Slashdot Log In
NSI Registers Every Domain Checked
Posted by
kdawson
on Tue Jan 08, 2008 02:31 PM
from the that's-why-they-are-the-front-runner dept.
from the that's-why-they-are-the-front-runner dept.
An anonymous reader writes "In a developing story, registrar Network Solutions has been caught front-running domain names. Any domain names searched via NSI's whois are being immediately purchased by the registrar, thereby preventing a registrant from purchasing the domain at any other registrar. There are multiple reports of this practice over at DomainState.com." Update: 01/09 01:58 GMT by KD : shashib writes to let us know that NSI has issued a response to the accusations of front running.
Related Stories
Submission: Network Solutions registers every domain checked by Anonymous Coward
[+]
ICANN Moves To Disable Domain Tasting 137 comments
jehnx writes "Following Google's crackdown on 'domain tasters', ICANN has voted unanimously to eliminate the free period that many domain buyers have been taking advantage of. At the same meeting they also discussed Network Solutions' front running but took no action on it."
[+]
Technology: ICANN to Add Anti Front Running Charge? 63 comments
shashib writes to tell us that ICANN is considering a new $0.20 per-transaction fee for large numbers of domain registrations in order to curtail domain tasting abuse. Network Solutions, previously accused of front-running, is offering their support of the new approach and promises to remove the security measures that caused such a commotion back in January. "Because of the prevalence of these practices, earlier this year Network Solutions enacted an opt-in domain protection measure for our customers that reserves available domains for four days. If ICANN adopts the anti-tasting provision, Network Solutions will feel safe in discontinuing its service since the non-refundable fee will deflate domain taster's profits and provide a substantial blow to front runners who use and sell search data for tasting purposes."
This discussion has been archived.
No new comments can be posted.
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.
Full
Abbreviated
Hidden
Loading... please wait.
Any way to... (Score:5, Interesting)
Re:Any way to... (Score:5, Funny)
I was just about to post that ;) Best idea ever.... quoting this [domainstate.com] from DomainState.com: someone could totally script this and run there credit through the roof with the registry hahahahaha.
Assuming it costs them SOMETHING (even pennies) to register a domain with the central registry then I think this is an absolutely awesome idea. I'll run such a script if someone writes it. In fact maybe I'll write one myself, because screwing over NSI sounds like a much better way to spend my afternoon then doing anything productive ;)
Parent
Re:Any way to... (Score:5, Funny)
You must work for the government.
Parent
Re:Any way to... (Score:5, Funny)
Parent
Re:Any way to... (Score:5, Funny)
Parent
Re:Any way to... (Score:5, Funny)
Parent
Re:Any way to... (Score:5, Funny)
Assuming it costs them SOMETHING (even pennies) to register a domain with the central registry then I think this is an absolutely awesome idea. I'll run such a script if someone writes it. In fact maybe I'll write one myself, because screwing over NSI sounds like a much better way to spend my afternoon then doing anything productive ;)
If you can't write that in under three lines in the scripting language of your choice, you officially lose your nerd card. ;)
Parent
Re:Any way to... (Score:5, Funny)
Parent
Re:Any way to... (Score:5, Informative)
Parent
Re:Any way to... (Score:5, Informative)
Parent
Re:Any way to... (Score:5, Informative)
Parent
Re:Any way to... (Score:5, Informative)
The simply reserve them using a registrar's 5 day grace period & if nobody buys the domain from Network Solution for 5 days, they simply release the reserve. I.e., it's available again to the general public.
It's something a registrar can do, that you & I can't. Basically, a loophole that a few trusted companies in the system are exploiting for profit.
This came up a big back when a registrar would "try" domains, to see if the type-in traffic made more than the cost of registering. (E.g., by using Google's DomainPark [google.com] for Domain Squatters.)
The President of GoDaddy wrote about it a little over a year ago:
http://www.bobparsons.com/DomainKiting.html [bobparsons.com].
One registrar in particular, DirectNIC, "registered" 8.4 million domains but only permanently registered -- i.e. paid for -- 51,400.
Overall, I'm with you in spirit of screwing bastards like this over, but it seems the only way to do so is close the loophole in the system.
-Bill
Parent
Re:Any way to... (Score:5, Informative)
I doubt they're making any financial commitment "purchasing" these domains. They're simply putting in a database record, and then removing it within the 5-day grace period (thus removing any liability to any other registrars).
Parent
Network Solutions' Response (Score:5, Informative)
IMHO, bullshit.
Parent
Re:Network Solutions' Response (Score:5, Insightful)
So, this does nothing to protect you from having your domain registered out from under you provided the other person uses NetSol. The only one it protects is NetSol from having you decide to register it elsewhere with a registrar who doesn't charge NetSol's ripoff price. It's a "feature" solely to benefit NetSol at the EXPENSE of everyone else. Slimy fuckers that they have always been.
Parent
Re:Any way to... (Score:5, Insightful)
Yeah, but then you'd be arrested as a "terrorist."
-matthew
Parent
Re:Any way to... (Score:5, Insightful)
Parent
Re:Any way to... (Score:5, Funny)
Parent
Re:Any way to... (Score:5, Funny)
Parent
Re:Any way to... (Score:5, Insightful)
I did verify that you have to initiate a purchase before they auto-register. If you simply do a search, they don't do anything (that I can see), but if you click on "Add Domains to Order", it shows up on a general whois a few seconds later, allocated for a year.
My question is... how long do they keep it? If they were to drop it after say, a few hours... even a few days... I'd consider it a dangerously abuseable practice but little worse. If they keep it any longer than that, it's a few steps shy of a domain hijack.
Seriously, I think it's just meant to be a service, but I don't see how it offers any kind of service if they allow others to waltz in and register these names themselves (which it sounds like they do, judging from posts on DomainState).
Parent
Re:Any way to... (Score:5, Insightful)
I think the rationale behind this isn't entirely malicious. Consider the fact that domains are valuable property. If you were in the process of buying a domain, and had to take the time to fill our user information, credit card information and all of the textboxes that they make you fill out (particularly if you are a first time user), there is a good chance that someone from another registrar could snatch the domain out from under you simply because they were a faster typer, or had previously registered. In this way, if you do a WHOIS search with NSI, the name is locked for a short time to allow you to complete your transaction, and to disallow anyone else who may be following in your tracks to buy you your name before you can.
It makes sense, and I'm frankly surprised that no one hasn't noticed this before. I for one am glad that someone peeking over my shoulder can buy a domain from their iPhone before I can finish clicking "buy".
Parent
Re:Any way to... (Score:5, Funny)
uselessdomain00001.com
uselessdomain00002.com
uselessdomain00003.com
uselessdomain00004.com...
too subtle
FuckYouNSI00001.com
FuckYouNSI00002.com
FuckYouNSI00003.com
FuckYouNSI00004.com...
Parent
LOL (Score:5, Funny)
Parent
Re:Any way to... (Score:5, Informative)
Parent
Re:The greater irony is.. (Score:5, Funny)
Parent
Re:Any way to... (Score:5, Funny)
Registrar: NETWORK SOLUTIONS, LLC.
Whois Server: whois.networksolutions.com
Referral URL: http://www.networksolutions.com/ [networksolutions.com]
Name Server: NS1.RESERVEDDOMAINNAME.COM
Name Server: NS2.RESERVEDDOMAINNAME.COM
Status: ok
Updated Date: 08-jan-2008
Creation Date: 08-jan-2008
Expiration Date: 08-jan-2009
Nice, how nice
Parent
Re:Any way to... (Score:5, Funny)
Parent
Re:At 4:24 PM (EDT-US) (Score:5, Informative)
What NSI are doing is registering the domain for the 5 day period after anyone does a search for the name, making anyone who wants the domain only buy it through them for the 5 days. If after 5 days noone wants it, then NSI can simply release the domain name and not pay a penny.
Parent
Re:At 4:24 PM (EDT-US) (Score:5, Insightful)
Parent
Time for it to go (Score:5, Insightful)
Well, they're now the proud owners of (Score:5, Funny)
our-ceo-jacks-off-to-goatse.com
batman-touched-my-junk-liberally.com
Don't use WHOIS (Score:5, Interesting)
Whether it's NSI or some other registrar doing it, this has been a known issue for a long time. The solution is not to use WHOIS. Instead follow DNS from the root and see if it goes anywhere. E.g.:
dig the-domain-you-want.com. +traceICANN to the rescue! (Score:5, Funny)
I slay me.
Yes, another confirmation. (Score:5, Insightful)
Just looked up Network-solutions-antitrust-violation-demo.com [network-so...n-demo.com]. and Network Solutions registered it.
Time for ICANN to issue a policy under the registrar agreement [icann.org] to enforce section 3.7.9: "Registrar shall abide by any ICANN adopted specifications or policies prohibiting or restricting warehousing of or speculation in domain names by registrars."
PR response from NSI (Score:5, Informative)
Domain Name Wire [domainnamewire.com] has posted a response from NSI's PR department. Here's the relevent quote from NSI:
Translation: So if anyone else does it, it's bad, because they're domain front-running. But when we do it's it's ok, because, uh, we say so. No, really!
Call for more info (Score:5, Interesting)
I sure hope I don't take up too much of their time, because 1-800 minutes aren't cheap for them, neither is tying up their support personnel. However, if you're curious about these practices, you might want to speak with them yourself - it's your right after all.
ICANN SSAC looking for input on front running (Score:5, Informative)
Just found this in the ICANN Front-running paper [icann.org]. Note the contact email at the end...
Method used to check domain name availability (e.g., web browser, application).
Local access ISP.
Provider or operator of the availability checking service.
Dates and times when domain name availability checks were performed.
Copy of the information returned (e.g., WHOIS query response) in the response to the availability check.
Whether the domain name was reported as previously registered or never before registered in the response returned from the availability check.
Copy of the information returned (e.g., WHOIS query response) indicating the name had been registered.
Copies of any correspondence sent to or received from the registrant perceived to be a front runner.
Correspondence with the registrar or availability checking service.
Any information indicating a potential relationship between the availability checking service and the registrant that grabbed the name.
Please submit incidents to the SSAC Fellow at [email protected] [mailto].
Clarification from Network Solutions (Score:5, Funny)
Re:Clarification from Network Solutions (Score:5, Insightful)
On the contrary, Network Solutions is effectively monetizing the domains by forcing buyers to purchase them at Network Solutions' inflated prices.
Furthermore, this concept of protection would only make sense if you thought consumers were searching for a domain both on Network Solutions' lookup system and on that of an another unethical competitor. But why would consumers do that? One lookup is sufficient, and by definition, you know that one lookup occurred on your site, so it's already unlikely that a competitor will have the opportunity. The notion that you're protecting anyone doesn't wash.
Parent
These domains are hosted on a wildcard DNS (Score:5, Insightful)
The following domains are installed on my anti-spam relays' caching nameservers as empty stub zones. It prevents my anti-spam relays from resolving any domains hosted on nameservers that live in these zones. It accounts for a very large percentage of blocked spam on my systems, and I recommend mail admins start blocking domains hosted on wildcard DNS servers. It's quick, easy, painless, and your content filter will thank you for easing its workload (if it could talk and had emotions, that is).
cheap-dns-host.com
domainservice.com
fastpark.net
namesdiscount24.net
name-services.com
names-service.com
parked.com
parkingsave.net
reserveddomainname.com
versans1.com
versans2.com
versans3.com
versans4.com
versans.com
Re:Make it cost them ... (Score:5, Informative)
Parent
Re:Please don't disturb me. (Score:5, Funny)
What?
Parent
Re:Please don't disturb me. (Score:5, Funny)
Parent
Re:Use the /. effect to make them screw themselves (Score:5, Interesting)
Who needs a script when you have the power of Slashdot?
Parent
Re:Can't be ALL of them. (Score:5, Informative)
Parent
Re:Can't be ALL of them. (Score:5, Informative)
Mysteriously, the domain is suddenly unavailable.
Parent
Re:Can't be ALL of them. (Score:5, Informative)
1. Went to godaddy.com and searched for {obscurewords}.com. It's available.
2. Went to networksolutions.com and searched for the same. It's available.
3. Went back to godaddy.com and searched for the same, again. NOT available!
NS is rotten to the core.
Parent
Re:Dupedy do dah, dupidee-ay (Score:5, Insightful)
News does evolve over time... that's why it's news.
Parent
Re:It doesn't cost them (Score:5, Funny)
"Don't taste me, bro" --Domain
Parent
Re:weren't we just complaining a few weeks ago.. (Score:5, Insightful)
In some ways this is a lot better, so if I have an idea for a domain, go register it at NSI, get sidetracked, go back the next day, the domain would still be available and not stolen by somebody sniffing the whois traffic etc.
As long as network solutions is upfront with this practise I think it could definitely be spun as a positive vs a negative (check a domain here and you can be sure that you'll be able to register it for up to 5 days after, instead of risking it being stolen or held for ransom).
Here's a test, try searching for a domain from one IP, then try going through the purchase process from another IP. How much do you wanna bet that NSI is more than happy to sell the domain to the different IP? Heck if two different people both have accounts have them search a domain name with one then step through the purchase with another, even with two conclusively different entities I'm sure they'll be happy to take the sale. Note there's no reason a spammer couldn't sniff the domain you searched for, then purchase it from NSI. If NSI doesn't restrict the purchase to the person who made the search they've done absolutely nothing to stop sniffers from stealing domains.
Parent