Author Archives: Josh

There is no way to block, reject or prevent payments being made to your phone number via Paypal

How can I block PayPal payments to my mobile phone number?

None of these

How do I confirm my mobile phone number with PayPal?

I found some articles in our Help Center that might help you. Check them out! If you need more help, please rephrase your question or type “need more help”.

How do I confirm my mobile phone number with PayPal?

How do I add, edit or remove a phone number on my PayPal account?

How do I edit my customer service email, phone number or website URL on my PayPal account?

– PayPal Assistant

need more help


Hi Josh. I am not sure what you mean by block payments? Are you referring to notifications?

– Beth

No, I don’t want PayPal payments available to my mobile phone number. If someone tries to make Payal payment to my mobile phone number, I’d like it to fail immediately.

I see that right now your phone number is not confirmed and would not be able to receive payments at this time.

– Beth

But I get a text telling me I’ve got a payment, as far as the payer is concerned they’ve successfully made a payment. I don’t want this. I want payments to my mobile to fail, immediately.

In the sender’s account it would say that the payment is pending since the phone number is not confirmed. Unfortunately there is not a way to auto deny payments sent to your phone number. I apologize that this is not something that PayPal is able to do.

– Matthew

There’s also no way to reject payments sent to a phone number, other than contact the payer and ask them to cancel it from their end. Unless I want to refund payments to my mobile, which I do not.

The payments sent to your phone number will be reversed automatically after 30 days have passed, with no action required of you.

– Lindsay

uBank management and developers are a bunch of dummies

uBank, who I have chewed out before, has drawn my ire yet again. After several blissful years of not using any of their software, I found it necessary to do so again because they’ve done something to themselves, like a merger/rebrand/reverse takeover thing. As such, I get an un-requested NFC debit card. They then proceed to migrate all the customers off their existing IT systems – including me, who has no desire to migrate from, or even use said systems.

This causes me to need to log into their system. It won’t let me in, because I have a password that complied with their old requirements — that wouldn’t let you have a special character (*#@% etc) — but that password doesn’t comply with their new requirements — must have a special character (*#@% etc). Presumably, every damn customer has this problem.

No worries says the computer, let’s reset your password. Please confirm your identity by answering your secret question – “What are the last four digits of your private health insurance?” I dutifully type this in, but surprise surprise, this value has changed in the last ten years. At this point the computer suggests maybe I tell it the last four digits, and I scream.

A seventy-plus minute wait on hold (scratchy line, annoying announcements, bad hold music), I speak to the guy. The guy says, “so, what’s the last four digits of your private health insurance?” and I explain that number has changed in the last decade, and perhaps we could use some other technique to identify me. We do all the usual things like name, birthday, address and then my password is reset to a six digit number and SMSed to me. Couldn’t let me into the system with my old, 620-bit strong password that I knew. Now we have an almost 20-bit password that I had to wait 82 minutes for. Couldn’t just SMS me a reset six digits when I say, “dunno, forgot”. No, I had to wait over an hour to sort out this mess of a process. And great, now I have to generate and save a new password.

So I suggest perhaps we should change the secret question now, and get told that “oh, that’s not a thing anymore” and I just facepalm. New system uses 2FA, old system uses it for password resets, old system wouldn’t use for password resets. Morons, the lot of them.

And then I find out that their fabulous new system allows you to see transactions all the way back in the past… all the way back to 364 days ago. Because disk is expensive.

They don’t have a million customers, and they don’t each do a thousand transactions a year. That billion transactions a year they don’t process would require hundreds of gigabytes to store, and last I checked you could pick up a 240Gb SSD for less than $50.

And pagination! Show more than 10 things on a page! This isn’t 1992!

I believe the new system is meant to be an improvement on the old one. Money well spent.

NationBuilder “error exporting results”

If you’re using NationBuilder and you run a query and then, from the right hand side pick the Actions | Export option and find yourself with the error: “error exporting results” it means you’re meant to make a list from your query and then export that.


SP Error while getting price guide : INVALID PARAMETER

While trying to retrieve I got the error “SP Error while getting price guide : INVALID PARAMETER” which means “data type mismatch” because ‘None’ should be a number

Programatic submission of Australia Post’s CN23 customs form

A number of major international destinations of packages now will only accept packages with electronic CN23 customs declaration. Normally, you’d do this by rocking up to the Post Office with your pre-addressed parcel, filling in a CN23 paper form, and have that transcribed into Australia Post’s computer system by the postal worker behind the counter. You can elect to receive SMS notifications of change of status (landed, delivered, etc) for 50c.

Australia Post also allows you to fill in the appropriate details on their website; if you do this, then you get a QR code sent to you via SMS (free) and email (free) which the postal worker scans in and all the details (your name and address, destination name and address, contents, etc) are attached to your package’s details without any error-prone re-keying. The downside of going down this path is the dismal website Aussie Post provides, a JavaScript heavy, painfully slow dog of a site that doesn’t cache your own address.

Once the QR code is scanned, and the postal worker checks everything with you, they’ll print out the CN23, get you to sign it , and then it gets attached to your parcel. Because the To and From addresses are on the CN23 form (and those details are in electronic form, associated with the barcode for the package), it’s perfectly acceptable to present an unaddressed package to the post office (make sure you can tell which package is which, if you go down this route).

One thing you need to be aware of: Australia Post hasn’t heard of Unicode. You absolutely can’t use any characters not in the ASCII character set, and even then a very limited range of them. Certain fields allow some characters, which in turn aren’t allowed in other fields.

One of the fields you can supply is the HS tariff code, which is an international standard group of codes to describe “stuff” – the Harmonised System Tariff code. The sourcecode below uses the code for “Toy, plastic construction” – you should use the code for what you’re actually sending. You can specify multiple HS codes. Dollar values are in decimal dollars, weights are in decimal kilograms.

After calling the Australia Post website with your customs declaration, it returns to you a base-64 encoded PNG of the QR code to present at the counter, and a base-64 encoded PDF of the CN23 form – there’s no point printing this out, because it’s not paid for yet; let the Post Office print it out with the postage on it. You’ll also get the PNG via email and SMS (free).

Here’s some Python to make this submission:

    AP_session = requests.Session()
    jsonFormData =  {"customDeclaration":{
        "returnInstructions":"Return By Most Economical Route",
          "content":"HS traffic code name for your stuff",
        "addressLine":["11 Example St"],"suburb":"YourSuburbName","state":"VIC",

    stopact = {"jsonFormData":json.dumps(jsonFormData) }
    result ='', 
      data=stopact, timeout=2)
    response = json.loads(result.text)
    filename = "{}-customsQRcode.png".format(orderid)
    with open(filename, "wb") as fh:
    filename = "{}-CN23.pdf".format(orderid)
    with open(filename, "wb") as fh:

LEGO Pick-a-brick container sizes, dimensions and capacity

There are three Pick A Brick containers – The 950ml tumbler, 475ml tumbler and 30ml lid. I have measured the volume of these containers using a 0.1g scale and water; I have high confidence in the measurements. Other measurements have been taken with callipers and rulers; I have lower levels of confidence in those numbers.

The lid’s stud (where you can store LEGO if you’re particularly cunning) is 48mm diameter and approximately 16mm deep – six studs in diameter by two studs deep. This means you can’t fit something six studs wide (48mm) into it, because LEGO bricks aren’t 0mm tall or long. You might be able to store one 1×6 plate if you jammed it in, as plastic objects are plastic (bendy).

The 475ml tumbler has a profile matching that of the 950ml tumber, cut off at the bottom. They share an opening of over 100mm. They both have an indentation that matches that in the lid, allowing stacking. The displacement of the indentation of the base is 55mm wide and has three strengthening piers projecting into the interior of the base.

The length of the interior wall top-to-bottom depth of the 475ml tumbler is 76mm; it can hold 1675 1×1 round plates. The top-to-bottom depth of the 950ml tumbler is 170mm.

Dear ABC: use English better

It’s been several years, but now it’s time to complain about the use of certain phrases by ABC News journalists:
– “Quote Unquote” is meant to surround what you’re quoting, not preface it. If you’re just going to preface it and use a different tone of voice, just use “Quote.” If you want to clearly signal the end of a quote, say “Unquote” at that part.
– All crimes happened in the past, and are thus historic. There is no such thing as historic rape. It’s rape. Find another way to communicate “very old”. Vintage rape? Much classier.
– If a court order or law forbids naming someone, then you “mustn’t” name them, not “can’t”. You can, but you’re just unwilling to go to jail for contempt. “can’t be named for legal reasons” is also wrong, but less wrong than “can’t”. I hope you’re not trying to avoid sounding like characters in Harry Potter and “He who mustn’t be named”
– Vehicle crashes are not best described as accidents. As reporters you don’t generally know at the time of reporting the intent of drivers, so it could well not be an accident. Try crash, collision, or even the bland “incident”.

And on another matter, could your staff stop editorializing misfortune? “The driver reversed and tragically didn’t see the three year old, who sadly died as a result” ought to be reported as “The driver reversed and didn’t see the three year old, who died as a result”

BrickLink API PushNotificationMethod Get Notifications callback semantics

The documentation for the BrickLink API PushNotificationMethod suggests that the data sent to the URL you registered on the BrickLink API Consumer Registration Page is sent to this URL (via a POST verb, by the way) and as such you don’t need to call Get Notifications. Given the body of the POST is empty, this is not right – what you instead need to do is use any POST to your registered URL as a prompt to call Get-Notifications. It’s probably best to periodically call it too, given “it does not guarantee delivery of all events” and doesn’t either based on my experience.

A notification to be created when:

  • Order
    • You received a new order.
    • Buyer updates an order status.
    • Items of an order are updated (added or deleted).
  • Message
    • You received a new message.
  • Feedback
    • You received a new feedback or reply

Also note: NULL fields are not included in the returned JSON. Some fields names don’t match the documentation (eg: drive_thru_sent instead of the documented sent_drive_thru).

Setting up a public facing webserver behind a Netcomm NF18ACV

Note: this will move your Broadband Router’s web-configuration to an unexpected port :8080, instead of the :80 your browser expects.

Navigate to Management | Access Control | Services then disable the WAN side HTTP service (why would you even expose this?), change the port for the LAN side to the Alternate HTTP port of 8080, and hit Apply/Save.

Navigate to Advanced Setup | NAT | Virtual Servers and hit Add. Select the correct interface, fill in the other details including the Web Server’s LAN address, ensure you’ve got Status: Enabled for the port forwarding, and hit Apply/Save.

Run up a trial HTTP server using something like
sudo python -m SimpleHTTPServer 80
and check for access from outside. Kill the server, because that isn’t safe for production use.

Air conditioner upgrade

I can’t find any technical data on one of our two existing air conditioners. It’s 1960s through-window technology, and it seems it might be somewhere around 130% efficient. A run-of-the-mill air conditioner today is about 400% efficient. What I do know is, when that air conditioner runs our power consumption spikes 2kW; for the cooling we’re getting, this suggests we should be using 700W. It’s costing 40 cents/hour more to run than a modern unit, and it isn’t providing us with heating. It also sounds like a jet aircraft. We don’t use it much.

If it’s replaced with a $2000 unit, the payback is 5000 operating hours. It actually operates for something like 150 or 200 hours a year, so there’s a more than 25 year payback – which isn’t outlandish, given the existing unit is 50 years old now, but I will be surprised if a unit manufactured today survives that long.

Modern units come with DRED support.

Picking an air conditioner is… complex. We’ve taken our home off gas, so we need some kind of electric heating, which I expect to run daily for a number of hours for four months of the year, and the cooling side is something that will get much less use. So, where I live, I need to optimize my “heat pump” for heating performance – COP in the lingo.

As of March 2020, there are more than 3700 air conditioners with performance metrics listed by the Australian government. Thankfully this data is available is CSV format, so can be folded, sorted and mangled. 2000 can be eliminated because they’re not single-split units, so their efficiency will suck balls. Another 450 can be eliminated because they’re not the classic wall hung variety, so will be stupid expensive. Anything smaller than 3KW and larger than 5KW is badly sized for the areas I’m looking at, so now I’m at a “manageable” 300 units. Purging others for efficiency reasons, and I’m down to less than 80. I sort for COP, and start down the list.  The first is $2550, then $1420, then can’t be purchased anywhere, then $880 (a ten-year TCO of $3000, plus installation). A feature check confirms it can be set to a weekday operating cycle and a weekend cycle; we’re off to the races. I locate a supplier who will deliver two for $1,716.00 after trying the local retailer who refuses to answer the phone.

Now for the easy task: I’ve simply got to find a tradie to install my units.

uBank: Sorry, Internet Banking is temporarily unavailable.

uBank is an Australian “Internet bank”, in such that they don’t have any branches. That’s fine, they can do everything except deal with cash. They’re owned by the NAB.

They have an app, which gets an absolute bollocking in the App Store. So people use the website instead. I need to do things with that account about once a month.

Close enough to half the time I try to login, I get the error message “Sorry, Internet Banking is temporarily unavailable.” with a page title of “Login Maintenance”. There’s no other kind of banking with these guys. The last time this happened was just before 4pm, which I believe is the close of transactions for that day. Why the hell would you do site changes in the middle of the day, and why just before the close of business? The NAB is a real bank, and I presume it doesn’t pull this kind of crap. They don’t even give a window (“Out until 14:30” or “Down for five minutes”). No post on their FaceBook website saying “there’s a planned downtime this afternoon” or “Sorry for the emergency outage, but rats were chewing on the coolant lines and that just isn’t okay. We humanely hit them with sticks until they stopped.”.

This is a very bad railroad.