ICANN Still Steal Your Domain

By Larry Seltzer  |  Posted 2005-02-25 Print this article Print

Opinion: Now that we know more about what happened in the theft of the Panix.com domain, there's no cause for relaxation. You can all be alarmed now.

Ive been concerned with the problem of domain theft for some time now, and the more I look into it the more I get concerned. Everyone who owns a domain needs to be concerned. Domain theft is not like the threats that tend to get the headlines in spite of being largely theoretical and patchable. It can be very hard to defend yourself against domain theft. It always was, and now it appears that ICANN (the Internet Corporation For Assigned Names and Numbers), the organization that sets the rules for registrars to follow, has made things worse with a set of new rules that went into effect last year.

When I wrote in January about the high-profile domain theft of panix.com and some other lesser sites I didnt appreciate how bad the situation was.
The bottom line in that incident, it turns out, is that a reseller for Melbourne IT, a large Australian registrar, got manipulated into selling a transfer against ICANN policy and Melbourne IT performed the transfer; although Dotster, the previous registrar (known in domain transfer parlance as the "losing registrar"), claims that they had no information about a transfer. In fact, according to this story in The Register, Panix had actually locked their domain at Dotster and Melbourne IT registered it anyway. Incidentally, Yahoo! is a very large reseller for Melbourne IT, but they tell me they were not the reseller involved.

Were the new ICANN rules to blame? It was easy to guess that they were involved, since the new rules mandated that a transfer was to proceed unless the owner stops it, and the losing registrar cant do anything about it. Ive expressed concern about these rule changes before, but was reassured by ICANN and their associates that the procedures in place were sufficient to deter fraud by registrars themselves, and that the new procedures to resolve disputes would make things orderly.

It was clear at the time that a large part of the motivation for the rule changes was the desire of smaller registrars to break the market power of Network Solutions. Actually, ICANN seems to engage in a fair amount of Netsol-bashing, such as threatening them over some sites with fake registry contact data in them. Such fake information is common, but as far as I can tell only Network Solutions gets hassled about it.

Will Melbourne IT be hassled? After all, grossly lax enforcement of their own policies and ICANN requirements led them to steal a domain. Even crazier, the next Monday morning when Melbourne IT went back to work (yes, they actually shut down to that extent over the weekend) they fixed things and transferred the domain back as quickly as possible. This would be the right thing to do, except that it also violated ICANNs rules. Remember those new domain dispute resolution rules I mentioned? They set forth procedures that the owner of the domain (Panix in this case) has to follow in order to undo a completed transfer.

This doesnt happen in a day, so Melbourne IT essentially ignored other ICANN rules by moving so quickly. I specifically asked ICANN about this incident and whether there would be consequences to Melbourne ITs violations of the rules on both ends of the transfer, and they didnt get back to me.

Next page: Network Solutions fights back.

Larry Seltzer has been writing software for and English about computers ever since—,much to his own amazement—,he graduated from the University of Pennsylvania in 1983.

He was one of the authors of NPL and NPL-R, fourth-generation languages for microcomputers by the now-defunct DeskTop Software Corporation. (Larry is sad to find absolutely no hits on any of these +products on Google.) His work at Desktop Software included programming the UCSD p-System, a virtual machine-based operating system with portable binaries that pre-dated Java by more than 10 years.

For several years, he wrote corporate software for Mathematica Policy Research (they're still in business!) and Chase Econometrics (not so lucky) before being forcibly thrown into the consulting market. He bummed around the Philadelphia consulting and contract-programming scenes for a year or two before taking a job at NSTL (National Software Testing Labs) developing product tests and managing contract testing for the computer industry, governments and publication.

In 1991 Larry moved to Massachusetts to become Technical Director of PC Week Labs (now eWeek Labs). He moved within Ziff Davis to New York in 1994 to run testing at Windows Sources. In 1995, he became Technical Director for Internet product testing at PC Magazine and stayed there till 1998.

Since then, he has been writing for numerous other publications, including Fortune Small Business, Windows 2000 Magazine (now Windows and .NET Magazine), ZDNet and Sam Whitmore's Media Survey.

Submit a Comment

Loading Comments...
Manage your Newsletters: Login   Register My Newsletters

Rocket Fuel