Forum menu
I can't believe you are blaming Superstar components for your stupidity.Hello
Afraid you must have misread something.
Anyway, see the response from Neil below.
" I have passed on your concerns to the tech guys to see what has
happened. It seems a little strange that the session IDs have been swapped.
I can assure you that no sensitive data has been lost as we do not have
anything to do with the payment side of things. All your payment, card, and
other sensitive data is dealt with by paypal and we have access to
absolutely none of it. All we get is a confirmation that you have paid. If
there is any fraud it is 100% Paypals fault.
If you are logged into another account all you can do is pay for goods and
ship it to them rather than yourself, but you would have to go through the
process of confirming that you want it shipped to the other persons address
which im sure you are unlikely to do! Nobody can charge anything to your
card, as there is no payment functionality on the site.
We are in the process of launching our new site which will remove any
glitches such as this, hopefully lanching in a couple of weeks. It has been
made by a professional UK software company over the past year and we have
added several layers of extra security again. Again for this new website we
do not handle or store and card details so physically cannot be responsible
for any fraud
I don't know why everyone is saying he hasn't done any R&D, didn't you watch the video, he has clearly made a big breakthrough to produce a 33 tooth N/W chainring.
You posted the URL from your address bar right?
I didn't see your first post, but I can guess you posted a link to NW ring on Superstars site by copying the URL from your address bar and posting it into this forum right?
From Neil's response:
"It seems a little strange that the session IDs have been swapped."
For the answer, reread the start of this post.
I'll email Neil and tell him about the starnge happenings on this forum, his guys are probably worried they've been hacked unless they are reading this.
Good on him.
I didn't see your first post, but I can guess you posted a link to NW ring on Superstars site by copying the URL from your address bar and posting it into this forum right?
Yes that's what he did. Are you honestly suggesting that people shouldn't be able to share links to superstar products without fear of their home address being stolen?
I haven't got a problem with SS, I use their products and they've never done me any harm but seriously this is bad and I can't believe it hasn't been fixed yet. What if I checked different session IDs, happened upon someones address and went to that persons house and stole their bike?
It's probably a one line fix as well - why is it sending that info in the URL anyway? Surely it should just create a session and be done with it?
No. Im not "honestliy saying that people shouldn't be able to share links to superstar products without fear of their home address being stolen"
He didn't share a link, he a shared the complete URL from his address bar. Session Id 'n' all. There's a lot of sites that do this, its probably just not brought to your attention by someone posting it into a forum.
Let's face it, this isn't your bank account and they don't store your card details anyway, probably why you can only pay via paypal, so what's the harm that can actually be done any way?
Yes someone can find out where you live, but look at a site like 192.com, type in any name and it'll give you the address. And the result is thanks to our electoral roll.
It could be put down to sloppy programming, but I'd rather they concentrated on machining some very affordable chainrings and I'll just refrain from pasting session ids into a public forum.
It could be put down to sloppy programming, but I'd rather they concentrated on machining some very affordable chainrings and I'll just refrain from pasting session ids into a public forum.
If you read down this thread other people accounts/baskets were popping up when people went to the site directly not from a link. If your running an e commerce business getting the fundamentals right is the most important thing. For all the bluster about " If
there is any fraud it is 100% Paypals fault." tells you enough about the approach to be wary. Back to the good old days of it's not our fault it's somebody else.
http://singletrackworld.com/forum/topic/superstar-website-wtf-is-going-on
If the website is developed and run by a third party, they will have a set of SLAs to respond to a reported issue, estimate fix time and then get it done.
Given the priority was the usual SS bashing by the usual STW members rather than reporting to them with screenshots etc (as admitted on the other thread), there has actually been less than one working day to investigate and resolve the issue.
If you are worried, hang fire till the new site launches or create a new SS account with delivery to your work instead. But let's stop the very boring anti-SS griping on here eh? It's old and the majority of users on here are meant to be men not old fishwives.
same as, I would think, the majority of folks would do, ask some none IT friends what a session ID is and look for all the blank faces.He didn't share a link, he a shared the complete URL from his address bar
is there a patent?
Nope
[url= https://www.google.com/patents/US20130139642 ]What's this then? - Filing date: Dec 6, 2011[/url]
[s]Are they allowed to have what I think is footage of a canyon rider riding in that video?[/s]Is there anything at all in this video that I can latch onto and use to bash Superstar Components?
FTFY
๐
and another patent, from 1979
http://www.google.co.uk/patents/US4174642
A chain drive includes a sprocket rotatable in a plane and comprising an even number of wide and narrow tapered teeth and a flexible chain comprising successive links having alternate wide and narrow tooth-engaging link openings, with tooth width and link-opening width being measured in a direction transverse to the plane of sprocket rotation. The arrangement ensures proper registration and engagement of the link opening of each oncoming link with a tooth of appropriate width despite displacement of the oncoming chain flight from the plane of sprocket rotation and thereby prevents disengagement of a loose chain from the sprocket or breakage of a tight chain by the sprocket.
Awesome - Google search "Superstar components narrow wide" and this STW thread ranks 6th!
So all the STW bashing has backfired.
Superstar Components Narrow Wide XX1 style narrow wide (or narrow/wide) chainrings look like they are very good and could be a market leader. Excellent value, high spec parts for peanuts.
What's this then?
A Patent pending.
Like saying I have a Ferrari, well actualy the garrage in town has one, but one day it'll be mine, hopefully.
Annnnnndddddddddddd.............
As I said if you were less selective in quoting, there's more to the SRAM patent than thick/thin, IIRC the teeth are asymetric so you can't reverse the ring, but it allows the mud to be pushed out allong the back of the tooth not contacting the chain, whereas on a normal ring it would go out the wider gaps. So if challenged SRAM may well not be granted or lose that patent, but retain the other details.
Awesome - Google search "Superstar components narrow wide" and this STW thread ranks 6th!So all the STW bashing has backfired.
Not really, google knows you, you could type BNP and it would probably rank STW in the top few pages.
As they say, any publicity is good publicity. Already backorders on a couple of sizes/colours. Ha Ha.
If you are stupid enough to paste the entire URL (including the session id - the bit that makes no sense at the end) into a forum you deserve to have your session hijacked.
If their idea of security is to "secure" a users details based completely on a URL based session ID then Superstar deserve every bit of vitriol (and more) ever heaped on them by the rock-bashing, octopod loving STW masses.
Always amusing for a Friday afternoon......
"Bunch of grumpy old ****s slag off a successful company as usual. Boost its Google rank and indirectly drive more sales"
Really is time to drop the old grudges fellas.
cookeaa - MemberWhat's this then? - Filing date: Dec 6, 2011
It's a patent being filed. But filing a patent and getting one isn't the same.
Er, unless you're an american bike company, in which case it seems like you can patent anything.
Really is time to drop the old grudges fellas.
I think a lot of the people have quite current grudges given recent threads on here about superstar's "customer service"
[i]you can patent anything.[/i]
Amazon just filed for a patent on photographing objects against a white background.
The American Patent office is a joke.
What's more of a joke is that Amazon, the biggest online retailer in the world, has a website that looks and feels like it was designed for a GCSE IT project arround 1999.
Amazon's website, aargh. Can't sort items unless you've chosen only one category. You have items in categories "hand tools" "DIY tools" "garden tools" and, helpfully, "tools"
I think a lot of the people have quite current grudges given recent threads on here about superstar's "customer service"
I'd be very interested to see what the emails they send to SS are like - if they are anything like the ones we see here at work (not bike industry but online retail), full of mental anger and all kinds of madness, I doubt they get off on the right foot to get help.
Just a thought. Yes you may be the customer, but I always find being polite, treating the person you are emailing as your friend and asking for help gets a better response than dick swinging and quoting your "rights" from a google search.
Anyways. these chainrings look good - hopefully some SRAM direct mount ones to follow soon as well. Then I think Superstar really could capture the market and fair play to them.
I also got affected by this, after clicking the link. My details got shared around, even though it was somebody elses session, but good old paypal stopped any wrongdoing.
What i find interesting is the amount of stuff STW posters tried to buy through my account. At least I know how honest STW posters are (not at all).
Not a big deal for me, the bits i ordered arrived, and i still havent had any failures of anything i have bought from superstar, so will continue to use them.
๐
At least hes gone [s]after the Americans[/s] international hes like the man from Del monte
Anyone in insurance know if Neils comments RE insurance being more pricey in America are true? read the comments at the bottom
I think a lot of the people have quite current grudges given recent threads on here about superstar's "customer service"
Can't be as mental as the old grudges, I think most of them started when someone installed a crank arm by bashing it in with a rock when they lost their temper and then got shitty when superstar didn't warranty it.
Its true that I doubt the t&c included the statement "installation with pieces of strata" will void your warranty, but that seems like comment sense to me.
[i]I think most of them started when someone installed a crank arm by bashing it in with a rock when they lost their temper and then got shitty when superstar didn't warranty it.[/i]
It was fruit astroturfing on here and other forums that caused the damage.
that and the 'you must have used a pressure washer' line raised a few hackles too.
The install it with a rock thing became a meme quite quickly but most people felt the bloke with the rock was in the wrong.
Well, I ordered a 34 tooth ring and it arrived promptly with a bag of tang tastic haribo. The chainring looks nicely made, keeps the chain on, although I need to test it somewhere rocky. It seems a little noisier in the lower gears but a lot less noise than a chain device.
I think most of them started when someone installed a crank arm by bashing it in with a rock when they lost their temper and then got shitty when superstar didn't warranty it.
As wwaswas said, it wasn't just that. I got fobbed off when I had a brake pad part company with its backing on the first ride (apparently it was my fault). That combined with the astroturfing meant I've not bought from them since.
It was fruit astroturfing on here and other forums that caused the damage.
We're talking an awful long time ago though aren't we? As I have said before, young lad makes a bit of a mistake in his approach in the early days. That's all. Get over it.
I thought the rock thing was someeons crank coming loose repeatedly (a common problem with superstar cranks?) untill he was forced to righten it mid ride with a rock to get home.
So SS retrospectively blamed it on the rock.
It was fruit astroturfing on here and other forums that caused the damage.
Fair enough, wasn't that about 5 years ago though?
Fair enough, wasn't that about 5 years ago though?
And it only seems to be this site that has any real issue. Does that mean STW is grumpier and more grudge bearing as a demographic than the average MTB site?
fair play to him. Had a pair of dodgey early batch brake pads ages and ages ago, ( which to be fair I didn't do anything about ). More recently got some braided hoses and they have been brilliant. Second to that the pricing was also superb,when compared to anything else out there.
jamesoz - when did you order it (if you don't mind me asking)?
Does that mean STW is grumpier and more grudge bearing as a demographic than the average MTB site?
Do you even need to ask?
Oh, it was a rhetorical question.