WTF Bites
-
-
@loopback0 said in WTF Bites:
Why it's for the shop to decide whether to use this I don't understand either.
I thought it was decided by the payment provider?
Nope. The shop has to opt in, and neither Amex nor Visa nor MasterCard allow to block shops that don't. I know because I researched this thoroughly because I'd love to setup such block myself.
-
@Gąska Huh. TIL.
-
@ChaosTheEternal said in WTF Bites:
despite VS 2019 on both the Mac and my desktop not having updated in a few months.
There's your problem. They're really complaining because they're about 5 releases behind now.
-
@Gąska Eh, okay. I seem to recall our company had to ask for an opt out permission, because we are dealing with micropayments. Wasn't my job to deal with all that, perhaps I just overheard wrong
-
-
@Tsaukpaetra said in WTF Bites:
@loopback0 said in WTF Bites:
@loopback0 I'm not sure.
Me either
But are you surely.?
Stop calling me Shirley.
-
@loopback0 said in WTF Bites:
@Tsaukpaetra said in WTF Bites:
@loopback0 said in WTF Bites:
@loopback0 I'm not sure.
Me either
But are you surely.?
Stop calling me Shirley.
Surly Shirley sure sounds silly so stop, sit, sex. sound supreme?
-
@Applied-Mediocrity said in WTF Bites:
@Gąska Eh, okay. I seem to recall our company had to ask for an opt out permission, because we are dealing with micropayments.
Okay, I admit I don't know exactly whether it's opt-in or opt-out. All I know is that the retailer has a choice, and the card owner doesn't.
-
The shop has to opt in, and neither Amex nor Visa nor MasterCard allow to block shops that don't.
Vitally, almost all transactions are actually valid and as a payment processor it's strongly in your interest to encourage valid transactions to be working. It might not be the most profitable part of their business per transaction but by God, there are a lot of them.
It also depends on the card provider. Some of those just go “oh, that stuff isn't set up on this account so we'll just let it all go through”, and I at least haven't ever had them poke me (or enough for me to notice) to set up the whole lot.
-
The shop has to opt in, and neither Amex nor Visa nor MasterCard allow to block shops that don't.
Vitally, almost all transactions are actually valid and as a payment processor it's strongly in your interest to encourage valid transactions to be working.
Almost all people entering my house are allowed to be there, but I still want a lock on the door.
-
Which defeats the entire purpose of 3-D Secure in my eyes.
The 3-D secure is more about protecting the shop than you. Most banks will revert disputed transactions without much ado (well, I suppose they have some heuristics about what to check, but people generally report they got refunded easily), and if the shop does not do 3-D secure, it will be their loss. So if some shop does not do 3-D secure, it's mostly their risk.
-
Holy shit, I hate badly implemented two-factor garbage.
Tried to order a camera online and pay with my Visa card. Enter my CC number and the CVC code (i.e. the usual wish-it-was-two-factor) and off we go. But wait, the EU at one point decided that's not secure enough so it needs some verification with "Visa secure 3-D Secure secure
".Sure, I've gone through that hell already before, so this should all be registered and set up. The Visa site told me it's sent a verification code to my phone and I need to open the bank's "ID check" app to accept it. Easy as that. Or maybe not, maybe it's a fucking nightmare.
I check the phone, there are no push notifications. Okay, no worries, who knows how that works. I open the app that I had previously registered the CC with. It doesn't show the code. In fact, it doesn't even show the CC. Sigh
So I click to register the card again with the app. It helpfully tells me that, for verification, it sent a code to my previously registered phone. What fucking phone? This phone?! Well, obviously that didn't get through. I click the button to re-register with a new phone in case I don't have access to the originally registered one (I do but
).Next, it asks me for my online banking login information (account number and password). As I enter that, the app tells me (in one half-sentence banner notification that disappeared after 3 seconds) that I need to switch out of the app to online banking in a browser to enter a TAN number (because, it turns out, I haven't used any online banking that required a TAN in several weeks and so I needed to reactivate that). Done, back to registering the card.
It wants me to pick between chipTAN variants (optical, QR code, manual). Wait, I thought I was trying to register a card for the phone app thing, not a chipTAN generator?! Oh, I got it, I need to enter another TAN, this time actually inside the app and not an external browser, and it asks me for the choice there. Next, it explains that I need to put the card in the TAN generator, enter a "start code", enter the last 4 digits of the card number, and enter the resulting TAN. I tried that and nothing happens. It reloads the screen, I retry this shit (having to enter the CC number again) being extra careful not mistype anything, and it fails again without error message. Third time's the charm, but this time it doesn't even let me try but tells me that I need to switch back to online banking again to "synchronize the TAN generator". What? What the fuck does that even mean?! I search for that shit in their online banking website and find instructions how to do it. It tells me I need to make sure to have the right card in the generator ("*****12345"), which makes me pause for a moment. That's not the CC number, but also not the account number for my bank card. Oh, it's the actual serial number for my bank card, which is printed on the back and I have never used before. At this point I can synchronize the stupid TAN generator and also realize the mistake I made earlier:
The page in the app that asked me for a TAN talked about the credit card ("the last 4 digits" etc.") but I should have used the bank card to actually generate that TAN. The TAN generator, of course, worked just fine with the CC instead and the app was too fucking retarded to either spell out that there's two different cards involved in that instruction text or to give me an error message what the fuck went wrong.I have now successfully registered the card, again! And it only took me 30 minutes! Don't know if this garbage actually works, though, as I have already paid with PayPal in the meantime.
Brave New World!
At what point does using a credit card for a legitimate online purchase become less convenient than cryptocurrency?
-
@Applied-Mediocrity said in WTF Bites:
@Gąska Eh, okay. I seem to recall our company had to ask for an opt out permission, because we are dealing with micropayments.
Okay, I admit I don't know exactly whether it's opt-in or opt-out. All I know is that the retailer has a choice, and the card owner doesn't.
I implemented it for a customer once. It was opt-in.
-
At what point does using a credit card for a legitimate online purchase become less convenient than cryptocurrency?
Apparently when you move to Europe. Honestly, I've had fraudulent charges on my cards a few times in the last 20+ years, but it wasn't a big deal and I didn't have to pay for it.
-
@boomzilla said in WTF Bites:
At what point does using a credit card for a legitimate online purchase become less convenient than cryptocurrency?
Apparently when you move to Europe. Honestly, I've had fraudulent charges on my cards a few times in the last 20+ years, but it wasn't a big deal and I didn't have to pay for it.
From the above posts it also seems to be really more about protecting the shop or the bank than the customer.
For my bank card, I've always felt that the PIN method was superior to signature. And this too might be sensible in theory, if you have a simple implementation like @Gąska's PIN over SMS, but not this nightmare. Also, while I was skeptical in the beginning, the whole contactless payment not asking me for any confirmation up to 20€ doesn't seem to be creating any problems.
-
Everyone at work used to have their own printer, typically a cheap HP inkjet. Due to the work I was doing, I have a nicer, fancier one with the ability to print directly onto CDs and DVDs.
Management decides that they are spending way too much money on ink (undoubtedly true) so they took away everyone's printer and leased 4 or 5 of these big network-attached copier/printer machines.
I went to my boss and told him that a lot of the stuff I do gets sent out on disks to customers and vendors, and it looks a lot nicer and more professional with labels printed directly onto the disks. He agrees and sends an e-mail to the IT manager telling him that I need to keep my printer.
A couple of months later, I get an e-mail from the IT manager wanting to know why I still have my own printer, so I send him a copy of the e-mail from my boss.
A couple of months later, I get an e-mail from the IT manager wanting to know why I still have my own printer, so I send him a copy of the e-mail from my boss.
A couple of months later, I get an e-mail from the IT manager wanting to know why I still have my own printer, so I send him a copy of the e-mail from my boss.
This continues for 2+ years, until I left the company.
-
This continues for 2+ years, until I left the company.
A couple of months later, the IT manager sends an email to @El_Heffe's old account wanting to know if they still have their own printer, but there's no one there to send him a copy of the e-mail from their boss.
-
@boomzilla said in WTF Bites:
Honestly, I've had fraudulent charges on my cards a few times in the last 20+ years, but it wasn't a big deal and I didn't have to pay for it.
Ditto. One of 2 things typically happens.
- Charges are reversed. Nothing else happens.
- Card is canceled and you're issued a new one.
Nowadays, it's typically #2.
-
This continues for 2+ years, until I left the company.
A couple of months later, the IT manager sends an email to @El_Heffe's old account wanting to know if they still have their own printer, but there's no one there to send him a copy of the e-mail from their boss.
And IT goes on a rampage for several months trying to locate the printer. That's still sitting in @El_Heffe's old office. But since he no longer works there, they can't find that office.
-
A couple of months later, I get an e-mail from the IT manager wanting to know why I still have my own printer, so I send him a copy of the e-mail from my boss.
You'd think that they'd leave a note in whatever system they're using to identify noncompliance that you have an exception, please reference ticket IT-938 for details...
-
This continues for 2+ years, until I left the company.
... and took the printer with me.
Issue closed.
-
@Tsaukpaetra said in WTF Bites:
A couple of months later, I get an e-mail from the IT manager wanting to know why I still have my own printer, so I send him a copy of the e-mail from my boss.
You'd think that they'd leave a note in whatever system they're using to identify noncompliance that you have an exception, please reference ticket IT-938 for details...
They likely did.
-
@Tsaukpaetra said in WTF Bites:
A couple of months later, I get an e-mail from the IT manager wanting to know why I still have my own printer, so I send him a copy of the e-mail from my boss.
You'd think that they'd leave a note in whatever system they're using to identify noncompliance that you have an exception, please reference ticket IT-938 for details...
They likely did.
The "why didn't they" chain only continues from there...
-
@Tsaukpaetra said in WTF Bites:
please reference ticket IT-938 for details
The ticketing system had a crash and lost all that information.
-
@Tsaukpaetra said in WTF Bites:
You'd think that they'd leave a note in whatever system they're using to identify noncompliance that you have an exception, please reference ticket IT-938 for details...
Exemptions must be re-approved periodically.
-
@Tsaukpaetra said in WTF Bites:
You'd think that they'd leave a note in whatever system they're using to identify noncompliance that you have an exception, please reference ticket IT-938 for details...
Exemptions must be re-approved periodically.
This exemption has an expiration of five years or position termination (automatic). Whichever is soonest.
-
Also, while I was skeptical in the beginning, the whole contactless payment not asking me for any confirmation up to 20€ doesn't seem to be creating any problems.
It helps that it's capped to a low amount, and the card has to be physically close to the device. The risk/reward is a lot worse than getting a list of numbers and making fraudulent online purchases
-
@boomzilla said in WTF Bites:
Honestly, I've had fraudulent charges on my cards a few times in the last 20+ years, but it wasn't a big deal and I didn't have to pay for it.
Ditto. One of 2 things typically happens.
- Charges are reversed. Nothing else happens.
- Card is canceled and you're issued a new one.
Nowadays, it's typically #2.
A few years ago, out of the blue I got a call from my credit provider that they had detected some suspicious activity and had cancelled my card for my convenience. Or semi-cancelled. I could still use the card with chip-and-PIN terminals, and certain online stores that used (I forget which) security feature, but nothing else. As it happened, there was a sale going on for something I wanted and I had to order it on someone else's card.
I had checked my statements and everything, and never found any evidence of any suspicious activity
-
It helps that it's capped to a low amount
Here (UK) it used to be £30 but to lower the amount of people touching the card machines during The Event™ it's been upped to £45.
Apple Pay/Google Pay have higher limits in some shops/sellers - unlimted in some cases - but have the additional security of the phone needing to be unlocked by passcode/Touch ID/Face ID rather than just relying on the phone being present.
-
Wikipedia shows this prime example of modern, good and well-written C++ code, after providing an intuitive and understandable high-level explanation of the algorithm. (I'd grab Tomas' book, but it's at the office, which is still off-limits. Also, it weighs like 10kg.)
Filed under: Whoever wrote that article/code should be shot twice. Once out of a cannon and then with the cannon.
-
@cvi "Wikipedia - the encyclopedia anyone can edit". Go for it.
I understood the article (well, the two sentences) just fine, but I have no clue about the code. Usually, you describe the idea of the algorithm first instead of just dumping crappy code (which has no relevant differences in the two languages provided).
-
I had checked my statements and everything, and never found any evidence of any suspicious activity
It's possible they detected it before it could complete and stopped it.
-
-
@TimeBandit
You should move south, so that your assets are unfrozen.
-
You should move south
I just did. I'm still North of the border, but way closer to
-
-
-
-
never found any evidence of any suspicious activity
I added my card to the Subway app, apparently that's super suspect.
-
Also, while I was skeptical in the beginning, the whole contactless payment not asking me for any confirmation up to 20€ doesn't seem to be creating any problems.
It helps that it's capped to a low amount, and the card has to be physically close to the device. The risk/reward is a lot worse than getting a list of numbers and making fraudulent online purchases
I believe it also does use some kind of csprn-sequence and while you can get a reader, get someone's card give you one number using a reader somewhere nearish them, you have to use it before that person does next payment, because at that point the system detects inconsistency and the transaction won't work (neither, I think, but the holder of the real card will just use the chip, which the thief does not have).
-
Today I've opened some two random blogs on Medium on my phone to read during my commute. They slurped ~160 MB in two minutes or so before stopped by the quota.
… is there any Firefox plugin that could set tab- or site-specific quotas? I didn't see any, but I didn't spend that much time on it yet either.
-
Today I've opened some two random blogs on Medium on my phone to read during my commute. They slurped ~160 MB in two minutes or so before stopped by the quota.
… is there any Firefox plugin that could set tab- or site-specific quotas? I didn't see any, but I didn't spend that much time on it yet either.
So all javascript, no content?
-
@dcon It popped up toasts about non-responsive script, so javascript, probably buggy.
… it did show some content after the scripts were killed though, so what the scripts are actually doing…
-
so what the scripts are actually doing…
Probably some fancy graphics for the page that could be implemented purely in CSS, but which are instead done with a massive JS framework that loves to load little bits and pieces from all over the web. Because why wouldn't you do it that way?!
-
@Tsaukpaetra said in WTF Bites:
You'd think that they'd leave a note in whatever system they're using to identify noncompliance that you have an exception, please reference ticket IT-938 for details...
They likely did.
"in whatever system they're using"
I forgot to mention the time, about a year into this, I was walking down the hall and met the IT manager coming the other way.
And he asked me about my printer.
I really, really, really, really wanted to say "What the fuck is wrong with you? Do you even read your e-mail?"
But I'm not high enough in the food chain to get away with that. I just said "I'm pretty sure [boss's name] sent you an e-mail about that" and kept on walking.
-
I just tried to airdrop a PDF file from my mac to my iphone. I have no idea if it worked or if it didn't. The phone gave a little vibration feedback but nothing else. So I google where the fuck do airdropped files go and the internet tells me they get directly dropped to the application they belong to. So you can just airdrop a picture and open it with the media gallery. Yeah, I've done that before, but what is the application that's associated with PDFs? I don't have Acrobat installed on the phone.
Other files, like PDF, doc file, text, etc, will bring up a little menu with different options available on the iPhone or iPad to open and store the file that has been AirDropped.
Well, I didn't get a menu to pick anything from. I checked the books app as that can open PDFs, but it's not there.
Actually, everything is so nicely and tightly integrated, I'm not getting asked for any confirmation at all anymore, just because it thinks "yeah, I know that Mac".
It used to show a little popup like this, but no more, it just accepts things now. In fact, unrelated but similar, I can even use tethering over personal hotspot on the mac even though it's disabled on the phone. The mac knows it and can enable it. I used to have to go to settings and enable/disable the hotspot for tethering.
-
In fact, unrelated but similar, I can even use tethering over personal hotspot on the mac even though it's disabled on the phone. The mac knows it and can enable it. I used to have to go to settings and enable/disable the hotspot for tethering.
That works on mine without Airdrop
-
Yesterday, the Windows 10 Photos app decided that it was going to start using exponentially-increasing amounts of memory. When I managed to kill it (which locked up the system for a few minutes), it was using something like 12 GB all by itself. I did have one small photo open, but...wow.
-
@Benjamin-Hall I recommend IrfanView for all your image viewing needs
Möller–Trumbore intersection algorithm - Wikipedia
That tooltip is depressing
