Will ICANN Scrap WHOIS Database? - Vote tomorrow in response to privacy complaints
Links: home · search · speed test · login · more ·
Links: New Topic
Forums »
page: 1 · 2
jgkolt @ 30th Oct 06:23PM:
illegal
isnt it illegal to falsify the information there? I think there are sites that register it in their name but yo are the owner. like privacy guide. Since i used the privacy option from my registrar i get next to no spam on my webmaster emails
--
3 free for you/3 free for me: Investing Trades : PM Me
reply
amungus @ 30th Oct 06:25PM:
private registration
I thought private registration was there for a reason... I thought that's why people paid the extra $$$ for such a thing.
Scammers seldom give their real info when setting up their fake sites anyway... I don't understand the point of this... Besides, if they scrap it, how are we supposed to do lookups on sites for legitimate purposes???
reply
Devanchya @ 30th Oct 06:29PM:
Re: illegal
I've only ever had ONE person contact me via who is. It was someone who was looking for a person with my name and a bad debt.
I've marked it private since then... just because.
Really the whois was meant to contact someone who was having server issues. Really not needed as much now.
reply
brooklynman4 @ 30th Oct 06:29PM:
jeporady maybe??
Ill take whois for three hundred please lol
reply
TKJunkMail @ 30th Oct 06:30PM:
Re: private registration
To register a web site, there should have to be a verifiable address, phone number, and person. And if they can't be verified, they shouldn't get a domain name. And if that takes 3 weeks instead of 20 mins to get a domain, all the better. That would cut down(not eliminate) all the bogus scammer web sites out there.
Of course, the address and phone number can be kept private(except to law enforcement) so that people can't be hunted down.
reply
Rob @ 30th Oct 06:31PM:
Just don't reveal everything..
I think ICANN's WHOIS database should only display the name, city and state of the person who owns the domain, plus the other information such as registration date, expiration date, last change date, and nameservers. Address, Telephone #, E-mail address & Zip code should not be revealed.
reply
kruser @ 30th Oct 06:42PM:
Re: illegal
said by Devanchya :
I've only ever had ONE person contact me via who is. It was someone who was looking for a person with my name and a bad debt.
I've marked it private since then... just because.
Really the whois was meant to contact someone who was having server issues. Really not needed as much now.
I was contacted by someone wanting to design my website within days of registering the name.
He said he got the info from whois.
I made it private right then and never had another problem.
I also thought it was a matter of policy that a running site has a webmaster email address in place for people to contact you if needed.
I'm sure this is highly abused and I never did setup that email.
reply
SilverSurfer @ 30th Oct 07:00PM:
Lies and Distortions
This is less a complaint from "privacy advocates," as in real privacy advocates for real people vs those who are registered and aren't interested in being contacted for legitimate purposes, e.g. process of service.
These self same "privacy advocates" are likely the same boobs who create a website and then proceed to pilfer money from unsuspecting consumers and they are upset because anyone who knows of its existence can just as easily check WHOIS and determine precisely where and with whom to contact when various nefarious activities are afoot with the registered site owner(s).
I've had countless occasions to use WHOIS in tracking down wayward website owners whose only contact information is found on WHOIS. In fact, if not for WHOIS, these website owners would all be largely phantoms with no way to contact them.
On a personal note, I am personally registered by name on WHOIS for several sites and I have yet to have my privacy violated and I enjoy my privacy very much.
reply
MxxCon @ 30th Oct 07:21PM:
What will replace it?
whois database contains some critically important and 'exclusive' info...is there going to be something else setup to allow retrieval of such info?
--
[Sig removed by Administrator: Signature can not exceed 20GB]
reply
romulusnr @ 30th Oct 07:32PM:
Some info should be public
I can find out who owns a building or a plot of land, I can find out who owns a car, I can find out who owns the patent on white-out, I ought to be able to find out who owns a domain.
reply
gatorkram @ 30th Oct 07:35PM:
Bleh....
I have always used fake info, until the last maybe 5 years or so, when they really started to crack down...
I hated having to pay someone else, to keep my info private, which most of the time cost as much, or more than the domain itself.
To me, it was a privacy, and security issue. If I run a website someone else doesn't like, they shouldn't be able to do a whois, and get all my information, and thus making it easy for them to bother me..
I pay with a credit card, like most people, so it's not like the registar doesn't know who I am. Why should anyone else need to know?
Having to pay someone to keep my details private, just goes to show, so many people want to keep their info private, that a whole new service industry popped up to support it, which I of course disagree with in the first place.
Keep it private.
--
Give me bandwidth or give me death!
»/testhistory/661871/4f240
reply
Madcap @ 30th Oct 07:38PM:
Private Registrar all the way.
I pulled some crazy stuff in my days, but my first mistake was having my info on my domain. The people I was entertaining pulled my info off the whois registrar. Luckily I was tipped off from the inside, got my domain under privacy and have avoiding a rather unpleasant fate.
Today it seems you go private, or you deal with anyone who can use a whois. I personally have 3 whois services, and 2 geolocate services marked as keyword searches in Firefox.
reply
tschmidt @ 30th Oct 07:54PM:
Re: Lies and Distortions
said by SilverSurfer :
I am personally registered by name on WHOIS for several sites and I have yet to have my privacy violated and I enjoy my privacy very much.
I'm in the same boat, have not had any trouble with Whois abuse of my registration info.
Domain Registration needs verifiable registration info. I think problems of phony registration credentials is a much bigger issue then abuse of Whois data.
/tom
reply
lordofwhee @ 30th Oct 08:26PM:
There needs to be a WHOIS
If anyone can just register a domain, and nobody knows who they are, they could use said domain to steal identities, launch DoS attacks, etc, with no fear of consequence. Things like address and phone number NEED to be verifiable, but also kept private from the public. Only police should have access to that information, and even then, only with a subpoena, just like every other database that keeps records of personal info (well, the legit ones, anyway).
reply
anon @ 30th Oct 08:28PM:
Totally Pointless!!
WHOIS is a serious privacy concern.
Network Solutions forces you to keep the information up-to-date and says if you wish to keep it private, you have to pay more money. ARE YOU FUCKING SERIOUS? Why should I pay money to hide something I never wanted published in the first place? ...they create the problem and then conveniently advertise a very expensive solution.
I have an easier method: Falsify all the information. I will never pay money for some greedy corporation to remove something they have no right to publicize in the first place.
reply
flashcore @ 30th Oct 08:31PM:
.US domains exempted from proxy registration
I don't really have an issue with the whois database as long as you can pay the extra money to use things like domains by proxy to hide your info from prying eyes. My domain use to be registered with their info but then an exception was made for all .us names and now you have to use your real info. If that is how they want to play then they should scrap the whole idea and just make it private. Of course all I use my domain for is to host junk so it has fake info but it only has that fake info because they wont let me use a proxy register to protect my personnel information.
reply
frost203 @ 30th Oct 08:36PM:
Re: Some info should be public
I love the whois system I have used it many time to lookup underhanded website owner, spammers ect.... Personally I think the database needs more verifiable info to guard the public from bad site owners, but at the same time I own my own domain and would like that the database not me accessible to information harvesting bots. there should be harsh penalties for harvesting and maybe registration required to view whois info. that way possible harvesting can tracked. Having no system at all would be a step backwards...
reply
burgerwars @ 30th Oct 08:41PM:
I say keep the WHOIS
I'm in it for several domains, and have no problems.
I find it useful when I go to questionable websites. If the info in the WHOIS looks like they're hiding something or is phoney, that tells me something about them. If it looks legit, I'm more comfortable with ordering stuff from the site.
reply
major marco @ 30th Oct 08:43PM:
Re: There needs to be a WHOIS
said by lordofwhee :
Only police should have access to that information, and even then, only with a subpoena, just like every other database that keeps records of personal info (well, the legit ones, anyway).
Yeah. That'll work. The next time you get yipped by a website you believed was legit and it turns out they took your money and ran, or infringed your copyright, libeled your name by allowing others to post false information about you, etc., you can just call up your local donut eaters and I'm very sure they'll just drop everything for you when you ask them to hand over the previously available WHOIS info to you so that you can contact the registrant. Suuuure, buddy. :uhh:
--
The Toll
Let's Go Flyers!
reply
anon @ 30th Oct 11:19PM:
Re: Totally Pointless!!
What do you people who complain about privacy, but don't want to pay the fee to keep it private do about your local phone service? Unless you pay them their monthly fee, your phone # and address are published in the white pages for all to see...whats different about a domain name?
Personally, I'd like to see the whois stay in effect, and enforce validation of information. Maybe this will help keep some of the spamming/phishing scams down!
reply
fiberguy @ 30th Oct 09:07PM:
Re: illegal
I've heard MANY horror stories of mis-use from the WHOIS.
To be honest, privacy should be MANDATORY. If people want to contact you, they can use the proxy.. and that way registrars can monitor abuse.
However, getting rid of the WHOIS all together is not a good idea either. With all the domain sniping out there, there are legitimate uses for having that information available. Obviously, people are going to want to work to get the domain back - which sometimes fails no matter what you offer, and, other legitimate ISP uses for having it open.
But, I agree on the privacy issue.. people shouldn't have to give out their life story and personal information to register a domain, NOR should they HAVE to pay to mark it private.
my 3 cents.
--
"Complaining is the least path of resistance for the self-serving, the lazy, and I’m told it’s a woman’s prerogative..."
reply
fiberguy @ 30th Oct 09:11PM:
Re: private registration
said by TKJunkMail :
Of course, the address and phone number can be kept private(except to law enforcement) so that people can't be hunted down.
I disagree with that part - partially.
To be honest, I could care less about law enforcement.. let them use the power of subpoena. There are many valid reasons why there needs to be contact information available. ISP's use that data all the time. There is always going to be abuse and misuse. Maybe there needs to be a better way of controlling access to it for legitimate reasons only, AND log who accessed the date in case there is abuse.
Additionally, I agree with you on tightening up the domain registration process - 1000%.
One thing I REALLY would like to see - and this just pisses me off - is the .US domain should NEVER be allowed for foreign use. I think country specific domains should be simply that.. for use in those countries.
There is A LOT wrong with how domain registration is done today - not just the whois..
I for one am glad this is coming into light now.
--
"Complaining is the least path of resistance for the self-serving, the lazy, and I’m told it’s a woman’s prerogative..."
reply
supergirl @ 30th Oct 09:19PM:
Re: illegal
said by jgkolt :
isnt it illegal to falsify the information there? I think there are sites that register it in their name but yo are the owner. like privacy guide. Since i used the privacy option from my registrar i get next to no spam on my webmaster emails
I pay for privacy. Yes, it does all read: Kara Zor-El and Supergirl3000@gmail.com as the owner. My Registrar is Network Solutions and gives the option of faking your ownership. Don't worry, the IRS knows.
--
Saving the world keeps me busy. However, I find Earth very primitive from my home planet of Krypton.
-Supergirl
reply
major marco @ 30th Oct 09:26PM:
Re: illegal
said by fiberguy :
.. people shouldn't have to give out their life story and personal information to register a domain, NOR should they HAVE to pay to mark it private.
my 3 cents.
Don't be so @#$%^ melodramatic. A real name and viable address is not a life story. If you're worried about junk mail/stalkers then rent a mailbox and use that as your mailing address. If you're concerned the contact # will be harvested by telemarketers and abused, then either register with the National Do No Call list and/or get yourself a free voicemail only telephone #. They're freely available all over the net. All you have to do is look for them.
Incidentally, I have yet to have any of my information abused and I have yet to meet any other domain registrants crying about information abuse. People crying about same are the shady characters whose contact information provides the sunlight needed to disinfect these people.
The bottom line is that there is absolutely no good reason not to have the contact information available. First and foremost, it promotes accountability. If people have to provide their contact information, it will make them that much more in tune with what is going on with their domains vs pleading stupidity and otherwise hiding because they don't want to be bothered when their legitimacy or lack thereof is called into question.
--
The Toll
Let's Go Flyers!
reply
fiberguy @ 30th Oct 09:27PM:
Re: Some info should be public
said by romulusnr :
I can find out who owns a building or a plot of land, I can find out who owns a car, I can find out who owns the patent on white-out, I ought to be able to find out who owns a domain.
To the same extent, some of that data, while available, is a little harder to get.
Car registration, for example, is NOT always an easy open access system in all areas - and it shouldn't. Property, as well, I don't think should be as open as it is. There is a lot of this so-called "public information" that can be, and is, abused by people all the time and I think it's high time it's cracked down on and HARD.
Unfortunately, in the day and age we live in, people are abusing the openness of our society to cause harm to others. Identity theft is at an all time high and people are getting more and more angry.
In past times, it was harder to abuse this information because people had to get off their butt and go down to the government offices to get the information. NOW, with computers more common and the internet to the masses, it's easier to sit back and look this information up and sorry to say but this is a recipe for disaster.
It's easy to sit back and say "I've never been bothered" or "I've yet to be defrauded" but wait until it does happen to you. I know many people that have been harmed by this activity and to be honest, it's not fun when it happens.
--
"Complaining is the least path of resistance for the self-serving, the lazy, and I’m told it’s a woman’s prerogative..."
reply
fiberguy @ 30th Oct 09:33PM:
Re: There needs to be a WHOIS
Edit/Removed: Won't waste my time.
reply
fiberguy @ 30th Oct 09:37PM:
Re: I say keep the WHOIS
You bring a valid point about seeing if people are legit - but then again, if you have to look, why buy?
Seriously though, two issues I have with your points are this:
1) You have no problems. Are you lucky? Pretty much. If you have had problems, I'm sure you'd be on the other side of the fence. I strongly urge you to look at what others say and don't take the "it hasn't happened to me" approach simply because you failed to say "yet"... Same with health insurance, life insurance.. etc. Some people don't assume they will die at 35, have no insurance, and say "I'll never die at this age. ;)
2) How are you going to know if they are hiding something? A good con artist won't give you any indication tat they are hiding anything. ;)
--
"Complaining is the least path of resistance for the self-serving, the lazy, and I’m told it’s a woman’s prerogative..."
reply
fiberguy @ 30th Oct 09:38PM:
Re: illegal
said by major marco :said by fiberguy :
.. people shouldn't have to give out their life story and personal information to register a domain, NOR should they HAVE to pay to mark it private.
my 3 cents.
Don't be so @#$%^ melodramatic. A real name and viable address is not a life story.
Tell that to woman who have been tracked, raped, and murdered in the past from the very abuse of the WHOIS. Thanks.
Want another good reason? Post a website that is what people may call controversial. People have a right to be controversial in this country. People will often look to the WHOIS and make death threats. Some people, unknowing, will register their domain, post their website, piss people off that disagree, and then their life is a mess.
1) People don't always know that their information is available to anyone.
2) Privacy should be considered first.
3) People have a right to say their peace and not get death threats and should not have to pay extra to have this data abused.
And 4) don't tell me NOT to be &*(#$&(*Q# dramatic again. Stay on topic..
--
"Complaining is the least path of resistance for the self-serving, the lazy, and I’m told it’s a woman’s prerogative..."
reply
kd6cae @ 30th Oct 09:48PM:
What if you want to be contacted?
My domain has whois info and I'm not complaining. If there's an issue with my domain, say for example someone's using it to distribute stuff that shouldn't be distributed, then shouldn't I be able to be contacted in order to be made aware of the situation? Or maybe an old friend is trying to contact you after years of searching for you. Wouldn't it be nice if they could have a way of contacting you if they know you have a domain? If you want to give contact info, you should be able too, and it's critical to be able to know when a domain is going to expire.
reply
sporkme @ 30th Oct 10:06PM:
Re: illegal
said by Devanchya :
Really the whois was meant to contact someone who was having server issues. Really not needed as much now.
Totally needed still. At work I need to regularly use it both for reporting abuse issues and getting a tech contact for doing a DNS move, etc. Ditto on the IP registrar whois services.
reply
major marco @ 30th Oct 11:24PM:
Re: illegal
said by fiberguy :
Tell that to woman who have been tracked, raped, and murdered in the past from the very abuse of the WHOIS. Thanks.
That's a great emotional argument devoid of all logic and common sense. Where are the stats to give an idea of how many women who have registered with WHOIS have been raped/abused/murdered if at all? Why haven't we heard from the various women's safety advocacy groups en masse protesting WHOIS? And for that matter, where are the consumer privacy advocate groups? The AP article in the headline of this thread was conspicuously silent on that count.
I tend to look to orgs like PrivacyRights Clearinghouse for my privacy info yet they haven't made a peep about WHOIS, and, what's more, there aren't any stats/info available on their site crying about WHOIS privacy violations. If you take a look around that site, you'll see it is mighty comprehensive as to consumer privacy. But strangely, they haven't said a word about these alleged privacy violations mentioned in the AP piece by these phantom "privacy advocates."
As I've stated above, secure a rented mailbox and use that as your mailing address. If you can afford the cost of a domain and a website, then you can afford a rented mailbox.
No doubt there are stats to back up that plenty of people have been stalked/raped when they lost their driver's licenses, but I have yet to see either the feds or any state government banning/redacting the address of the driver on DLs because harm may come to someone in the event s/he loses his DL. The same advice as to the rented mailbox is applicable here. I have my mailing address on my DL as opposed to my residential address for this very reason b/c sometimes I lose shit and don't know it for days after the fact.
said by fiberguy :
People will often look to the WHOIS and make death threats. Some people, unknowing, will register their domain, post their website, piss people off that disagree, and then their life is a mess.
So because the possibility exists that some may be adversely affected by the registrant of a domain having to provide viable contact info, we should just outright ban WHOIS? Sorry. Not buying that argument. Three inches of water in a bathtub drown ungodly amts of people each year, but I don't see a move to ban bathtubs or water to protect the stupid/negligent.
said by fiberguy :
1) People don't always know that their information is available to anyone.
That's what so great about the internet. Information is free and if you have 2 spare brain cells to rub together, you conduct your due diligence and learn. Don't want to do that, tough cookies.
said by fiberguy :
2) Privacy should be considered first.
We're not talking about SSNs. Just a simple address!
said by fiberguy :
3) People have a right to say their peace and not get death threats and should not have to pay extra to have this data abused.
Use a rented mailbox and a vm # as your registrant info and conduct yourself accordingly to mitigate the propensity to be threatened.
said by fiberguy :
And 4) don't tell me NOT to be &*(#$&(*Q# dramatic again. Stay on topic..
You are being highly melodramatic here because we are discussing viable contact information that need not necessarily be your residential address or landline.
The bottom line to all of this noise is that the so called "privacy advocates" who are behind wanting to close off the contact information of website registrants are corporate entities and other miscreants whose goals are to stop the flow of information to consumers who can then hold them accountable.
Don't fall prey to some flimsy argument that alleged "privacy advocates" are concerned about the WHOIS database. If that were the case, then where is the EFF? EPIC? UCANN? Junkbusters? Daniel Solove? Eugene Volokh? How about just a quickie opinion from Bruce Schneier?
The silence from the above-referenced consumer privacy advocates is deafening.
--
The Toll
Let's Go Flyers!
reply
espaeth @ 30th Oct 11:25PM:
Re: Totally Pointless!!
said by Tyler Durdin :
Network Solutions forces you to keep the information up-to-date and says if you wish to keep it private, you have to pay more money.
Easy solution: Use »www.namecheap.com instead of network solutions, pay less for your domain registration/renewal, and get free whois protection.
reply
laserjobs @ 30th Oct 11:43PM:
ICANN has CHEESZBURGER?
reply
anon @ 31st Oct 12:14AM:
msg deleted
deleted by a moderator
reply
anon @ 31st Oct 12:17AM:
msg deleted
deleted by a moderator
reply
anon @ 31st Oct 12:19AM:
msg deleted
deleted by a moderator
reply
agill81 @ 31st Oct 12:48AM:
It is time to wake up people!!......
Really people get a grip here!!!...
There is no need to scrap the WHOIS database, there is already privacy standards set in place....I am sure the only people who are complaining and saying they are being harassed are the shady companies that are ripping people off and have no actual phone number listed on there web site so people turn to the WHOIS database to find that. Even fax spammers you can't find any information on the fax but sometimes you can turn to the links that are sometimes on the faxes...You can most of the time find info about the fax spammer’s web site on the WHOIS database. So for the people who have "personal web sites" and don't want there privacy to be revealed I suggest activating the privacy feature with your registrar! Everyone else should be required to show there information. In my opinion when a company or organization doesn't show an address or phone number I would be a little skeptical about them.
reply
gefflong @ 31st Oct 01:32AM:
oh please
said by fiberguy :
Tell that to woman who have been tracked, raped, and murdered in the past from the very abuse of the WHOIS. Thanks.
According to that logic, we better ban all phone books then.
reply
DotMac @ 31st Oct 01:44AM:
Re: It is time to wake up people!!......
My eyes hurt. Thanks.
reply
DotMac @ 31st Oct 01:47AM:
Re: oh please
I would welcome it as Verizon wouldn't be able to charge me $1.50 to keep my name and address out of it.
Just as there is no reason for registrant information to be public record, neither should a phonebook be a "pay to opt out" record.
reply
kinabrew @ 31st Oct 03:29AM:
Re: Totally Pointless!!
Let me guess. You probably have a common name.
From what I can tell, there might only other person online who shares my name. If this person actually exists, they live in Hungary.
I don't have a landline phone and haven't for years, so no, my phone number doesn't appear in the white pages. I also have a PO Box to prevent my bills from coming to my home.
I control six domains, and on some of those domains, I cover some heated political topics. Many people in this world probably wouldn't like what I have to say.
During my lifetime, I've also received at least one death threat.
Personally, I'd like to not give everyone in the world my home address and telephone number. And I'd like to not have to have my name published when it's the only information needed to find said address and telephone number.
reply
Vamp @ 31st Oct 03:42AM:
Just register them private...
I just register them privately, then atleast it hides in Whois.
I think they should get rid of requirement though.
--
WLM/MSN Messenger: scott001(gmail) ADD ME!
reply
morbo @ 31st Oct 05:57AM:
Re: ICANN has CHEESZBURGER?
?
reply
GlobalMind @ 31st Oct 07:37AM:
Agree in part
I guess I am both sides of this one.
While I don't have a desire to have MY whois data out there and do take steps to keep that private today, I also find it useful for vetting domain owners in various bits of research.
I also believe I shouldn't have to pay to keep that info private, regardless of the registrar used.
--
TheGlobalMind.com | Speed costs money. How fast do you want to go? | Angus the IT Chap
reply
brawney @ 31st Oct 08:06AM:
I've received snail mail
The name I have in the whois is "Domain Administrator" and I have received CREDIT CARD OFFERS in the snail mail addressed to "Domain Administrator".
reply
ChicagoCPA @ 31st Oct 09:53AM:
Business should be public all others verified
Here is my viewpoint on the WhoIs Database
Commercial - If you are engaged in any activity where money or other value is exchanged your WhoIs Data must be public, verified and current. If your data does not meet that criteria, zap your website and email go away. You don't fix it, you can not renew your registration
Non-Commercial - All Registration companies are responsible for collecting valid Whois data on all their clients, you won't provide valid information your technical contact (eg Web Host), becomes legally responsible for legal and administrative issues. If you are engaged in a business activity and you have registered as non-commercial, you forfeit your registration.
For all, you can designate a third party agent (just like a US corporation) to act an intermediary and contact for your website. This must be a Legal Resident in the country where the Domain is registered, have a fixed address and phone, be of Good Character. Agents are responsible for verifying the identity of their clients in person (think public notary)and maintaining current records of address and ownership. (Registrars can never be agents)
reply
agill81 @ 31st Oct 10:23AM:
Re: It is time to wake up people!!......
Anyway
reply
KoolMoe @ 31st Oct 12:49PM:
Re: Lies and Distortions
Agreed.
A common use of WhoIs on this site is to checkup on folks who are promoting their web hosting services. I use it myself, as a web developer, to find out who has 'stolen' a client's website, or to find out if a current owner may be interested in selling their domain if a client of mine is interested in it.
I have no problem with folks wanting to keep their info private - to a degree. I've never used the privacy feature so don't know how it works. As long as there is a way to contact the registrar and somehow get a message to the owner, cool enough. But I do NOT think it wise to make that info completely inaccessible.
And it should require verification. Some part of the register info must be required - address, email, and/or phone - so the owner can be contacted if necessary.
KM
reply
ff1324 @ 31st Oct 04:15PM:
Re: Totally Pointless!!
If you have a PO Box, why are you worried about addresses in the WHOIS database? As far as your name, use a method similar to Ma Bell:
AT&T Corp.
Corporate Administration
32 Avenue of the Americas
New York, NY 10013
US
eiss-dns at att.com
+1.3172651482 Fax: +1.3172651482
--
What do you want to do to the world, Ronald?
Burn it all.
See you next year, Ronald.
reply
MGD @ 31st Oct 04:24PM:
Re: Business should be public all others verified
said by ChicagoCPA :
Here is my viewpoint on the WhoIs Database .....
Excellent, however based on ICANN's history your ideal proposal will remain just that.
If ICANN votes to trash the WHOIS database it will lead to a massive increase in cyberfraud. The Anti-Phishing Working Group (APWG) reports that the Whois data base is an invaluable resource in shutting down over 1,000 phishing sites a day:
[att=1]
»www.antiphishing.org/reports/APW···owns.pdf
The whois data base is an absolute necessity in fighting cyber fraud. It has become a valuable tool only because registrars have totally abandoned any vetting procedures in the domain registration process. Cyber Criminals have free reign when it comes to registering fraud domains and the valuable DNS control of them.
To underscore how rampant this issue is, and the malfeasance of ICANN's proposal to do away with the Whois database, here is a small example of what takes place thousands of times a day.
This is a snippet of the domain activities of a Moroccan Cyber Criminal who has been shadowed on »/phishtrack . This criminal has registered hundreds of fraudulent domains within a few months. All are registered with obvious fake registration data, and all are charged to previously phished credit cards.
Here he is registering a Paypal Phishing domain onlinepaypalus.com with bogus data:
[att=2]
Note the obvious and total bogus data
Now he pays for it with a phish victims's card:
[att=3]
This was his third attempt at entering a card number. Bear in mind and as noted on the pic he is making this purchase from a French IP using a US issued credit card and bogus us data. Not even a cursory check for a valid zip code or area code match, nothing.
[att=4]
All good to go, within minutes the Paypal phishing site was up and running, and a million phish spam mails were on their way.
Is this an isolated incident, no, it is repeated over and over. Even when the domains get cancelled after a few days, long after the phish run is over, he just re registers the same domains over again:
[att=5][att=6]
Having this whois data public, at least shortens some of time that it takes to track these and shut them down. The registrar does not care, no vetting process at all. So it is up to netizens to bang on the door and try and close them.
ICANN has their collecteive heads in the sand.
reply
kinabrew @ 31st Oct 04:25PM:
Re: Totally Pointless!!
My name points directly to me and to no one else. The PO Box is irrelevant if someone has my name.
And I shouldn't have to go through the hassle of setting up a corporation or business just to host my sites.
reply
MGD @ 31st Oct 04:44PM:
Re: Business should be public all others verified
Correction, that second graphic listed as the registration for onlinepaypalus.com is incorrect. That pic is his registration of another bogus PayPal phishing domain paypal-contact.com. SInce that is relevant to this story, I will leave it and add the correct pic for the onlinepaypalus.com below:
[att=1][att=2]
reply
Taurus333 @ 31st Oct 05:39PM:
Re: oh please
I have no problem with pay to opt-out for privacy concerns, cause if your privacy isn't worth anything to you then why should it be worth anything to anyone else?
reply
ff1324 @ 31st Oct 09:34PM:
Re: Totally Pointless!!
Depending on how many you have and the nature of your involvement, you may want a separate LLC or equivalent to be the owner of record.
I know of many people that just put "Site Administrator" for the name on the WHOIS. There's your anonymity.
reply
DotMac @ 1st Nov 11:35AM:
Re: oh please
Why should they get to sell my information for free?
They should have to pay ME $1.50 a month of they want to make money off my personal information.
reply
Taurus333 @ 1st Nov 06:00PM:
Re: oh please
Simply listing your number in a freely available public phone directory or allowing people to freely access your information through a WHOIS database, doesn't qualify as selling your information. By not choosing to opt-out through paying for an unlisted number or a private domain, you are giving them permission to publish your information. The selling of information is a completely different issue.
reply
BrotherJPW @ 12th Nov 01:03PM:
Re: private registration
I disagree, everyone should have access to it because if you are taking someone to court for copy right infringement; you can take them to civil court instead and avoid criminal court; it all matters.
reply
Thank you for using lo-fi dslreports.com - report bugs
© 99-2009 silver matrix LLC
