How can i punish a member that first gives away his password and then charges back?
 

221 login attempts by 5To........... from 168 IP ranges in 5 countries
31 successful logins by 5To........... from 8 IP ranges in 2 countries

after Strongbox killed this user, he made a chargeback

i have his name, address and email

should i write him a nice letter?

asshat...

similar thing happened to me

what can we do!!??

Nah. His life is probably worse than yours. Spend your energy on something positive. Nothing good can come from spending another second on him.

Find him on facebook.... friend him with a hot babes profile.... post on his wall and humiliate him :)

Send him a link to some free (virus filled) content ASAP.

Exactly!!

Oh, start checking tubes and social networking sites for your content, lol!

Btw just because his user account hit you from that many ips and he chargedback doesn't mean he was fraud. What if he joined then couldn't login and said fuck this i want my money back. You have to be very careful how you handle blocked strongbox users.

i see what you mean but 31 successful logins from 8 IP ranges and 2 countries within just 2-3 days indicates that this was not the problem i guess.

but next time i'm smarter: when i see the Strongbox mails i'll kill the user and refund him immediately - including an email that he can try that somewhere else.

but maybe you can send me some big boob traffic to make up for it? :Graucho :1orglaugh

We email the customer and send them a new login or something like that.

Don't be so quick to refund :) Look at the data. Did his ip match his address. Stuff like that. If it's definitely fraud then refund and cancel. But in most cases it's worth it to try to work it out. Let them know you have a strict policy on downloads etc.

Btw do you allow download managers? Do you have a daily limit?

sounds actually like the best solution, yeah

i use Throttlebox and have set reasonable limits. only a few users seem to cross those and so far at least no one complained personally. And it's explained in the FAQs.

They could just be running something like FoxyProxy constantly switching ip address or be a paranoid weirdo using Tor.

Happens all the time.
Had one guy from Turkey few days ago BSing his way thru about not being able to view videos, problems with password. I can see thru admin panel that he has been downloading gigs of content but just went with his riddle. Next thing you know 100's of IPs using same login and then comes CB.
Not worth time stressing over it :2 cents:

Say the word and I'll go to his house and pull his links.

.

My personal suggestion would be to allow download managers and not limit downloads. If someone wants to download my entire site they are welcome to try.

i dont make enough money yet to afford the bandwidth if everyone does that ;)

Your bandwidth should cost you $3 to $7 per mb/s (if not hit me up I'll host you). I'm just offering friendly advice. BW cost should not be a factor. It's about the customer experience you provide. There is actually a thread on our forum this week thanking us for not having limits and actually working with our members so their download managers work well on the site. Nobody reads terms and conditions. Put yourself in that guy's shoes.

I guess that is why I see your content literally everywhere.

:thumbsup:thumbsup:thumbsup

I'm working on that. I'd rather my content be everywhere and the majority of my members are happy customers likely to renew or rejoin at some point in the future.

My members are loyal to me because they know I care and I will do my absolute best to deliver what they want. They've told me how they want to surf and use the site and I've built it accordingly. That includes no limits and catering to download managers.

alot of times people get their passwords sniffed, it is likely he had his password sniffed and chargedback once his membership stopped working. it's also possible he is just a scammer

wisest words on here :2 cents:

Its not your job to punish him.

send him to kink armory to be a sub or gimp?

I'll change a members password twice, the 3rd time I cancel the members account and change the pw again, this time I wait for them to contact me. If they do, I'll activate it back, but if it leaks again, I ban the IP for 90 days.

I also scan for leaks in strongbox, to kill the micro leaks that are too slow to set off strongbox. When I find these, I only reset the pw once... after that I start the cancel process as most of these... are bot IP's.

Amazing advice Shap.

and refund him?
LOL
newbie...... ;-)

Not sure if you will come back and read this, but you just showed how much of a newbie you are as a webmaster. Like asshat status and no offense, just stating facts here. But from a security stand point you look like a 3rd grader.

From what you posted it so so fucking blatently obvious what happened that I almost think this post is fake.

it is obvious that the unsuccessful attempts were from crackers trying to get free passwords, they got his and shared it for him most likely in a forum and others came in and used it. It got blocked. He comes in and it don't work and he thinks your are some kind of asshat and charges back.

That is what surfers do now. If the experience goes south, insta-charge back. No hesitation.

Break his legs with a baseball bat. And ask questions later.

u should try phantom frog.

and dont spend time for punishing someone, u can use that time in some productive way.

If he charged back and you have evidence he was a legit cc holder, you can use crbcompany to hunt him down and send repayment letters.

I would do nothing...

Let's hunt down that Tube owner do horrible things to him slowly!

this would be my guess too. this is common and i bet he had a simple login. the htpasswd file isn't that hard to get and once they have the usernames they run a script to match up possible passwords.

when this happens i reset the username and password to a more complex one. if it happenes again he's what i consider an "undesirable customer" and i keep him blocked.

I would take a dump in a box and mail it to him.

voodoo curse

Email ccbill to block him from joining your site in the future.

Some customers arent worth having, if they charge-back they weren't even customers to begin with.

Yeah, it is a good idea if your software makes a DNS lookup in some of the TOR ip blacklists.
E.g. .torexit.dan.me.uk or http://www.sectoor.de/tor.php

Hand his credit card information off to some shady russians...

Totally agree.