Topic: MavenBets.com - New Crypto Casino - Looking for Partners & Investors - page 2. (Read 18930 times)

Most good developers can make a casino platform and games. The difficulty is the security in the system. Everything from user authentication, session management, , cross-browser usability, responsive design as well as every other possible scenario you could never imagine. Trust me on this. I spent 2 years developing ours, and we still find issues on occasion. Forum members here helped us find one just yesterday. It is a never-ending process that requires constant tweaking and upgrades through time. Here are a few of the issues we uncovered while developing our platform and game integrations.

Our biggest "Oh Sh$$T moments".

(1) Session IDs. In the beginning (4 years ago). We had sequential session IDs, and not random ideas. One player figured this out and started playing with funds of other users who were online at the same time. This did not cost us anything but time and explaining to the affected players what happened.

(2) Wager spamming. About the same time, another player ( or the same one) developed a spam bot that made 1000's of bets per second. Each bet placed was nulled immediately. This was like a DDOS to the system, forcing the system to accept bets after the result was seen on the screen. This caused the result to be available before the bet was placed. SO, the system gave the result, and then the bot finally placed the bet that was correct. The player won 300k in 3 days. We actually paid out 20k before we found out what this guy was doing. He had consistently about 150% payout ratio for live roulette. The scary thing is, that if the player was not greedy, he could have milked us for years. Thankfully, he was greedy.

(3) Bonus abuse. I'll save this for another time, but bonus abuse is a real issue.

ok, so my list was not long. The underlining truth is that there are way smarter people out there who could crush you. It's simple as that. God forbid you cheat a player. That brings me to #4.

(4) Ethics: I can not stress this one enough. If you cheat anyone you will be shut down by the geniuses in #2. I've seen it. Actually, it doesn't take a genius to shut someone down. It only takes a blackhater who has access to DDOS attack. Even if there is DDOS protection, you can still shut them down and/or casue them to have so much latency that they can not function normally. I've seen this scenario play out with other brands a number of times. It doesn't take much.

If I had to build another system today, I wouldn't. I would spend time marketing and less on dev.

Added a modal that shows all previous server seeds!

Honestly, I was waiting for OP to prove his funds before getting into deeper site check but I see discussion went straight into.
So I'll add my two cents.


IMO this procedure is not flawless as well. It can bring players to grey area if not treated properly.

I don't think it's necessary but better remind the obvious: User needs to be sure the server seed was generated before he gives his new client seed.
first initiate the client seed change then let the server generate the server seed (get it's hash) and only after that provide your client seed (or as most casinos do: giving you straight the next server seed).

This way the player is indeed assured the casino won't rig the game upfront but it can't guarantee him the casino won't try to cheat (by changing the server seed) when he starts to dispute the roll result.

And this is the grey area.
In case of dispute the user have to somehow prove the server seed (he's putting into verifier) was indeed the one which was provided and used (that he just didn't made it out of his head).
To make this possible there would have to be some undeniable record (not just text in database which can be changed at will, but blockchain like structure) of all used server seeds including how many rolls was made, related client seed etc.
Without such (public) record the casino can always say: No no, your server seed for that roll wasn't XXXX. It was YYYY (and client has no way to prove them otherwise).
Actually don't think any casino offers something like this (I'm not gambling much anymore so maybe there is some ). It's all kinda pseudo fair system.

Just as a note: Nonce has not to always start from 0. It can start from w/e number they decide (it only has to be always the same number). As long as the site states in FAQ which number the nonce going to start there is no problem.

Name of the operator and where you are incorporated?

Or do you operate it anonymously?

It doesnt need to be perfect but it does need to be fair and thats what most people want.

Read up some basic info on whats marlboroza talking about client seed and server seed
https://dicesites.com/provably-fair

You would realize that your site isnt really fair at all.

Then you do understand site isn't provably fair.
Did you expect people will tell you how great your not provably fair site is? 

In case you missed:

I do understand provably fair, this is just the first version of the website so it's not exactly perfect.
I posted it here to get some feedback, didn't expect people to start derepping me straight away...

What a kind of behavior for a certain gambling site owner who doesnt accept any complaints or suggestions about on its own site rather.

---

I do have the doubt or the feeling that this person doesnt really know on how provably fair works nor doesnt even have the idea on how to prove funds basing on what i do read above.
For OP, gambling site business do really need lots to arrange on not just on putting up a stall and generate income directly.

Question is not what I like or what I don't like and this definitely isn't shit talking.
Every time player change client seed you have to reveal previous server seed, that's it. Not only that, every time someone change client seed nonce has to start from 0.
With all this, player will be able to verify fairness of their bets - which is impossible to do at the moment.

---

What is maximum bet/win amount?

No, it is not that I don't think it is not provably fair, I KNOW it is not provably fair. It is sad to see that you have spent so much time in gambling section advertising gambling site and you didn't bother to understand how provably fair system works and/or how to check it.  
Yeah, do that, wait for more experts to tell you that site isn't provably fair

---

---

On side note:



O boy, tagging me with fake retaliatory feedback linking reference to random scam accusation thread speaks for itself.

This is obviously not good behavior of an admin or owner of a new gambling site. You really need to accept any feedback, complain, suggestion etc. His main concern is about the most important thing of a gambling site, which is about provably fair system. He thinks that your site is not provably fair, but if you think it is provably fair already then you can just explain it. Simple as that. I don't have good knowledge about provably fair system, so I'll wait for more experts about it to come here and confirm about your system.

We just haven't added the page to see server seed histories. If you don't like the site, don't play, no need to shittalk.

I am not sure which part of my post you don't understand.

Site is not provably fair, that's it. Instead of making it provably fair you are trying to convince people that it already is. I am done here.

You're changing the client seed, not the server seed

Nonsense.

I had to check it myself and this isn't provably fair site. There is no way to verify result because only thing you will show is hashed server seed and no matter how many times player change client seed, hashed server seed will always be the same.

Try to research what is provably fair system and how it should work.

already join site ill check first any fiture of your site sir

Fascinating. Do you have any preliminary studies on revenue, demographics, or any other projections? Do you have experience in executing an online gaming brand? How about an affiliate program? Please PM me and I'll would like to talk to you about it.

In general. The bankroll amount indicates what kind of players your site going to attract. Higher the bankroll = higher amount bettors ... so the aswer is: as much as you can afford to lose.
Just publish your address with signed message. (note these funds should stay there to keep your site credible). The best way is to use cold storage address which won't be used to pay regular withdrawals. Only in case of some huge (jackpot or w/e ) wins.

BUT

First you should consider limiting max bet amounts (how much players can win by single roll).
Do not allow win amount to be more than let's say 10% of your bakroll (If you have 10 BTC then max possible single roll win should be 1 BTC ) ... otherwise some lucky player can turn you insolvent in few bets.

How much do I need to prove?
Mirae didn't say anything meaningful, he referred to an unused variable that we sent in the post request, that's just an unused variable, nothing more.

do you have any proof of funds?
a free faucet  and your usual UI , nothing that should be unfamiliar for a regular dice player
10% of the house edge  affiliate, not really spectacular, but it is there
do you plan any promotions or giveaways for bitcointalk members?
I can see the the provably fair implementation on the site, well done, but can you answer Mirae concerns properly?

Why so mad lol
We used to send the client seed with each roll but then we switched it to server sided saving, what's so special about that?