IT Infrastructure - eWeek


Is the Smart Grid a Dumb Idea?
Surgical Adhesive Offers Smarter Way to Mend Bones
Get Smarter Technology on Your Mobile!
  IT Infrastructure


NetSol Abuses the Process in Order to Save It



 By: Larry Seltzer
2008-01-09
Article Rating:starstarstarstarstar / 11


There are 0 user comments on this IT Infrastructure story.


Rate This Article:
Poor Best
In order to protect its customers (actually, potential customers) from domain frontrunning and tasting, Network Solutions is using domain front-running and tasting. Its excuses ring hollow.

As we reported earlier, Network Solutions has taken the extraordinary step of registering domains as you search for them. The company acknowledged what is obvious to anyone testing the process and states that it is doing it in order to protect users from abuse by third parties.

Network Solutions has responded to criticism with some changes to the domain "protection" program. Click here to read more.

It's an extraordinary affair, as it brings together a number of controversies that have been brewing in the domain name business for some time. I first reported on what I called "Whois Hijacking" about 18 months ago. Now it's called "front-running," but we don't know much more about it. Somehow malfeasants are able to find out about domain name lookups as users make them and register them themselves.

I did some testing of this and was able to demonstrate it. Even though it's not a widespread phenomenon, the ICANN SSAC (Security and Stability Advisory Committee) revealed a study it is doing on the problem back in October.

Now, to prevent the bad guys from front-running your domain after you search for it on networksolutions.com, NetSol beats them to the punch and registers it. At that point you can buy it from Network Solutions for one year at the low, low rate of $34.99.

Resource Library:

If you'd like to buy it from another registrar with lower prices, the set of which includes just about everyone else in the industry, you'll have to wait four days. If no suckers have turned up to buy it from NetSol, it'll release the domain.

What's up with this four-day wait? That has to do with another abusive practice that Network Solutions is protecting us from by employing it: domain tasting. Funny it should come up; just yesterday I wrote a column about developments in ICANN's study of domain tasting, which is an abuse of the "Add Grace Period." After a domain is registered, ICANN rules state that the registrant can "undo" the registration with a full refund of fees from the registry, ICANN, and anyone else involved. The point is simply to allow mistakes to be corrected.

What's that you say? You've never seen this option from your registrar when you registered a domain? That's because registrars don't let normal, honest customers use it. It's only available to people scamming the system, with the collusion of a registrar.

In fact, there are cases of registrants with large enough portfolios that they save money by creating their own registrar. This opens up all sorts of potential abuses. The examples I saw 18 months ago were such a case, as the registrant (Chesterton Holdings) and the registrar (NameKing) appear to be owned by the same people. But I digress.

Domain tasting is a big, big deal. According to the ICANN report I discussed yesterday, the majority of new domain registrations are for tasting purposes. What do they do with these domains? They throw up a template page with links and ads and mucho keywords designed to get the best search engine response they can, as if anyone is actually searching for that page. The owner makes money off these links and ads; this is called "monetizing" the domain.

Now obviously Network Solutions is tasting the domain, but it says it isn't. Read this CircleID post to see Network Solutions' response on this matter. It claims that it's not monetizing the domains, and therefore it's not tasting.

I would argue that it doesn't have to monetize the domains in order to be tasting, and that in any event it is monetizing because every "protected" domain has Network Solutions links and materials on it, offering the opportunity to register it to anyonenot just the person who searched for it.

This is the central, glaring hypocrisy in the company's explanations: The domain isn't protected for the person who did the searching. Only Network Solutions is protected.

On the subject of where Network Solutions went wrong, this editorial in Domain Name Wire makes a lot of other good points, although it is far too generous to the company's motivations. It points out that there's no notice; you don't find out that Network Solutions has reserved the domain until after it has done it.

It also points out that by collecting all these searches in a place where they can be publicly searched (see this page for 20,000 domains registered in this way by Network Solutions), it is actually creating a tasting menu for the bad guys.

There's an interesting quote from Network Solutions' statement: "...Front Runners purchase search data from Internet Service Providers and/or registries and then taste those names." Really, do they? There has been some speculation about this, including from me, but I'm not aware of any hard evidence that ISPs or registries are selling data to domain tasters. I'll have to ask them about it. Of course, I don't have any better answer for how front-runners get their data.

I'm sure it has lots of happy customers, but when I think of Network Solutions, the first thing I think of is its history of abusing its customers' trust. This is not the first time the company has moved aggressively, taking advantage of an apparent legal vacuum. The fact that it now claims to be acting in its customers' best interests just makes it more audacious.

It's a shame that problems like domain tasting and front-running take years to fix. In the meantime honest people get ripped off and the networks get overloaded, and people who add no productive value to the system get rich. I'm not surprised at which side Network Solutions chose to sign up with.

Security Center Editor Larry Seltzer has worked in and written about the computer industry since 1983.





  Reader Comments: NetSol Abuses the Process in Order to Save It
>>> Be the FIRST to comment on this article!
 

 
 
>>> More IT Infrastructure Articles          >>> More By Larry Seltzer
 


x}is㶲*Qމg5ER%:cYϤ^!1E򐔗?qz Z2;ؖ4zC?H9wtô'sݙc |:I]"IC(7`Z˩:AZNɑ,G)~-sbr#jwwGl$J AT{# xL95Mj9'ԗoOne0.ZAq6*֠O0dБԣZr ˺79hen6 u{ҾVUBXWiνoDU3vTk|wUMSN}v# -ݾඔkm>'}rѽnr m + o$& JDTRBp$" ԆNWP :H5=(G~ZMR=%Y̮g fVҘ 'UUXڭ~S~1.˫vE㳣vlL,/!R42V,]?c;sDբyrqӾhvoz{Eqٙ{Ά0pgs Z_Zr\? oz??,rG=jZ-Kjg$姣1I|S8fIyCn&J ݒEL_;D_KŗG)H7#ǚM#0ȌcPu t9C;H}ڊNmҔ )B:%yW5>Hr Ca)#8?S%Wi8@r1YSl \M4'~',|YB* b$rݠQ3>MK$o# eF"`Q%u '|#8Jn.b?G]5 ΃Ӱfeٜ%YWa o\zcO'FUIz݋^?uZ^*WFnZ`sQM}sQc1WJPX=,‹ʾb(7Z`Lm,1,Ltϭ `6 :~g!>QÜjCݶOCGs>2胎6ml-裩IXn`vtHa;^h>[W <[ K!PA}x3껵&z(tD h&r<kIOlLJ.??6 ; G`rɝ 5y0ݻCi`y1yjQ]*~s`=w= H X.s6G~>4-0%6 q0yz dQJ d$@!"-i]NP@Ar6W? -8,rrd++~C~zGBjK%'BP*m=!đtLZ*=hƚTL٣XB ^X/_2әJRj2m8V-&D7r"e.G7Kᅖ&Z1oY,*_§C&csdGn]ּGs2H`w?f!1q WQe@s's<m'ȓcQmA 9g߃)兏u5TfB7g Ʃ9 \ eBC`9sM?kȓSTN`3%W6qlМaM_Õ~|񄞘ÈI/u^No'ܑ-ӾȇRoBo*څP!_.dI_fMblȌu>I!VB)7OH wz@neHݤ|r%e{Rr=""ǰ@7>`(^HIbЙj!@)z٧l.?ΖuV"kͲ'{_No6Ҟy4 m {g@yC dlK/,:+c:JK_jiHH*6@\X1-# %>F!1~h/a2(OpSw{{jA_ܰ큡K*+G&,-s V-iVuXjgܲ&P wC~0;[0P.m^·'Vޱv<\wH{kLcg@>`ǟG(a!w1JkX$l M=̔:Y[ ~2.|N +ޣЁ*8tǙk0이ׅ]!ϥ_8'Wv=&9Je!6c{i=CӮWK(-rI)j$' q/#Y /9-0cY}6bDmu( EZ"Ӟ#瀚:$CfgᠢcD8v_(+ G/szm6UF>3 $#о'hʰeh8`Zzq8JD5hXPr&S4Z0@mS0$u`m\>(cpF,`^t^@>C%@3P-W0"FcK鬡cKU1SOm{hAy-X\>(Dm?a"!hG=ܴ>?CU^of8fjZ(T+16UT9,J{}|s??=ehČq@8@w7l40ZR8 ~m^8Rds|eLZjAB;=R)hᮣ\pR "(87~Ɋd3 خ crFmhv~ :(k8γeO#c#lʂt!WMUm~,n`{Y0>AG5"h!({3E6(1&o;@+5-| I1H%#枏Kӥ ,ć# 4i 0X[ ⚪T}fW7{)|h#R @ `! Kx{ZCAk2۩\Gw\܁c2PH(TXg7gME]ac6U{zn&)ZMMe;4 /cIۛp[>|l9s#ONPMG9F R,[5^-093+FtNd_&F}G ϳGjZ)1,09_D|)3P홗[7_`g`p1\APBl۹+7i*r6_K=[L4@V1M0]̞̙ mdۨX9 2W Oy`*+ZR޼+8rm4rOk,ZvX kpo9 -2j>wR/fK%2_vܖ[J,]^>a u0 mL%Q;o\Ah secn=’fDK, .i,: -e4Cnȣ[YժNJZZ$t` ۳<0%{q2LEM+t׀m+J9ww|Lc: GFe!EO.'-J_0YPX9H(PK Yz>'ɷwnh‰?چ +~7?l)ɡ$ |BJ D;}ZPf&3 991t/x۹ ~Ъ%&l |* N=$A$KO}i>3>(=~fm?<aAVD߫%aKKx4W}l Z>^u?]4vqgi\[dzLR(!I1>dd˙]=+bo/fTц['0F@ɁunG4NK?wH-)^{)z2W#N8o^$'d0 s|j\'7bL`jX&IEyD#SW5Cki7f@ t+N,8;XKR!}&>CmPq0eVxy_aݪ,$"0! I+U:;>   cJ=!Voh{ё{mE& bT _RJI$Q#=)#WYYuܽjp3 lo}EoNd^VV-[N7s+d$ c?_/8݃͟*WVRǭk=#$ubS`݃[s30i!ܨen1tA\^Ro4 jGYk.NEm펧{6-~G0 cl9a(1|$-z`ea#ݒ:`<5 2)!MOp|Lhk'IZV6X(4%!44QҌObCYF*C7' һl\lpVPto6_xvIsuyx42i(5~q*AB|$Hym1ΣJ g+y-)EC^}+ IN48#z])G? #̫r@~A=?rW$}ݝf0iۣj 2'|dO1\jYcxyg,d9a}43؞qnbLd<J;ooݍn T /f_!σ!%FJMc- !_к õcV3Ǵ p8|#؈f_ϒ6oNOƂ1f̙ʈ1WcR_R_XR|  .w?FӞ Ma_}z2.mE.zQvc%Fm7^S˗IOg 4˼gF.oc}V@O+ʻPGoэrX! P]o"Q9=28׆(PC蘐g"rjj90:[bɶX1/7#_KmHǎ< 2 92~47xL,5Tb0A0_U[0ov_jcOuGUJi=rcZ?raM:tӐ+:}G ў 0n!"r;YkwQȻ71$f߮J v,$,L4j7?YYuYa3#gνw[&'`[*nG;g3;8c:&z@Cx;G,34VD;mĂ4 n$~'&xX>%Wޮ8LhD* 80ߦH ":jTKrQ)gScNnj•.RRWaxTɦ=?Dj ϓs2ԣnL,3> <-e1C˺E``a]{<,V*\$.*JDZ)1Zq7_z o ?E z bsO 9 \́޺n״Z$t<)b"bsK,>&P<4m 62z&ä.XS}nAFc) zM:JJP-BX`!v@uE3^ 푰|vr6"14kJ&8%8KvWGQRUI<A;%iL2|6 :&,;z JJ(]:eS)X/<96`+[R PC%U Hㄌ )@`4-R*m=Ѽ~ATX3mxK,ԍ\*=ܶ&YK}O7m')$ z#4Nڄō^߸[RV` ]SHj,ŕNttIГϜʮH&\#w,TaZ>`. ¬0u=#x+*{C  MknImVؔJ..=cӝR\Jx/BX)I>2n)uʗ0Y_UHE+5H [K%N־6xPrd_B)Y_jEC&LxպnnxF_굻RߑNCS]ҵnjm߁6K~#i%oU,4O9uD*217OcB rWGj!n,ZiSfDƚH|>p A$=v\W@Z@mHWY])Jญ)э(RuP0_IQ=GK6eF0A08k Я_Q \_V|ceD"" g&SW}+MPA3kF]߸ꆔPz-JX_,Ѳco4z#{e_jxJDf\ea4"F8DID "F_ռ Y ihKX>yGcэ\eN(ZP tsT"ر8Njl__f V0Ri-lVRJى ]KvX RI =PݤD\pu@1ĐD41hڟ=6BDl69Kzy@7w7w7w7w5pvbYѱns5xɵ7؆ a!+Y $MRl-briy1-Mb,ۓΟ({i7fk:ԾL$WҾ+1C1sQ1n*.ͦ'P0gѭh꫟i1xUu&>cØ Ro-Cj:Rc_?B8 Hp@:JBll/?q>q J"۸u] LGIH@ )zYHm`Mknc釖8tG#| #\%S#+Y; 353w6~ID}y}8P(O'9rǮi]1 ԈφŽmqOqquS.C!_M@Gon0݂fL63h~L.df/3]^IIͽڦ/h `|F0/  c l (K^-~]&Uֿe#{tѥVC|_~߉?Mgf{c ~2H@85kQ/NI[D(&w]v8c[Y36AW'  ,õHz@/.ޮcb$-px@QZ^_FBkXٷ8>.ְ̫d=IӜI7mq0)Zbp6]}rEcЊbb{< vDxQx~a)?╾{#̦5.NeãEUt^57 +´hgϡ01xėqlHI" I7!7|^c9?_K4 * nO2ňcvwh6릨`iO3/0q_7n*mW(iL=ǔvT;Jsv XJ?tȕ'7 2~(^FDx8j U {W6{[$r$hv+;"bT/+֜rc[At UQ1$cM[,p=Kp=&BaD0‡*qGâʫG#0cY~'.#j\DkjshܕĤAI҂B4ʶwĨWܡn"9HHXWWk⍉+#,K"Z"'"KIH^X0fpD]dbɠ#Yw p#(iLx3Zz/5lsq̩Tl/vx#^HkcΩZEWWs.1HwtAj-biA.c2·uuWpkLxwP:qU3HuPadэvUP*$s/ku <ٜ>7LeM13ɆX50yfDZ'a^mv̈́󄾋7Zz9Z<HsS5\;7Z}j,rbl3٢R^DXoD܅V-#e Эq0e_J B')3ʭG-tsȫ`6*ey=0f|s՗'V5U*foLV >5Y)J\ic;f 3P=zeZ{#qȋ'F^*iELyKG~K5'>3~q-?(BAdӓo)c3Oeˡ7Ǫchb** dG0_3! ,35oޞKj6$:Igvl"m7\%pKp|{3B;s8|U#/V7S#=p_XYrRf7@, &Yqoͳ.04&nSnc::Iϥjg~R߈uX{0adDd#jOb$}bx8`VbF .o2N[#EЅ+S0hB!!Qo@@L%F H 473\CP |)CwOR(?hUeab+Z@kb1>ҁ.+qܒ:i 0), N ߄QT1' :{ỂWZ=@Gӧ/tX0/b-#-#d< w{30,!ԓpS;B΀!,E|tz['U}H?Km1Ehb#3!F0\'M>'yo]*4Q^H{ouYRG>4!Q! !'@vQ]Q :%n0O])#@?rarn?DpБ`A1H3vJvTk|) Qݾ ?1! @6L-ǓaIAX#hBGH[~cMNZfE< ,i Pm!at{Ό6")(0100Y a#k4bwp]ou(-/#@[/d 6C;b<1c|>OH,W@Āb)(`E7@/,',(Ϗpk2%TJTmn$d%:ms+%̌S,0uA"\2àv?] 1(pf,yǥ]-AG,G71=Tg0Y"*[7'ΥICZ|zN]ƒ $B1Ӝhp6A2dzwȗ?0(.ŌCZQJФ*t+R0cU-%+_oSwV7XWz+i+ j9Iˑ1;{.)h`=`frOuvc޸Ԣ@o􁖣Jc>rMvp4ħyO\=4[E9yFG(Q+Q~Wˏ@.w3ʑ˛f+ʏח~N2s ?'(חzQkg3틌r;{^Fg(gmWdOw~;~:;}v2ɠOы_\CuFeQށNF9E^\dEu݌wAt3OK7C\}\f%U``'s}'Ou Y0]3w7Y@7{dwAI]'Iz|ָą)QFy)W?ʠRE৬rXB]dCy<++PA/Үw3 < //z^}AF&n3^a芪g-5nZk ǸJu1 4xW /ByeoR;AQ0gG6+F.Э-'ވm]=g%Iy=0?$Mu{2پWߕ\~UnE+tV/q&R<#s"qDZJ91baOd_k 0{$%YØܻ Gz‰nQ" /L`ib`fEY|@' @8_Ew9a׏nדW8pK|` U75iqq[~|^@O#xO,E~f&g  cAݡ=G'M1<:^2 [Lot_=F:s.LE+zq՞;{28,U`Y\U0H-7Lj1"PS*+ H|r[l'$}s'r1>t瑅adAkf tVqw^m]6bRFՏFŽ l ohhd19k+#ɘP'g4WBO)SVk͙*q.w;y;6MW, {+2‡_JuۗdԢԱ"vڗ'nr܊WG?&o4% ưzx{HO]m8?eh#IM&Ah&.^W5b8gCCJ'Ҥwr\L籽$Vm.Q =@U7VA7J-{X|@ăHv!$K0W^pa#,ކ |o,Cfcsւ_6/gзc/MzKVo7(&\`#U%#tnPB4w^|7(6؆|#O5`A^ⲁ%!]P6W1mV09DEPމix8'e:1cbV!qmezeEϱ(CoO6x]ciES,c< 9zAn0$ /1-imޢƄJuKDnNv˧D7>6كl4p}́ XsCQ%7` ={;e^n ")1&Y`_2L\)Ԣ?j3g)+],byY3"g0lB e ȑ(byJ6͜'ċOgW<2JP'jŞi3|@ =( oF8b`y%K@ 4z pSg.(ZF$Wc-ҭ䅸<P0_~S.vQeN܌1G릍tDmhT[_ !*lˢSM /߶S3pݼg¶,yXF4'X3'5cgb@xVO=e_qxN|,Xثy 2^9FB~ea'Zͼ*?҂g' Q\F$/(ylHbK9m5'0X1'NRGLf7}@ 'Ɣ ϰO"- s/=rϢy9vGb4~YŒBd+KW̱ v:14%o,gkVTF \呓<ACWqk @cŵ6:L] 9l!j1Bi>cY1}p1LX+0W_kASsDeUTtCBYEL`;X+NJ^9폭9*R$L0MÄr"+poq-y[יH pg8g0N^XpTT/D4NB}aEtiOR<5.r+ SSq>o-݉7,{їNRIg趾V;yv<;m a% ѨTߴڧgU  -}tKO.RXB^zhI:ݫf+ AHdc.f4Y7L~} Whc<[Wy &FϦk5U+kD;idM^l+:cQEae=WF|01{6J܆mJPUN9VKI+.^iLN˚ʱ wE<lx6 RI-