How can i punish a member that first gives away his password and then charges back?
 

221 login attempts by 5To........... from 168 IP ranges in 5 countries
31 successful logins by 5To........... from 8 IP ranges in 2 countries

after Strongbox killed this user, he made a chargeback

i have his name, address and email

should i write him a nice letter?

asshat...

similar thing happened to me

what can we do!!??

Nah. His life is probably worse than yours. Spend your energy on something positive. Nothing good can come from spending another second on him.

Find him on facebook.... friend him with a hot babes profile.... post on his wall and humiliate him :)

Send him a link to some free (virus filled) content ASAP.

Exactly!!

Oh, start checking tubes and social networking sites for your content, lol!

Btw just because his user account hit you from that many ips and he chargedback doesn't mean he was fraud. What if he joined then couldn't login and said fuck this i want my money back. You have to be very careful how you handle blocked strongbox users.

i see what you mean but 31 successful logins from 8 IP ranges and 2 countries within just 2-3 days indicates that this was not the problem i guess.

but next time i'm smarter: when i see the Strongbox mails i'll kill the user and refund him immediately - including an email that he can try that somewhere else.

but maybe you can send me some big boob traffic to make up for it? :Graucho :1orglaugh

We email the customer and send them a new login or something like that.

Don't be so quick to refund :) Look at the data. Did his ip match his address. Stuff like that. If it's definitely fraud then refund and cancel. But in most cases it's worth it to try to work it out. Let them know you have a strict policy on downloads etc.

Btw do you allow download managers? Do you have a daily limit?

sounds actually like the best solution, yeah

i use Throttlebox and have set reasonable limits. only a few users seem to cross those and so far at least no one complained personally. And it's explained in the FAQs.

They could just be running something like FoxyProxy constantly switching ip address or be a paranoid weirdo using Tor.

Happens all the time.
Had one guy from Turkey few days ago BSing his way thru about not being able to view videos, problems with password. I can see thru admin panel that he has been downloading gigs of content but just went with his riddle. Next thing you know 100's of IPs using same login and then comes CB.
Not worth time stressing over it :2 cents:

Say the word and I'll go to his house and pull his links.

.

My personal suggestion would be to allow download managers and not limit downloads. If someone wants to download my entire site they are welcome to try.

i dont make enough money yet to afford the bandwidth if everyone does that ;)

Your bandwidth should cost you $3 to $7 per mb/s (if not hit me up I'll host you). I'm just offering friendly advice. BW cost should not be a factor. It's about the customer experience you provide. There is actually a thread on our forum this week thanking us for not having limits and actually working with our members so their download managers work well on the site. Nobody reads terms and conditions. Put yourself in that guy's shoes.

I guess that is why I see your content literally everywhere.

:thumbsup:thumbsup:thumbsup

I'm working on that. I'd rather my content be everywhere and the majority of my members are happy customers likely to renew or rejoin at some point in the future.

My members are loyal to me because they know I care and I will do my absolute best to deliver what they want. They've told me how they want to surf and use the site and I've built it accordingly. That includes no limits and catering to download managers.

alot of times people get their passwords sniffed, it is likely he had his password sniffed and chargedback once his membership stopped working. it's also possible he is just a scammer

wisest words on here :2 cents:

Its not your job to punish him.

send him to kink armory to be a sub or gimp?

I'll change a members password twice, the 3rd time I cancel the members account and change the pw again, this time I wait for them to contact me. If they do, I'll activate it back, but if it leaks again, I ban the IP for 90 days.

I also scan for leaks in strongbox, to kill the micro leaks that are too slow to set off strongbox. When I find these, I only reset the pw once... after that I start the cancel process as most of these... are bot IP's.

Amazing advice Shap.

and refund him?
LOL
newbie...... ;-)

Not sure if you will come back and read this, but you just showed how much of a newbie you are as a webmaster. Like asshat status and no offense, just stating facts here. But from a security stand point you look like a 3rd grader.

From what you posted it so so fucking blatently obvious what happened that I almost think this post is fake.

it is obvious that the unsuccessful attempts were from crackers trying to get free passwords, they got his and shared it for him most likely in a forum and others came in and used it. It got blocked. He comes in and it don't work and he thinks your are some kind of asshat and charges back.

That is what surfers do now. If the experience goes south, insta-charge back. No hesitation.

Break his legs with a baseball bat. And ask questions later.

u should try phantom frog.

and dont spend time for punishing someone, u can use that time in some productive way.

If he charged back and you have evidence he was a legit cc holder, you can use crbcompany to hunt him down and send repayment letters.

I would do nothing...

Let's hunt down that Tube owner do horrible things to him slowly!

this would be my guess too. this is common and i bet he had a simple login. the htpasswd file isn't that hard to get and once they have the usernames they run a script to match up possible passwords.

when this happens i reset the username and password to a more complex one. if it happenes again he's what i consider an "undesirable customer" and i keep him blocked.

I would take a dump in a box and mail it to him.

voodoo curse

Email ccbill to block him from joining your site in the future.

Some customers arent worth having, if they charge-back they weren't even customers to begin with.

Yeah, it is a good idea if your software makes a DNS lookup in some of the TOR ip blacklists.
E.g. .torexit.dan.me.uk or http://www.sectoor.de/tor.php

Hand his credit card information off to some shady russians...

Totally agree.

can't you contest the CB?

May I ask you, or anyone that does the same, why they make their legit customers' experience worse than piracy?

I've paid for porn and I sit on a 50 meg pipe. Why would you limit me?

Surfers get treated like crap on pretty much any site you can think of. The bigger, the worserer. Good luck dealing with ebay or paypal once they've got all huffy over something for example. The instant assumption is it's they that have done something wrong - maybe they have - but often times they haven't. They are just regular surfers locked out for reasons they don't know and certainly don't care about. Even if this guy isn't genuine, do you have a system in place to deal with those that are?

Start from the stand point that the surfer was a genuine guy and there's TWO failures. The site security failed and took far too long to block the pass, and customer service failed because the guys FIRST response was to chargeback.

We've noticed that often the most loyal, long term members are the ones that have the issues with retarded user/pass combos and just being around a long time, means sooner or later lightning strikes, but any customer who's successfully been through support in the past is one of the easiest sales in the future. So good customer support, both human and automated is money in the bank.

What you should be thinking is not how to punish the odd scumbag, but how to make sure you never punish a real customer.

I could see that for webmasters not using randomly generated. Otherwise, pretty unlikely.

But what if he *likes* poo?

These guys usually contact you and say they have a problem. If he really liked the site that's what he would of done. If he was honest.

Limiting download is the only way to go. Damian obviously likes to suck down a site on a 3 day trial and then jerk off for months for free.

You need to explain why you limit downloads in a way that shows genuine members a benefit. Like slowing down your servers, maximising your profit so you can keep adding new content. And keeping the majority of customers happy. The majority of customers are not the ones on forums. They are the minority with bone to chew.

Had one guy complain about us limiting downloads, until I saw he had signed up for a 3 day trial and cancelled as soon as he had spent his money I was concerned.

Then realised he just wanted to suck down all the content for $3. He can happily fuck off. He's also a perfect candidate for pirating the content which is another thing to explain to THOSE WHO WILL AND DO PAY. These guys know what harm is being done to the good sites by piracy.

Shap says to treat the paying customer like a king and let them download what they PAID FOR.

Paul says to punish the customers and limit their speeds and tell them to fuck off for having the audacity to want to download what they have paid for.

Hmm...

hi fatfoo

Work harder hoss. :) I come across Twistys entire site rips fairly often.

I think a better approach is not to limit download speed.

Instead you should have security measures which prevent automatic download of all your content. This part can be technically tricky, since your progammer has to outwit the download software which recursively grabs the entire website.

If your smart programmer manages to block automatic downloads, you have nothing to fear.

Give the members full speed, and a smooth download experience.