VeriSign/NSI Proposes Domain Name Wait Listing Service 164
David Harris writes: "Newsbytes and the folks over at DotcomScoop.com have good stories about VeriSign's proposal to start a "Wait Listing Service" (WLS) that would allow consumers to buy domain names before they expire. As with anything that has to do with VeriSign/Network Solutions the "WLS" ain't all it cracked up to be and there is opposition from the ICANN community. I'm not sure I like the idea of auctioning off domains before they expire either." CD: To quote Don Marti: "DNS is a consensus reality."
Sounds like another way for Verisign to cash in (Score:1)
Re:Sounds like another way for Verisign to cash in (Score:2, Insightful)
It was explained to me that for ONLY $45 (USD) you'd be placed in a queue to purchase the domain upon availability, through a third party company. Let me guess... the domain I'm looking at hasn't been removed in 10 months... but I bet if I pay this $45 to get in line, it will mysteriously be available?
Re:Sounds like another way for Verisign to cash in (Score:1)
They are just waiting for me to pay extra to make it available. This is simply netsol manipulating the circumstances to obtain more money than they deserve.
what's the point? (Score:1)
Re:what's the point? (Score:1)
Say your name is Bob Miller. You want bobmiller.com. Some other Bob Miller has it already. You could put your name on the WL, and get it if Bob2 doesn't reclaim it.
The problem with this is, that Mail banks and resellers are likely to be the first ones in line, making it very difficult for any true benifit to the People to materialize. If anything, this will make things worse.
They do not even handle it well AFTER expiration (Score:5, Interesting)
A good friend of mine is interested in using a name which has expired for allmost a year now. The previous owner has no interest anymore.
Verisign tells my friend he should ask the previous owner to use the transfer documents to transfer the domain to my friend. However, the previous owner does noet want to put any effort at all into it. "I am just not interested as to what happens to the name. That is why I let it expire. If you get it -ok with me. If not - ok with me." Now my friend is stuck. One wonders how they will handle names that did not even expire yet.
Re:They do not even handle it well AFTER expiratio (Score:3, Interesting)
So it's expired but the owner can still use it because it still resolves? What's up with that? And especially if you're saying the owner needs to transfer it to you even if it's expired, seems to imply that they can keep the expired domain as long as they want.
This is a computerised system, it should be that as soon as it hits the expiry date (maybe +1 week at the most incase there is a delay in payment) the domain is deregistered and removed from whois, and available free for all again.
End Rant.
Re:They do not even handle it well AFTER expiratio (Score:1)
This is a computerised system, it should be that as soon as it hits the expiry date (maybe +1 week at the most incase there is a delay in payment) the domain is deregistered and removed from whois, and available free for all again.
Ok. So it happened to you, it happenend to my friend. My guess is there are a lot more people, but (because of the nature of the problem) rather dispersed.
Now what can they do? Did V violate a rule one can legally enforce? It is a gray area. Now the 10E6 Euro question is: what are the rules with regard to names BEFORE expiriation?
Nice business
Re:They do not even handle it well AFTER expiratio (Score:1)
Re:They do not even handle it well AFTER expiratio (Score:5, Informative)
That's funny, considering that Verisign won't let you transfer domains after they expire. I suspect if the original owner tried to, they would tell him he needs to renew with them first, so they can get an extra $70 for doing nothing. They tried to do it to me, but I said fsck that. Now my previous domain is owned by a porn site operator who re-registered it with another registrar before I could. That's where the domain your friend wants will probably end up too.
Re:They do not even handle it well AFTER expiratio (Score:1)
Re:They do not even handle it well AFTER expiratio (Score:3, Insightful)
Bingo. It's ridiculous that they are setting this up to handle existing names that haven't expired yet, when there are names which have already been expired for one or two years which cannot be claimed due to various registrars' screwed-up policies.
The whole name registration racket is in dire need of either total decentralization (to empower the customer) or else some real regulation to make sure that all registrars are playing by the same rules. Since I'm not too confident in ICANN's regulation so far, decentralization sounds like the way to go.
Heck, I'd love to see the Commerce Department (or an international disinterested party (you know, like ICANN was supposed to be?)) take back over the actual database, and provide the same access to all registrars alike. As it is now, any one of NSI's bad business ideas are basically unstoppable without a significant court battle.
Re:They do not even handle it well AFTER expiratio (Score:2)
.
Re:They do not even handle it well AFTER expiratio (Score:2)
Re:They do not even handle it well AFTER expiratio (Score:2, Insightful)
Wanna buy a piece of land on Ganymed?
Don't think that is impossible.
So the Q: what can they really put in their contract? What do V really deliver?
Re:They do not even handle it well AFTER expiratio (Score:2)
Oddly enough, the owner of the *expired* name is willing to sell it. Net. Sol. is the most expensive registrar out there, with the worst agreement contract. The system is seriously broke. The only solution I can think of is government action, but I can't see the current Bush administration doing anything. I hold out some hope that maybe some technocrats in Europe will pick up and run with this travesty.
Re:They do not even handle it well AFTER expiratio (Score:3, Interesting)
I've noticed that some domains I had with register.com that I let expire were gone in a couple days from WHOIS, yet ones registered by netsol continue to linger. I'm not the least bit curious why netsol is the largest holder of domains... they don't ever remove them!
Re:They do not even handle it well AFTER expiratio (Score:3, Insightful)
The day after I sent my third email the WHOIS information became unavailable, but I still couldn't register the name. The day after that a bulk domain reseller showed up in the WHOIS.
Needless to say, I was pissed.
Re:They do not even handle it well AFTER expiratio (Score:1)
I accidentally let a domain expire (miscalculated by 2 weeks).
Within 1 week of it expiring, some scumbag pr0nmeister had reg'd the domain and was using it to peddle his wares (whilst offering the domain for sale for a ridiculous price)...
Is NSI playing fair?? (Score:2, Interesting)
Would this be a way for them to "selectively" release expired domain earlier?
Re:Is NSI playing fair?? (Score:1)
Re:Is NSI playing fair?? (Score:2)
.
New footnote: (Score:3, Funny)
Be ready for hot teens in six months at www.CITYNAME.gov!!!
Great idea! Sounds like another way to get money out of domain name holders.
Auctioning? (Score:3, Interesting)
The article itself does not mention auctions, maybe the poster is jumping to conclutions. This scheme seems to involve not notifying the holders of a domain that they controll something valuable.
Out of All Curiousity... Buy MSFT.com? (Score:3, Funny)
I think it'd be interesting to see a bid from Slashdot on Microsoft.com, in 10 years it could be an open source page; directing users to the new Microsoft Home: www.geocities.com/microsoft.
We could also buy some other big ones, including AOL or Time. Just think of the amazing site traffic you'd get on whitehouse.gov, assuming Bush neglected everything important (like he always does) and forgot to tell someone to renew his Verisign lease.
Or maybe... just maybe... Anyone want to start a paypal to buy slashdot.org with me? If you still want to read the news, we'll provide a link to their new homepage, whichever company they decide to bid for.
Re:Out of All Curiousity... Buy MSFT.com? (Score:2, Interesting)
Re:Out of All Curiousity... Buy MSFT.com? (Score:2)
Of course, this only works for those who can afford the lawyers to back up the threat. Anyone else can be hijacked.
.
Over-milking the cash cow (Score:5, Interesting)
It's something that would make stock brokers proud. It's an option that can never be exercised in many cases, yet Verisign would collect full face value. And that face value of $40 is way more than the $6 they get for actually registering a new name.
I guess the theory is that "someone else bought it before, so you should pay us a lot for it this time around." Are there no limits to the intenet-ridiculous?
Re:Over-milking the cash cow (Score:2)
Else, it sounds like they are displaying and excercising monopoly powers.
What we really need (Score:3, Interesting)
Sure, most people would never be able to get at our web sites or send us email, only those who knew enough to use an alternative DNS but that's almost certainly not a bad thing. Keep out most of the idiots and most of the spam.
I'm amazed nobody has done this already. Or did I just miss it?
Re:What we really need (Score:4, Informative)
If you're still interested, try:
http://www.opennic.unrated.net/
http://www.open-rsc.org/
http://www.alternic.org/
http://www.tinc-org.com/
http://www.name-space.com/
Re:What we really need (Score:2)
What the world needs is to unify all of these in some way. Surely that's possible?
Re:What we really need (Score:2, Interesting)
Unity is good. But a unified, centralized root server system run by unscrupulous frauds got us into this mess in the first place. Are you willing to bet that the mistake-that-is-NSI will never happen again?
My prediction: in 10 years DNS is obsolete. It will be replaced by the search-engine-name-system, where you ask your PDA's search engine where to find such-and-such a company, and it sends you to their site. Domain names are just a crutch to find the site; by then we'll have much better crutches.
Of course, at that point there will be lots of squabbles over who gets listed first by which search engine, etc. It's always some damn thing :)
Re:What we really need (Score:2)
People should be able to choose the order in which the registers are to be searched for DNS resolution. And uniqueness should be specified by an IP6 number. (I.e., if you want to specify a unique address then you use an IP6 number. Otherwise you take the chance of hitting a duplicate.)
Alternatively, if there are multiple possible resolutions, then the page titles could be presented to choose from, but there would need to be some way to allow for duplications there to be resolved.
Still, the basic thing is to eliminate the centralization. It's a "central" weakness in the current system. And it's not necessary. And it encourages monopolies to from with all the crazyness that that results in.
.
okay (Score:2)
Re:What we really need (Score:1)
Keep out most of the idiots and most of the spam
As well as our brothers, sisters, best friends, and parents. I'm sure as Hell not going to every relative's home, setting up there system to use an alternate DNS, just so they can send me email.
Re:What we REALLY need (Score:1)
Side effects? (Score:5, Insightful)
This also sounds a bit like it is aimed for those same who would try to sue anyone with a domain name containing even the same letters or digits as their trademark (even though there are only 36 of them total). Now, if you fail to renew on time, will they be able to grab your domain from under you, or will there be a "cooling off" period for domains before they can be taken over by the person purchasing them in this auction?
I am sure these are only the tip of the iceberg, once this policy is considered. It seems to me that such a policy would require the application of thought, logic, and common sense, to try to minimize problems should it be implemented. (I know-my experience leads me to believe that such won't be applied either.)
Re:Side effects? (Score:2)
Seems pretty stupid (Score:2)
Talk about lameness. Why did the government have to sell the DNS system to these losers?
Re:Seems pretty stupid (Score:1)
I have a feeling that it wouldn't matter who gained the monopoly at the time Internic(?) went private. Netsol was in the right place at the right time in history. What private company in the early childhood of the Information Revolution *isn't* doing it's best to rape everyone?
Unfortunately, business is business, and it is that mentality that allows people to act in a manner that in any other environment would be considered criminal.
In a 1000 years, anthropologists will wonder and spend their lifetimes trying to unravel the Culture of Capitalism (Or is it the Culture of Consumerism, I'm beginning to forget if I'm supposed to make lots or spend lots. Please O Lord of TV-Ads, guide me...) Similiar to the way we ponder and gape at cultures that practice(d) human sacrifice.
(I'm not equating human sacrifice with losing your domain name, just trying to illustrate a point.)
Get on the waitlist for www.off-topic-rant.com!
Re:Seems pretty stupid (Score:2)
1) Sometimes they no longer exist. Their contact information such as telephone number and email are not valid. This usually happens when someone spent $500.00 one night and registered a ton of names in speculation.
2) They will reregister and then demand an outrageous fee for the domain name. That has happened more than once.
Patrick
Re:Seems pretty stupid (Score:1)
-Joe
Waste of time? (Score:2, Interesting)
So if I add my name to the waiting list for Microsoft.com do I get it after the current expiry? Now there's a pr0n URL
Last I saw networksolutions were offering a 'automatic grabbing' service which you paid your money for, and if they didn't reregister in time it did it for you automatically.
Just so you can try and steal someones domain [snapnames.com] (this is linked off network solutions). I don't really see how a waiting list is any different, and I also reckon it's a really daft idea.
Then again, NSI (sorry, verisign) do have some decidedly dodgy practices regarding domain names. Like auctioning (not going back into the $35 pool or whatever the cost is) old domain names on "Great Domains" [greatdomains.com]
Or charging a 'preference' rate to get a domain transfer request actioned in 2 days rather than 6 weeks.
Looks like yet another extortion tactic by the domain monopoly.
Time to replace DNS... (Score:2, Interesting)
It could even run in parallel with the existing domain name servers. If it turned out to be better then it will eventually superceed the existing system.
We need to get out from under this obsenity that is the monopoly on domain names. Doesn't it worry anyone else that what is essentially an extension of the US government runs the DNS system? I bet the NSA maintains the root DNS servers as part of the Echelon program and monitors exactly who is asking for what domain names.
It may even be possible to use this new system to make new kinds of peer to peer file systems scale to any size.
Re:Time to replace DNS... (Score:3, Insightful)
IMHO that's why the current system works well enough - it's a first come first served, and sue them if you don't like it, but at least I don't have to worry about my vanity domain being taken off me by someone else on the P2P network.
Re:Time to replace DNS... (Score:2)
The problems with the current system are that it requires a "root" and whoever owns that root has the power to impose their will on the rest of the system.
So far I've not managed to think of a way to make this work though
Re:Time to replace DNS... (Score:2)
Unfortunately, I haven't been able to think of a peer-to-peer system that would work. I think that a more scaleable system would be based around rings of DNS systems of more-or-less the current version, connected in a hierarchical net. One would need to give up unique naming (see my comments elsewhere in this thread), but the IP6 unique numbers could be used as unique identifiers (I don't expect that there will be much contention over particular numbers [except, perhaps, for 03.14.15...]). Names outside of the local area might need a search engine to choose the one that you were after, but bookmarks could store the unique id, so that repeated access would be no more difficult than at present. (etc. see other post.)
.
It's called "Bang Routing". Been there, done that (Score:3, Insightful)
Much more eloquent things [bell-labs.com] said Rob Pike [bell-labs.com] and Peter [menlo.com] Weinberger [bell-labs.com].
Also, SDSI [mit.edu] by Ron Rivest and Butler Lampson touches on the same territory.
Re:It's called "Bang Routing". Been there, done th (Score:2)
On the other hand, the article you mention SDSI [mit.edu] looks really interesting. I've only looked at it quickly, but it does look like a good way to organise what is essentially a peer to peer replacement for dns, but which can incorporate dns too.
Re:Time to replace DNS... (Score:1, Insightful)
Re:Time to replace DNS... (Score:2)
I tend to favor a round-robin based hierarchical net of resolvers more or less like the current system, but with non-unique naming (i.e., names are unique withing a ring, and stacked within a hierarchy). This would allow names to be locally unique, so "Bob's Burgers " could exist in several different cities without clashing with each other (as long as they were in different nodes). To reach a address by name outside of unique resolution space one would need to either do a global search by name, and select by page title (think of a google-esque front end here) or perhaps one could specify city & state. Names would be first come, first served in any local area, but finding a distant site would register it locally, so nobody could register a name that duplicated a name that had already been searched for.
There are only so many reasonable names in any language, and the internet is large enough that nobody should automatically be granted global ownership of a name. If you want a unique identifier, use an IP6 resolver. If I want to register "lnet.mineAllMine.com", and you do too, then there isn't any necessary conflict, as long as we hang off of different nodes. And if people want to bookmark one of the sites for global access, then the bookmark should remember the IP6 number instead of just the name.
.
NSI's bus. practices (Score:3, Interesting)
Someone really should do something. Too bad ICANN can't do anything. Maybe they could, but I don't see the old members giving up their spots to the elected anytime soon. Plus, NSI could "accidentally" cause down time if they tried to move the DNS registries. Unfortunately though, there are no feasable alternates.
Downward Spiral (Score:4, Interesting)
First they started holding onto domain names that have expired. Then they implemented a system that makes it really tough for someone to transfer their domain name to another registrar. Now this.
Let me tell you what NSI is REALLY up to.
They've had the lionshare of domain name registrations since the beginning of the internet. So it's of no surprise that they have the largest pool of expired names. NSI holds on to every single one of them. Thousands, perhaps millions. They pay $0 to hold on to those names.
Now they start auctioning off these names. They've turned into nothing more than the world's largest CYBER-SQUATTER!
Let me make another prediction. If this change is allowed to go through, next they'll be saying, "if you win a name by auction for say $10,000, then from that point on every year you will have to pay $10,000 to renew that domain name, and you won't be allowed to change registrars either!"
It's time for the government to castrated NSI/Verisign.
Re:Downward Spiral (Score:1)
My proposal was that they should release names on a published schedule.
Re:Downward Spiral (Score:4, Insightful)
Then let's do something about it. Contact your local better business bureau [bbb.org] and complain, citing specific examples of how they've screwed *you*. Make it professional and personal. The web hosting company I work for has already called the BBB (last week, actually) about Network Solutions on behalf of some of our clients, and the person handling the case sounded rather interested.
~z
Re:Downward Spiral (Score:2)
Extending their monopoly - without asking ICANN? (Score:3, Interesting)
Verisign have been granted a monopoly from ICANN to handle the registration process. However, this proposed system is clearly extending this monopoly from the registration of new domains (via registrars) to a pre-registration phase.
This must be a matter that ICANN should take responsibility for. The way to allow pre-registration should be defined, and explicitly included in any registry agreement - if the only sensible way to approach it is to allow Verisign a monopoly then it should be regulated accordingly (i.e. $46 is way too much to be allowed). Apart from anything else, it would be nice to have a standard process for all TLDs (.com/.uk/.whatever).
Re:Extending their monopoly - without asking ICANN (Score:2)
I hate to disagree but I cannot see any reason for a "pre-registration" process. NSI^H^H^HNetSol^H^H^H^H^H^HVerisign should simply be forced to release domain names on a known schedule (i.e. 0/5 days after expiration, preferably at the original time of registration). Then everyone can jump in and try to buy it first :-) As long as their is no systemic preference for who will get any domain (like people who pay the extra to go through the worst registrar [netsol.com] should not be able to purchase first) this system would be fine.
As for having a standard process across all TLDs, you are living in a wildly optimistic dreamland, but that's ok with me, I'd rather let some TLDs make their own bizarre rules than have one set of rules created by one global devil.
Re:Extending their monopoly - without asking ICANN (Score:1)
Car Salesmen Are Turning Green With Envy (Score:4, Funny)
You know, I've had my eye on my neighbor's car for some time now... maybe I should put myself on the DMV's waitlist so I can snatch it from him when he's late in renewing his registration. I'd better start saving now, though, because I saw the old lady across the street checking it out today.
re-register every day? (Score:2, Interesting)
Or people would be forced to register domains for 50 years and on? In that case it would cause an even bigger lack of available domain names than there already is.
/penhead
Re:re-register every day? (Score:1)
Discretion and fairness (Score:2)
What happens if the name doesn't expire? (Score:5, Funny)
January 2002
- My domain name expires in 6 months.
- My neighbor wants my domain name, so he pays NetSol $50 to be waitlisted.
June 2002- I log on to netsol.com and renew my domain for another year.
- NetSol takes my renewal money and keeps some or all of my neighbor's money.
- My neighbor is SOL (but he'll get another chance next year!).
IIRC from the college entrance experience, "waitlisted" is not a guarantee. It's a "we'll see." It sounds like NetSol is forming an online gambling institution: people pay NetSol for the right to purchase a domain name in the event that the current doesn't renew.That's like going to the only real estate agent in town and giving him money to guarantee you your neighbor's house in the event that your neighbor decides to sell. In fact, you have to do that this becomes the only way you can buy an existing house in town because if you don't someone else will.
:::GASP:::
Could the proverbial "abuse of absolute power" we've all heard about in fables but never seen with our own eyes?
I think there's a way around this. Contact the owner of the domain you want and ask if he's going to renew. If he's not going to, offer to buy it from him for half of what NetSol would charge for the waitlist fee. That way you save money, the person who was dropping the domain makes some money, and NetSol doesn't get anything it hasn't earned.
And I thought ebay sniping was bad... (Score:1, Offtopic)
Wait for this one ... (Score:1)
What scares me is that Verisign would probably pull a stunt like this. Makes me oh so happy that I moved all my domains away from these a-holes years ago.
What!?! - Surely No One Is Dumb Enough (Score:1)
In the most trivial of cases you would be the only one in the queue, and the registrant would renew and NSI would make money out of you.
In the more complicated cases they would be a few people in the queue for the same domain, and the registrant would renew and NSI would make a shed-load.
Most people buy domain names for the haul
NSI are just out to fleece their users.
Re:What!?! - Surely No One Is Dumb Enough (Score:1)
Of course they are. They've always been out to make money ever since they started charging for domain names. Yet every time their contract comes up for renewal someone keeps them on. They must have some pretty dirty laundry on whoever is granting this monopoly to them because if I was ICANN I'd have given them the boot already. Publicly traded companies should NOT control a vital part of the Internet infrastructure as a monopoly. Period.
Frauds bad enough as it is! (Score:3, Informative)
Now the jokers will have a real incentive, having paid cash for something they haven't gotten!
This will only escalate fraud!
Re:Frauds bad enough as it is! (Score:1)
it's a joke... (Score:2)
ICANNWatch links (Score:1, Informative)
Absurd, unnecessary, and unwanted. (Score:3, Insightful)
Such a product (I'm uncomfortable calling it a 'feature') would encourage domain squatting and further pollute the available namespace.
However, I'm not oblivious to the fact that it would be profitable for registrars that are involved. I miss the days of the non-profit Internic. With all of the 'progress,' I don't really see a single thing that's better about root management and domain registration today than it was in, say, 1994. In 8 years, all that we've done is create a handful of useless companies and waste a significant amount of money. That's without even mentioning the countless leeches (domain squatters) that are encouraged by this system.
This is the wrong step to take for Internet DNS. Luckily, this is only a proposal and thus not much should be made of it. I'd be quite shocked if this made it much further, especially in the state that it's in.
Cheers.
Verisign is making money off.... (Score:1, Insightful)
It's something that would make stock brokers proud. It's an option that can never be exercised in many cases, yet Verisign would collect full face value. And that face value of $40 is way more than the $6 they get for actually registering a new name.
I guess the theory is that "someone else bought it before, so you should pay us a lot for it this time around." Are there no limits to the intenet-ridiculous?
Surely this is what Snapnames do? (Score:4, Informative)
If you don't know about Snapnames, read about it here [dynamoo.com], but essentially it's a back-ordering service.
NSI are actually a Snapnames affiliate, so they get $7 per back-ordered name through their site. I guess they want the rest of the money too.
Re:Surely this is what Snapnames do? (Score:2)
I use Name Winner at http://www.namewinner.com. They do the same thing, but for less cost.
Re:Surely this is what Snapnames do? (Score:1)
You guys got it all wrong (Score:3, Insightful)
Let's say you are the owner of Slashdot.org, you surely don't want someone to "steal" your domain if you have forgot to renew your domain. Remember they've just have an option to register the domain for 10 years? Seeing next to no one is going for that (god knows what happens to the net in 10 years). With ths waitlist thing, more people would probably go for a longer registratoin period because they don't want to lose their domain name.
Re:You guys got it all wrong (Score:2)
The Current Situation (Score:5, Informative)
Now, Verisign the Registrar releases a lot of domains to the public right now after a certain period of time. At this time the names are released and numerous registrars attempt to snag those names when they are dropped. This practice has caused headaches to no end at Verisign the Registry. It essentially acts as a denial of service attack as all the different registrars pound the registry trying to snatch those dropped names. Were talking hundreds of thousands of queries every minute.
This new propsed system is a response to this situation. It is designed to end the constant pounding of the registry. Granted it may not be the best solution but it is only the first draft and it must be okayed by ICANN first, thus there is a strong possibility that it will not be implemented. However something is needed in order to make the domain deletion process less system intensive as the registry cannot continue to support the amount of traffic caused by these domains dropping.
Re:The Current Situation (Score:1)
Re:The Current Situation (Score:1)
The agreement with the Department of Commerce [verisign.com] states "NSI shall take all reasonable steps to ensure the continued operation, functionality, and accessibility of the Shared Registration System." Appearently this is the next reasonable step.
As I stated in my previous post there proposal may not be the best solution. However I think it is unfair to compare what they are doing with what occurred at that other registry [neulevel.biz].
Re:The Current Situation (Score:1)
Re:The Current Situation (Score:1)
They have also limited both number of allowed connections per registrar as well as allowed bandwidth when accessing these machines. These actions helped for a while but utilization is now back up to near 100% on a regular basis and they have had to put new limits in. In order to keep the system running they cannot continue like this indefinately...unless you would like them to raise normal registration fees to support it.
Re:The Current Situation (Score:1)
Re:The Current Situation (Score:2)
There is a limit to the size of pipe that is available. There are no fatter pipes available at any price. There are no routers capable of routing them.
Why do people in the DNS world seem to think that spending money on hardware is the solution to every problem? What happened to engineering and protocol efficiency? All the waitlist provides is a somewhat more efficient mechanism than polling.
To understand the nature of the problem it is necessary to understand the type of business model the attackers are involved in. A typical approach is to scan the net for church group sites, locate those that are about to expire, grab the name and put up a porn site or a casino site in its place. The original owner is then offered the site back for a substantial fee.
If you have a business model of that kind, the best way to lower your overheads is to pay to become a registrar.
Re:The Current Situation (Score:2)
If so, then they are bloody idiots.
One very simple thing they can do to reduce the problem is publish the dates at which expired domains will become available. There would still be a rush, but registrars wouldn't need to attempt 10,000 domains every second, just 1.
Still not good enough? Then accept registration from all accredited registrars for a period of 1 week, and assign it to a randomly chosen one at the end of the week. One could even use cryptographic protocols to insure that the random selection was actually random.
But Verisign doesn't want to solve the problem. Verisign wants to make more money. If ICANN decided that the WLS was a good idea, but that Network Solutions wasn't allowed to run it,
then you can bet they would be as opposed to the idea as all the other registrars are now.
Lack of preparation on your part, does not constitute an emergency on my part.
Re:The Current Situation (Score:2)
Yes.
Currently Verisign GRS holds on to the name for about two months, then deletes the entry from the root servers, then anywhere from 1 to 9 weeks after that (usually), the name becomes available for registration again.
Only two changes are needed. First, they change the information in the database they already maintain to list the exact time of "expiration" when the name will be available again, and they reject the any attempts to register it before then.
Difficult? Maybe, but ultimately it would save them more in bandwidth charges than the cost of implementing it. There are dozens of companies that would be happy to take over for Network Solutions, implement this change, and still charge less than $6.00 per entry in the database.
Currently, the various registrars whack the registry thousands of times for each name. Publishing the exact time of expiration would reduce this to about 20 times, since there's no point in whacking it early, and once you've lost it, you stop (or rather, go on to the next name.) Even if all 161 currently accredited registrars [icann.org] attempted to get the domain, that would still be less than 3000 attempts in that second. So, no it doesn't solve the problem, it just reduces it by one or two orders of magnitude.
The second suggestion I made, that they accept registration for a week then randomly award it to one of the attempting registrars, would eliminate even the one second whack, and also give registrars with low quality pipes an equal chance to register contended domains.
It's all moot though. The technical difficulties aren't what's preventing them from doing this (or any of the other technical solutions that have been suggested.) Network solutions stands to make more money by letting this be broken then they do by fixing it. Until there's some competition for the job, or penalties for none performance, they will continue to do as little as possible.
Monopolies don't care, because they don't have to.
Re:The Current Situation (Score:1)
There are domains that are still registered which have expired more than a year ago, so somebody's not doing their job right. The public shouldn't be denied the right to get those domains just so that NSI/Verisign can coddle a few ruthless domain speculators. And if they had some leadership in realms other than money-grubbing, maybe NSI/Verisign would figure some of this out.
Re:The Current Situation (Score:1)
As for notification of renewals as well as actual deletion of domain names, it is up to each registrar to handle that. Thus if you choose a subpar registrar which doesn't notify you or doesn't protect your intellectual property (your domain names) then you are to blame. Consumer beware.
This whole discussion should make one thing clear: choose a registrar you can trust and if they ever break that trust then transfer your name BEFORE it expires.
Re:The Current Situation (Score:2)
My response is TOO BAD FOR VERISIGN. Boo-fucking-hoo. The sooner Versign goes the way of Enron, the better. They made their bed, now they should sleep in it.
Excellent concept, it should be applied. (Score:1)
I don't understand (Score:2)
Extortion (Score:1)
Legitimate businesses won't take the risk of loosing their domain, so it artificially increase Verisign's revenues. The problem with this approach is it's predatory. Hopefully ICANN and corporations can speak out against these practices and prevent it. This feature isn't about joe blow who has a personal domain. It's about corporations. Registrars know corporations won't think twice about the chance of loosing their domain considering the cost of legal battle.
On the otherhand, the cost of registration and renewal is so cheap these days, it could slip by under the radar.
Network Solutions and their slave labour. (Score:3, Interesting)
"Hello?"
"Is this Mr. Fantastic Lad?"
"Why, yes it is! What can I-"
"Please hold."
"What?" I'm on hold. So I hang up.
Ring ring ring:
"Y'ello?"
"Um, Mr. Fantastic Lad?"
"That's me. Who is this?"
"I'm calling from Network Solutions. Are you the owner of *********.com?"
"I don't think you understood my question. I don't care who you work for. Who are YOU? What's your name?"
"Um. . , (gives name)" Let's call him, 'Bob'.
"Okay, Bob. Did you just call ten seconds ago, ask for me, and then put me on hold?"
"Well, yes, but I have an important-"
"Stop talking Bob. You blew your chance at 'nice' by being incredibly rude. Nobody likes to be put on hold for no good reason. Do you understand just how rude it is to call somebody and then immediately put them on hold? It's a psychological trick used to establish dominance in a conversation. Do you think I want to be in a submissive position when I'm talking to a total stranger? Bob?"
Pause. "It's not a psychological trick. I'm just calling-"
"Look, Bob. You might be a somewhat nice guy on your own time, but for the purposes of here and now, I've decided that I really don't like you. I don't want to have an actual conversation with you. So I'm only looking for one word answers here. Look up from your little script, and answer either 'Yes' or 'No', or I'm ending this call. Got it?"
"But I've got important information about your account. I've-"
"Bob. . !"
"Sorry. Sorry."
"Alright then. Okay. Now first things first: Please answer this question: --Do you think I like being called up and put on hold by a total stranger?"
(Annoyed sound) ". . . No."
"That's right, I don't. And most people don't. In the future, you should consider that before being acting like a dick on the phone. I don't care if this is how you were instructed to treat people. If you find yourself faced with having to choose between being socially decent and following instructions by your boss to mistreat people, you should take it up with your employer and if you can't get beyond the impasse, you should quit. You've got a crappy job anyway. There are a lot of other things you could be doing in the world. Being rude to people over the phone is a choice you're making. And it's a dumb one. Now then. . , you tell me you work for Network Solutions?"
"Yeah."
"Alright. Now then, does Network Solutions really have something to call me about that I actually need to hear, or is it just an attempt to sell me something I don't want?"
"You might want it."
"Ahh. I see. So this is a sales call, then. So what, exactly, are you selling?"
"Well, I don't know, actually. . . My job is just to call people up, and verify that they own the web address on my list, and then connect them to the sales people."
"Sigh. Oh, Bob. I see you've been compartmentalized. I sympathize with you, Bob. -I'd quit your shit job in five seconds flat if I were you, but I do sympathize with you. And you don't actually have any idea what your sales people want to push on me?"
"I'm just told to tell people that it's important."
"Gotcha. Well, I'm sure if it's that important, they'll be in touch. I'm going to hang up now, Bob. Good luck with your life, and honestly. You should really consider quitting. Don't let the world bully you into thinking that you need to take their bullshit treatment of you. You won't die if you take the jump, Bob. Goodbye."
"Bye."
Click.
I got this call about five months ago. I'm told by others who received similar calls, that Network Solutions was trying to get people to buy similar sounding website names before competitors bought them up. A lame sales fear-tactic.
Verisign can go to hell.
-Fantastic Lad
Re:Network Solutions and their slave labour. (Score:2)
I had something similar happen to me, several months ago. I wasn't home, so they left a voice mail with a number for me to call with regards to an "important matter" regarding my domain name. I called them back, got put on hold, and then got transferred to a salesdroid who started in...
"Do you realize that you only have xxxxxx.com registered? You should protect your online identity by registering xxxxxx.org and xxxxxx.net. Blah blah blah blah..."
I couldn't beleive that they had suckered me in to returning their call, only to get a sales pitch layed on me. I told them so and hung up.
I still can't believe that they used my phone number, which I am required to provide, to telemarket me. You are right - Verisign can go to hell.
Anyone else notice... (Score:2)
Things change when money is involved.... (Score:2)
I think a WLS would be a very questionable service all around. Even if it is implemented with every intention of being on the up and up, it still poses a very significant opportunity for abuse.
There is also the question of a waiting period for the current registrant of an expired domain name. I'm not sure if there is any offical grace period at the moment. I beleive there should be at least a 30 day period, preferably 90 days, from expiration to pay the renewal fee.
In addition to a grace period I beleive that anyone who is interested in an expiring domain should be able to register their interest for free on or AFTER the expiration date. If the domain has not been renewed at the end of the grace period it should then be auctioned off to all those who have registered interest.
I think that this would be an equitable solution that would be above reproach. Of course this mechanism may not be as profitable as the WLS.
Why stop at just a wait list? The next step... (Score:2)