DNSO Archives: [ga]

ICANN/DNSO DNSO Mailling lists archives

[ga]

<<< Chronological Index >>> <<< Thread Index >>>

Re[2]: [ga] WHOIS policy primer

To: ga@dnso.org
Subject: Re[2]: [ga] WHOIS policy primer
From: Allan Liska <allan@allan.org>
Date: Tue, 27 Aug 2002 23:41:15 -0400
In-Reply-To: <3D6C5704.EECA1EE3@ix.netcom.com>
References: <Pine.LNX.4.44.0208271634190.12723-100000@npax.cavebear.com><31124863360.20020827214406@allan.org> <3D6C5704.EECA1EE3@ix.netcom.com>
Reply-To: Allan Liska <allan@allan.org>
Sender: owner-ga@dnso.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: MD5

Hello Jeff,

Wednesday, August 28, 2002, 12:52:20 AM, you wrote:

>>
>> Examples of times when I have needed to get in touch with a domain
>> owner:
>>
>> 1. Receiving virus infected e-mails from a user of a domain.  Yes, I
>> can /dev/null the e-mails, but I want the account cleaned up -- the
>> ISP is not going to do that, the owner of the domain will.

JW>   Some ISP's do clean these sorts of problems up if you can clearly
JW> show what or from where/whom that potential virus came from.
JW> However it is not up to you to act as the Domain Name Police
JW> for viruses...

Some, but not all.  Since ISPs cannot reliably be expected to clean up
viruses, especially from customers that do not use their mail servers
your rebuttal is invalid.  It is my responsibility to protect my
network and users, that means having to contact domains that are
misbehaving.

>>
>> 2. DNS mis-configuration issues.  If I run across a problem with a
>> domain name, I need to have an address I can contact to help correct the
>> problems.

JW>   Yes and the Admin E-Mail address is there in the Whois records for
JW> that purpose.  Hence again needing to contact the personal and private
JW> contact physical address, Private E-Mail address, or Personal and private
JW> Phone # is not necessary and if by doing so, could be considered a
JW> violation of their Privacy Rights under the Privacy act...

That only works if the admin address is part of the organization that
registered the domain.  No ISP should ever make changes to a
customer's DNS record without working with them.

I have no problem with people using a proxy e-mail that forwards to
their ISP or hosting provider -- in fact I think it is a fine idea, as
long as that person reading that box actually responds in a timely
manner.

>>
>>
>> 3. Spam, I always try to contact the owner of a domain before
>> contacting their ISP.

JW>   This also can be handled by contact the Admin E-Mail address or
JW> other Admin contact information listed in the Whois record for that
JW> Domain Name.  Hence again, the need to contact directly the
JW> Registrant's Private  physical address, Private E-Mail address,
JW> or Personal and private Phone # is not necessary and again could be
JW> considered under the privacy act as a form of harassment or stalking
JW> under the Federal statutes against stalking as Karl correctly mentioned
JW> and has been done on many occasions...

Again, as long as that admin address has the authority to act on
behalf of the registrant I do not have a problem with this solution.
But people need to understand what they are giving up.

>>
>>
>> There are other reasons for getting in touch with a domain owner
>> directly.  For this reason it is important to have valid contact
>> information for that domain name.

JW>   Well so far, you have yet to provide one that is valid...  So I
JW> would be glad to see or have you provide these "Other Reasons"
JW> to which you refer.

Incorrect, I provided three very valid reasons, you simply don't
agree, but if you would like other reasons:

4. When I run into a programming error on a web site, I like to let
the site owner know.  If no contact information is included on the
site, I use the domain information to get ahold of someone who can
help.

5. Similarly, if I run across a potential security hole, I follow the
same process.

6. You seem to be in favor of an ISP-monitored address that people
could use for domain problems.  As overburdened as the help desks of
most ISPs are, I doubt this is a practical or scalable solution.  The
delay in support response from Eathlink, AT&T, MSN and the like often
borders on unacceptable now, asking these same support people to now
deal with my queries about their customer's websites seems impractical
at best.

allan
- --
Allan Liska
allan@allan.org
http://www.allan.org

-----BEGIN PGP SIGNATURE-----
Version: 2.6

iQCVAwUAPWxGXn+n87oa5a9VAQGEKwP+LdVL4mPgqM7vA+RBlG8UR6xYx3Aan/Vw
nxOXWyWBxwC12shGXXYFpgJdJ0PAm7SYwCItRDCQ2fG0PiZaeo5Zn4ZokBaJH8aB
B4SMPbY3syoiqeGJR9EsKi3h+VTPbR6z+1P29s1hVIBVcxYEfKfIB2ibr3/ILoCJ
a3tthnLcv/4=
=ffyy
-----END PGP SIGNATURE-----

--
This message was passed to you via the ga@dnso.org list.
Send mail to majordomo@dnso.org to unsubscribe
("unsubscribe ga" in the body of the message).
Archives at http://www.dnso.org/archives.html

Follow-Ups:
- Re: Re[2]: [ga] WHOIS policy primer
  - From: "L. Gallegos" <jandl@jandl.com>
- Re: [ga] WHOIS policy primer
  - From: Jeff Williams <jwkckid1@ix.netcom.com>

References:
- Re: [ga] WHOIS policy primer
  - From: Karl Auerbach <karl@CaveBear.com>
- Re[2]: [ga] WHOIS policy primer
  - From: Allan Liska <allan@allan.org>

<<< Chronological Index >>> <<< Thread Index >>>