[SBE] SBE Digest, Vol 204, Issue 1

[McGlothen, Darryl]

What you mean to say is, "I don't want to discuss my ignorance of
security issues in public." A 'public forum' is exactly the place for
security discussions to take place. While it is "off-topic" for this
discussion list, the question as to whether the Society should or should
not make PayPal a payment option for its members is cogent to the needs
of those members using this list.
 
That being said, your concern about List Members being 'spammed' simply
because some use PayPal as a payment option is totally unfounded and
unrelated to the spammers/scammers sending bogus PayPal/Ebay alerts to
email addresses. Check out PayPal's Security Center (due diligence) for
information about how PayPal protects the private information of its
members and how they contact members in the event of a security issue.
 
As to why you (or any other SBE member) may be getting bogus emails
purporting to come from PayPal or Ebay, the fact that you have an email
address is all the scammers need to send these messages. Membership in
Ebay or PayPal is not a requirement just as non-membership or use of
PayPal or Ebay services is not a protection from the scammers. If you
don't want to ever get spam, don't have and use an email address! At
least, don't 'Chicken Little' the issue by spreading false rumors and
misinformation.
 
I, for one, applaud the efforts of the Society to fill the needs of the
membership by considering all the options.
 
Darryl McGlothen, CBNT


________________________________

	From: sbe-bounces at sbe.org [mailto:sbe-bounces at sbe.org] On Behalf
Of dynotherm at earthlink.net
	Sent: Thursday, July 23, 2009 10:46 AM
	To: sbe member discussion mail list
	Subject: Re: [SBE] SBE Digest, Vol 204, Issue 1
	
	
	I don't believe a public forum is the proper place for a
security discussion,
	but I will say that I believe that adding PayPal as a payment
option will
	subject members whose e-mail addresses are harvested from the
"wild"
	(eg. HERE and other places) to a particular sort of phishing
spam well
	known to Ebay users - and I'll leave it at that, except to
suggest that the 
	Board carefully consider the potential liabilities of having
facilitated same.
	
	It matters not if a member has used PayPal, only that National
OFFERS
	it and members addys are exposed. If those conditions are met,
the
	phishing spam will follow.
	
	Phil Alexander, CSRE, AMD
	
	
	

		-----Original Message----- 
		From: Christopher Tarr 
		Sent: Jul 23, 2009 1:02 PM 
		To: sbe member discussion mail list 
		Subject: Re: [SBE] SBE Digest, Vol 204, Issue 1 
		
		I think what you're missing is that it allows those who
do not have a credit card to pay directly from their bank account via
PayPal.  As has been mentioned before, nobody will be forced to use
PayPal if they don't want to.  They can continue to pay the way they
always have.  It's just another option.
		
		
		On Thu, Jul 23, 2009 at 11:59 AM,
<dynotherm at earthlink.net> wrote:
		

			Perhaps I'm missing something, but if we already
have a merchant account(s)
			allowing payment via VISA/MC/AMEX what is the
point of PayPal which
			is intended for use as a payment mechanism for
credit cards by those (often
			Ebay sellers) who do not desire or cannot
qualify for a merchant account?
			
			It simply opens the door to a lot of spammers
fraudulent PayPal messages
			about nonexistent transactions designed to
elicit banking information from
			PayPal users. Why open that door when it appears
to offer no advantages
			compared with merchant account transactions?
			
			Phil Alexander, CSRE, AMD
			


			-----Original Message-----
			>From: John Poray <jporay at sbe.org>
			>Sent: Jul 23, 2009 12:36 PM
			>To: sbe at sbe.org
			>Subject: Re: [SBE] SBE Digest, Vol 204, Issue 1
			>
			>We have had an automated new SBE member
application on the SBE website for
			>over a year now. Payment is accepted using
VISA, MasterCard and American
			>Express.   You can find it under the "Join SBE"
button on the blue and white
			>horizontal tool bar near the top of the page.
Click on that and you'll see
			>several options. The URL is:
	

>https://www.sbe.org/cgi-bin/sbe_member_app.pl?goto=form

			>
			>Regarding PayPal, we will be using it on a
limited basis soon as a sort of
			>test run. If it goes well, we'll expand its
use.
			


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://seven.pairlist.net/pipermail/sbe/attachments/20090723/ba9d4a0c/attachment-0001.htm>