, 2011, 05:25:50 PM
#21
I used my country code in front of my number and then everything worked great. Looking forward to this system leaving the beta stage so I can purchase higher amounts!  Smiley
member
Activity: 112
Merit: 10
Don't get eaten by wolves!
August 24, 2011, 07:28:57 AM
#20
Site's up and I got my BTC! Great service, when it works.
newbie
Activity: 59
Merit: 0
August 24, 2011, 03:36:38 AM
#19
The server is online again. The PIN you received is still valid. In case you didn't receive it or you want to ask for a different one, please write me a PM with the SHA1 of you mobile phone http://www.tools4noobs.com/online_php_functions/sha1 and I will provide you with the PIN (or allow you to ask for a different one).

I got the PM and was able to complete the order, but never got the SMS.

Although when you click "Get PIN" you should see a message saying "PIN sent" or "Invalid number", maybe your browser has javascript blocked, and thus you see nothing. In that case, and to be sure you number is accepted by the SMS Gateway, visit this link http://www.donotcompare.com/btc/existsNumber.php
newbie
Activity: 59
Merit: 0
August 24, 2011, 01:33:41 AM
#18
I got the PM and was able to complete the order, but never got the SMS.
In some cases the SMS takes more time than usual. Once the server is up again I'll provide you a link to let you check if the SMS gateway does not understand the format, does not support the country or it's just slow delivering SMS's.
The site is a dead link, no-one can even look at it until it is fixed.
I had to wait an hour before I got my confirmation SMS, and now the site seems to be down.
The server appears to be down. I'm handling that right now with the technical support. Once the server is up again your PIN will still be valid.

Anyway, for those who the SMS arrived and made the payment, the coins have been sent.

Thanks for your patience


In both cases you have to rip the card/coin open, so it becomes pretty obvious that it has been mutilated.

I see that you have thought about the main problems. Good luck! But just one more thing. Imagine the following scenario:

The Paypal fraud responsible receives an chargeback request from a buyer who claims that the seller sent him a physical bitcoin, but when he opened it and tried to recover the funds, it was empty (or there were less than half the advertised funds). On the other hand, the seller claims that the card was unmodified and that the buyer is trying to scam him. How could the person in charge of fraud prevention at Paypal find out who is right?
member
Activity: 85
Merit: 10
August 24, 2011, 12:30:18 AM
#17
The site is a dead link, no-one can even look at it until it is fixed.
member
Activity: 112
Merit: 10
Don't get eaten by wolves!
August 23, 2011, 10:23:02 PM
#16
I had to wait an hour before I got my confirmation SMS, and now the site seems to be down.
vip
Activity: 1386
Merit: 1140
The Casascius 1oz 10BTC Silver Round (w/ Gold B)
August 23, 2011, 07:23:53 PM
#15
Are you talking about Bitbills (bitbills.com)?

Nope, I'm talking about the 100+ lbs of brass Bitcoins I have here that will be offered for sale as real bitcoins once I receive a shipment of custom Casascius bitcoin security holograms I am waiting on!

I have been thinking about it before starting this project, but I finally decided not to do so for several reasons (I write as if I were a potential buyer):
  - If I bought a bitcoin and I have to wait until it arrives, I can also go to the bank and make a wire transfer. It can even be faster.

The buyer sacrifices the ability to do a chargeback and the comfort of ordering online.  There's also the wire transfer fee.  That will be fine for many buyers (myself included - wires work well for me).  But Grandma might prefer the physical coins.

 - Once you have the physical coin, it's not easy to make it digital again (sure there are tutorials, but it is far more complicated that a common electronic transfer).

I am hoping that some website (TradeHill etc.) will soon offer the instant ability to type in a private key code and redeem bitcoins.

 - In case you are not talking about bitbills, nothing prevents the buyer to keep a copy of the private key (in case of bitbill they claim that the card becomes useless after the private key has been read. Well, it's a matter of trust).
In both cases you have to rip the card/coin open, so it becomes pretty obvious that it has been mutilated.

Those are the drawbacks I have found before starting such a business. I'm almost sure you have thought about them and many others, but just in case it could help you to find solutions!

Pages:
Jump to: