Quote:
Originally posted by ramtar
very interesting what you comment about godaddy, didn't know that kind of things happend there
|
A Little more about GoDaddy for you Ramtar ;- )
GoDaddy (480) 505-8899
Auth Code: Your GoDaddy account password.
(Is it just me that thinks this is a gaping security hole? Asking me to give my GoDaddy password to another registry?)
Transfer Out Security: No e-mail alert when unlocking domains. No email alert a transfer has been requested... No alert that a domain has proceeded through the transfer process to the last point where you can decline it from the losing registry side...
What the scammer does appear to need to get you to do to beat GoDaddy "security" is 1) Get you to click the approve transfer button in godaddy admin for their transfer request without realising it's theirs OR 2) trick you into clicking a link they send you in an email (which might even be a link that says Decline) OR 3) simply wait, and if they are willing to blatently break the ICANN rules and take the domain without the "proof" of your approval... a senior support guy said that the rouge registry can simply go ahead and do it... and GoDaddy will "probably" let them take the domains after either 3 days or 5 days, (depending on who you ask there).
Of course none of this can happen if the domain is on registry-lock.. your personal password and identity security is good... AND if no rouge registries exist to support the practice..
But... try transferring a domain without un-locking it and see how far you get
