Forgot your password?
typodupeerror
Censorship The Internet

VeriSign Wants Ability To Suspend Domains Without Court Order 123

Posted by Unknown Lamer
from the only-criminals-want-due-process dept.
GeorgeK writes "VeriSign, the monopoly registry operator for .com/.net domain names, has submitted a proposal to ICANN (PDF) describing an 'Anti-Abuse' policy. If allowed to proceed with such a policy, they would become judge, jury and executioner, with the ability to suspend or even cancel alleged 'abusive' domain names without due process for registrants. The proposal even recognizes that legitimate domain names may be taken down improperly, and offers a 'protest' procedure. However, VeriSign does not appear to offer any ability to protest an accusation of abuse before the suspension or cancellation. They intend to 'shoot first and ask questions later.'"
This discussion has been archived. No new comments can be posted.

VeriSign Wants Ability To Suspend Domains Without Court Order

Comments Filter:
  • Re:Anonymous (Score:4, Interesting)

    by fuzzyfuzzyfungus (1223518) on Wednesday October 12, 2011 @11:23AM (#37690858) Journal
    A DDoS or a petty "doxing" would be boring; but my schadenfreude lobe would be pulsating with happiness if their private signing key(s) were to make their merry way into the world.... Can you imagine the mayhem?
  • by Miamicanes (730264) on Wednesday October 12, 2011 @11:25AM (#37690886)

    Well then, a reasonable compromise to limit the potential for collateral damage might be a rule that makes it impossible for them to suspend a domain that's been registered in good standing for more than a year without full due process, and provides a way to register a domain quickly, but subsequently complete a more exhaustive registration process that -- when completed -- immediately grants the domain the same protected status as one that's been around for more than a year.

    That way, they can still nuke botnet command & control domains, but somebody whose domain has been around for more than a year (OR who has completed the more time-consuming registration procedure) could sleep at night knowing that Metaphorical Judge Dredd isn't allowed to touch THEIR domain. It wouldn't completely eliminate collateral damage, but it would eliminate the overwhelming majority of situations where a legitimate domain owner could suffer financial damage due to a careless or hasty employee somewhere.

  • Yes, I read the FA. (Score:5, Interesting)

    by poofmeisterp (650750) on Wednesday October 12, 2011 @11:28AM (#37690924) Journal

    They intend to 'shoot first and ask questions later.'

    This is helpful for potential malware/virus/etc sites - take it down NOW and address afterwards. As long as the ones taking the deactivation move witness it themselves, it's doable.

    The problem comes with reports. Let's say you get 100 reports of a domain being a nasty one in a 5-minute period of time. You just *wham-bam* take that domain down without looking at it and you could have just been the worst link in a staged act chain.

    I'm not trying to be an ass, but I'm posting what I witness daily: Everyone wants to save money, including big companies. If VeriSign were to have this ability (along with other TLD registrars), then they will likely want to automate everything they can. See paragraph 2 above.

Our business in life is not to succeed but to continue to fail in high spirits. -- Robert Louis Stevenson

Working...