Thread: Domain Thief...this guy is trying to steal one of my domains
View Single Post
Old 2004-11-20, 01:19 PM   #6
Opti
I Didn't Do It
 
Opti's Avatar
 
Join Date: Aug 2003
Location: au
Posts: 795
Send a message via ICQ to Opti
Well done Plateman!
Quote:
Originally posted by plateman
i. All registrars must only use a clear standardized form of authorization

as outlined by ICANN to obtain the express consent of the registrant prior to initiating a transfer. Authorisation forms are not to contain any other text not related to the actual transfer request.


Benefit- This means that Registrars or their agents can no longer solicit transfers by sending confusing, deceptive or intentionally misleading emails to Registrants, which will assist in preventing customers from making uninformed decisions.
Hmmm.. if they can no longer solicit transfers by sending confusing, deceptive or intentionally misleading emails... I must be delusional... as that appears to be exactly what is happening!

Although I am sure ICANN would argue the actual text in the E-Mails being sent isn't deceptive.... so it isn't a fault with their system. :\


Chances are your register still is secure Plateman.. even without a lock service. If you wanted to put your mind at ease, I would get 2 people with other register accounts to try and transfer one of your domains away at the same time and see how easy it is to spot what has happened from within your registry admin area.. and from any email alerts they send you. Is there any chance that you might not realise what had happened? Does both requests show up in your admin area or just one? Does it prominently show you the name of the gaining register and/or details of the person making the request in your admin area? Try and imagine you have started a valid transfer and someone has targetted you and sent one of their own.. if you werent expecting it, is there any possibility of accidently clicking approve on the wrong transfer request?

If that all looks well thought out you are probably better off there with no register-lock than being at GoDaddy with it imho.

Then ignore the e-mails that come from the requesting registries and see what happens. They will certainly fail.. but, if they havent emailled you alerts already, you want to see if your registry will have some record there so you know the attempts had been made if you only login irregularly.


You can't rely on receiving an email from the registry used by the scammer to alert you... for one, a scammer would simply have to use an email address like viagra_casino@mail.com and have many people's own spam filters ensure you dont get the email.



*** Interesting Development ***
There was an attempt made to transfer away one of the same domains again, in the last few hours. It is not at GoDaddy now.. and it IS on register-lock

If it is not possible to request a transfer for a locked domain under these rules... then how did this happen?

I have a theory how it can happen.... But I will talk to my registry and work out for sure what has ocurred.. and let the thread know.

|goodnight
Opti is offline   Reply With Quote