Comments on: Some AWeber Users Are Bleeding Money

By: Will

Will — Fri, 01 Sep 2006 08:24:39 +0000

You’ve made a good point, GS; if PayPal can encrypt our buy buttons, why can’t AWeber (and other providers) encrypt their forms?

There is the option of encrypting (or obfuscating) the code yourself by using a tool such as Code Lock.

The issue, in this case, isn’t the fault of AWeber; it’s how (at least) one particular user has chosen to use their features in a certain way that is the problem. It’s like if someone decides to drive their Ford car from New York to Las Vegas in reverse and they get into an accident by doing so, it’s hardly Ford’s fault.

By: Google Success

Google Success — Fri, 01 Sep 2006 06:40:22 +0000

Will, good you raised this issue here. This is the first time I heard of such problem with email service providers like Aweber. I feel if the companies like Aweber are aware of the problem, it is their ethical responsibility to improve their system or give way to third party solutions which can improve the service. For example, PayPal is a good way of accepting credit cards – but if we use the default PayPal buttons, anybody can steal digital products by visiting the Thank you page which is easily visible in the source code. But using some third party solutions, we can encryt the source code to stop the thefts. Does any solution exisit in case of Awber like ESPs to stop the internet thieves?

By: Will

Will — Thu, 31 Aug 2006 22:12:08 +0000

Tom,

I’ve edited the title and added further clarification to avoid any confusion.

You’re correct in that the issue is in the user’s implementation of the service, but it’s not what you’ve referred to.

There has been no issue with the AWeber system itself and the same problem may well be occurring with other autoresponder systems that operate in a similar fashion.

I hope that clears that up. I’m currently trying to contact the person who I know to be affected by their particular (mis)use of the AWeber system.

By: Tom Kulzer (AWeber CEO)

Tom Kulzer (AWeber CEO) — Thu, 31 Aug 2006 21:49:46 +0000

Your post title is really misleading here. If it’s not an AWeber security hole, then that’s not what the post title should be.

I know exactly what you’re referring to and it’s a matter of implementation and usage of the service. Users know full well that the subsequent thank you page URL is plainly visible in the HTML source of any of their web forms. Every email service provider operates in a similiar manner. The problem arises when people try to use the services in a manner that it’s not intended.

By: Chris

Chris — Thu, 31 Aug 2006 02:34:11 +0000

You can email those few marketers who you know you can help. After that, just post the problem publicly in this blog and notify http://www.imnewswatch.com so they can publicize it. The word will be out in a couple days among all internet marketers.