February 2, 2007 4:00 AM PST

Survey: Are domain registrars free-speech friendly?

(continued from previous page)

In certain rare cases, such as a denial-of-service attack, or a massive attack of spam, we must suspend the offending domain name at the same time we contact the owner.

In the majority of cases, however, we send an e-mail to the domain's owner, giving them the opportunity to correct the problem. We even go so far as to call the telephone number provided in the Whois data for the domain, in order to speak with the domain name owner in person.

When we find that a site is hacked or hosting illegal content that the administrators appear to be unaware of, we take the extra step of contacting the Web host, the Web master of the site, or in some cases, even the forum administrator.

As stated in Gandi's blog, gandibar.net, we are not "trigger-happy" in our fight against domain abuse.

7. Do you believe that your most important responsibility is to provide technical services to paying customers--or is it to police the content of their Web sites, FTP sites, and so on?

Who watches the watcher? The global community of course! Our role is not to police the Internet. For that there are anti-spam forums, special blacklists, and concerned citizens, all of which I commend for their vigilance and dedication, and contribution.

This lets us focus on our specialty, which is managing domain names for our customers in an ethical and transparent manner. And to participate in supporting an alternative and responsible Internet community.

While we do pro-actively investigate domain abuse at Gandi, this activity goes hand-in-hand with the complaints that we receive. We have been given the trust of our customers to manage their domains, and we are proud to do so.

In short words, it's technically impossible to watch the content of all Web sites, but we will always be very reactive and efficient if we are aware (thanks to our investigations and protective measures or to a complaint) of an issue somewhere.

8. Are you attempting to recruit Go Daddy customers as a result of last week's news about Seclists.org?

It is not in Gandi's nature to go after potential customers in such a way. Part of what makes Gandi so unique is that people come to us because they share our values and want an alternative to the tactics and practices of mainstream companies. We do care both about our customers and Internet. For example, we do fight spam actively (we strongly support spamhaus.org among other things) and we assume the risk to lose customers because of this ethic positioning (spammers are large ones).

9. If you do suspend domain names in the absence of a court order, how do your customers go about getting their sites restored?

After we suspend a domain name, we send out a final e-mail to the address of the domain's owner in which we explain what steps the registrant must take to reactivate the domain.

Each case is treated individually, and so we tailor our demands to meet the severity and nature of the offence.

10. Do you have a dedicated department or person who handles issues related to domain name suspensions?

Our entire Customer Care Department receives abuse complaints, though we have special e-mail addresses and online forms on our Web site that we also invite concerned citizens to use.

Complaints that we receive are then centralized by dedicated staff members (Ryan and Francoise), who investigate the validity of the complaints, enter into contact with the parties involved, and if necessary, take action. If there is a particularly complex case, a meeting is held by Gandi management together with our legal team, to discuss the complaint, and what action may be appropriate.

The advantage of this approach is that Gandi can tell the difference between domain name abuse, and the posting of an isolated user of a mailing list.

Go Daddy

completed survey Go Daddy is one of the largest registrars in the world and enjoys the rare distinction of being the original cause of the survey. It's probably best known for its racy (by broadcast standards) Super Bowl ads, which have spoofed Janet Jackson's "wardrobe malfunction" during the 2004 game. Registration for .com domains is $9 a year. Go Daddy's director of network abuse, Ben Butler, sent us a statement in addition to the survey response, which we've included as well:

"Go Daddy appreciates the opportunity to address the situation with SecList.org.

"As you know, we have already provided CNET an interview with Go Daddy General Counsel Christine Jones. We also have provided responses to inquiries about this to customers and others who contacted us.

"We think you should know, after explaining the situation, we are receiving positive feedback--not only from those just questioning what happened, but also from those who originally complained.

"Once these people understand thousands of MySpace user names and passwords were exposed on the Internet and that we immediately contacted the customer and resolved the issue--re-enabling the site within one hour--they are not only satisfied with our response, but they THANKED us for what we did.

"One of the customer responses of which we are especially proud came from the Founder & Director of ProjectCare.com, Kevin Caruso. Kevin Caruso said this in his e-mail to Go Daddy: "My work is EXTREMELY important and is literally a matter of life or death for many people EVERY DAY. And I can tell you without hesitation that Go Daddy is THE ONLY registrar and host that I trust. Period."

Previous page | CONTINUED: Go Daddy…
Page 1 | 2 | 3 | 4 | 5 | 6

See more CNET content tagged:
registrar, domain name, court order, domain, suspension

22 comments

Join the conversation!
Add your comment
free speech?
Is now defined as being able to post a list of usernames and passwords for the world to see? Little significance if it's myspace - if it were Bank of America usernames and passwords, the guy would have ended up in jail faster than you could blink.
Posted by Sunflare98 (34 comments )
Reply Link Flag
Free speech
Free speech is so important that it is always the *first* refuge of lame-Os everywhere in hopes they can get support. They do something wrong and right away it's "free speech! free speech!" It's too bad as it erodes public support of TRUE free speech issues (of which there are many).
Posted by WDS2 (183 comments )
Link Flag
Unfortunate title, but great article
Kudos to CNET for this survey. If you read the entire article you'll realize it doesn't really have anything to do with free speech. Also, if you understand the details of the situation, the site owner didn't do anything wrong. The site archives mailing lists, and one of the lists included this username/password list. The list is readily available on the internet. Instead of trying to shut down this site, MySpace should have spent its time changing the passwords of its users.

<a class="jive-link-external" href="http://domainnamewire.com/2007/02/02/cnet-surveys-registrars-about-godaddy-suspension/" target="_newWindow">http://domainnamewire.com/2007/02/02/cnet-surveys-registrars-about-godaddy-suspension/</a>
Posted by andrew999999999 (42 comments )
Link Flag
Afraid to go on record?
I find it interesting that some of these companies would not go
on record defining their policies. While I understand that each
situation needs to be handled on a case-by-case basis, there
should be some policies and procedures in place that are clearly
outlined to the customer so that we understand the protocol if
such a situation arises. Did GoDaddy verify that indeed the
person making the claim was an employee of MySpace and had
the authorization to make a complaint? While I understand the
need to protect the public in cases of breaches of security, we
must temper that without resorting to kneejerk reactions and
immediate suspension. I sometimes feel that these companies
hide behind their Terms of Use and other legalese without
having any obligations to their customers.
Posted by wb113324 (3 comments )
Reply Link Flag
Go Daddy
It's interesting that Go Daddy responded to the survey instead of apologizing. It's time for Bob Parsons to think very seriously about how his company is perceived internationally. It's time for his "abuse" staff and legal counsel to get some training.
Posted by bluehole.foetry (3 comments )
Reply Link Flag
Never liked GoDaddy
I've always thought the management and practices of GoDaddy were arrogant and have felt that they've historically been primarily interested in promoting their own interests over the interests of their customers. They got where they are today for primarily one reason: undercutting the competition's prices. Historically their level of service has been commensurate with their prices, which is to say pretty poor. It was only after they became a very large registrar that they introduced things like 24x7 telephone support, something competitors had offered for years prior.

Also, lots of borderline questionable activities are supported by GoDaddy's controversial "private registration" service, where they block the public from seeing the details about a domain registrar (via WHOIS) that are supposed to be (by ICANN policy) public record. I question whether they are doing the 'net as a whole any favors by providing that service. However no doubt they are generating handsome revenue from some of the shady operations that hide behind that scheme.

Back when Network Solutions was the 800 lb gorilla that everyone hated (for good reason - another example of a large arrogant dominant registrar offering poor service) and when the independent registrar industry was just getting started, I investigated many different registrars. It was a real eye-opener to read through the terms of service of some of the "most recognized" companies in the business (ie dotster, register.com, etc) which in many cases tried to not only marginalize the amount of control the registrant had over the domain, but also had clauses that imposed confiscatory fees and waiting periods over the slightest irregularity, and many of them included text that basically gave the registrar the right to abuse your private details to either spam you directly or sell these details to others to spam you.

I ended up settling on a company called Domain Discover for all of my own and my client's domains, because while they didn't offer the cheapest prices (TANSTAAFL), they offered astute, courteous, prompt 24x7 service, and their terms of service clearly tilted the power over the domain towards the domain-registrant, rather than the registrar. There was little if any "hidden fees" to re-register a domain that lapsed (as others have noted in other followups to an earlier article on the GoDaddy/Seclists/MySpace controversy), and I have never had a single problem with them. Their WHOIS servers are fast and reliable, their website is efficient and utilitarian rather than something the marketing department ran amuck with, etc.

So DomainDiscover is definitely a keeper, and I am sure there are some other good registrars out there that aren't as much of a "household name" as the biggest companies. (Gandi is probably one of them, but because they're based in France and didn't have telephone support when I investigated them, they weren't a great option for me)

Phil Koenig
Posted by pjk0 (1198 comments )
Reply Link Flag
Thanks Phil...
for the good post. I am going to transfer my domains to domaindiscover.com.
Another reason I disliked GoDaddy is that when I recently renewed a domain using the PayPal option, GoDaddy stipulated a $500 monthly maximum in their PayPal agreement which to me is way out of line for an $8.95 transaction.

--Michael
Posted by tvhawaii (5 comments )
Link Flag
DirectNIC is Great
Have used them for 10 years: they are fantastic.

Reasonably priced. Good service.

Stayed running through Katrina!
Posted by dansterpower (2511 comments )
Reply Link Flag
Godaddy is starting to annoy me.
Godaddy moved all my domains to Windows from Linux.

I am not here to give Microsoft a boost in their dismal stats for IIS over Apache and Linux.

I was happy having them parked on a Linux server. But Godaddy and Microsft did a deal and moved them to Windows without asking the customer.

Now that I think of it, I will move my domains from Godaddy. They are really starting to annoy me now.

:(
Posted by t8 (3716 comments )
Reply Link Flag
Tucows refused to participate
No surprise there -- Tucows has become notoriously unresponsive since the onset of their "expansion" phase a year or two ago.

<a class="jive-link-external" href="http://tucowed.blogspot.com" target="_newWindow">http://tucowed.blogspot.com</a>
Posted by tucowed (2 comments )
Reply Link Flag
Cracks me up
You guys crack me up and have it totally wrong. Directnic routinely suspends domains without just cause which is funny that you list them here. I suggest you guys stick to things you know about and leave the domain reporting to those of us who know what we are talking about.

Ross
- <a class="jive-link-external" href="http://www.thehostguru.com" target="_newWindow">http://www.thehostguru.com</a>
Posted by rosshosman-2006316116401890488 (5 comments )
Reply Link Flag
Gandi.net is asking for personal documents not listed in their agreement!
It says here that "Gandi.net protects your domain name", but who will protect you from Gandi???
I transfered a domain name that I purchased in January for $xx,xxx to Gandi.net from Network Solutions, Gandi was reccomended to me
by a friend in France from LVMH that has worked with Lycos before and knows that the former CEO of
Lycos Europe is the owner of Gandi.net and that you can trust a company like that, but can you?
Network Solutions claimed that we transfered the domain without authorization from the owner, but we were
the owner before it was transfered and we bought the domain from the seller fair and square.
My domain is frozen for over a month now and ive sent documents to Gandi.net that even
my Tax attorney in the US told me not to send, but I still sent them,
and in a few weeks I will send them the notorized documents, but it seems that Gandi trusts nobody.
I sent them copies of the purchase contract, invoices, scanned passport copy, office addresses, phone numbers,faxes,
company registration documents, shareholder meeting documents supporting me as President of my company e.t.c...
I spoke with their support staff, a Mr. Ryan Anderson, who was pretty friendly and told me that I will have control
over the domain by the 28th of Feb., but their lawyer a Mrs. Francoise told me that
I that I wont, only if I prove that the company is real, but I already sent
documents to them providing proof of myself, 10 numbers for contacting me,
my companies Registration documents, and my office details. They never even called my office, to confirm the companies
residence there, as my secretary told me. They only sent a Fedex to my P.O. Box that forwarded
the package to my office, after my staff opened it, it was the same letter that was faxed to
all my 5 fax machines. No UDRP or WIPO proceedure was filed by the former owner as he knows that he will lose
since we have all contracts and payment documents, but it seems that I have picked a Registrar
that can do anything they want with my domain name and has the right to ask me for "ANY" documents
just so I can control it again. Whats next, my medical records??? HIV/ and AIDS blood tests?
What? My lawyer at Gowlings is searching for a good I.T. lawyer in France to handle the situation
if it gets out of hand, but I dont understand how can people publish articles like
"Gandi protects your domain name" when the most important part the registrar should also
do is protect you, the client, plus a little trust on their part wont be bad either.
Has anything like this happend to you Gandi clients here??? Any reccomendations???
Thank You
Neal Baltz
baltz@usa.com
Posted by nealbaltz (1 comment )
Reply Link Flag
Reply to Mr. Baltz' comment
Hello CNET readers,

Mr. Baltz is referring to a litigious domain
name that was transferred to Gandi following a
fradulant ownership change at the previous
registrar.

In the short time that the domain was registered
with Gandi following a transfer, we were unable
to verify the authenticity of the documents
provided as evidence of the domain name's
registrant. The documents provided that Mr.
Baltz mentione are also currently under
investigation by the FBI as they are deemed to
be fradulant and/or part of a fradulant
transaction.

As Gandi takes extreme measures to protect the
rights of domain name owners, and as the
documents in the particular case to which Mr.
Baltz is referring were of inauthentic, we
requested only certified copies, which were not
provided.

Additionally, the .com registry, Verisign, the
former registrar, and Gandi were all in
agreement that the validity of the domain's
owner was questionable and thus the transfer of
the domain, irregular. Consequently, the domain
was returned by the Registry to the former
registrar, following a special inter-registrar
procedure set up for such purposes, where the
owner was returned to the legitimate owner by
the original registrar.

This is just another example of the importance
that registrars must take in ensuring that the
owner of a domain is indeed the owner before
undertaking any operation concerning the
modification of a domain name's owner.

This is the final communication that we will
make on this particular topic, which has been
resolved at the registry level.

---
Gandi SAS
www.gandi.net
Posted by Gandi SAS (1 comment )
Link Flag
Nomer.com
Nomer.com, first ICANN accredited Registrar in Latin America, only suspend a domain name if is a clear case of physhing.

Best Regards,

Ricardo Vaz Monteiro
<a class="jive-link-external" href="http://www.Nomer.com.br" target="_newWindow">http://www.Nomer.com.br</a>
Posted by agenciawww (1 comment )
Reply Link Flag
I owned a domain name webricate.com and my sole purpose was to develop website templates for cleints. My Clients provide me with all contents and graphics and we arrange layout of a template to give them a mockup. Once done this goes live on their website. On Friday 10 October Godaddy suspended my account at closing hours and I was not able to see my website or any of template mockups on weekend. My company has lost £1200 since then. The only email I have received is that some one claimed that contents on my website are copywrited and it was only on one template out of 200 templates. Suspending a domain and hosting rather than only that template I was not even told about this unless enquired. The worst thing is that their copyrights claim department can only repsond by email while all other support departments are available 24/7 on phone. I have sent them an email and also apologized on behalf of my client who simply wanted to have a website similar to the one that claimed copyrights however the content and material was given to us for a mockup. Its similar to asking for a youtube functionality but with different video categories. The worst thing is I had 77 subdomains running in various folders and all of them went suspended at the same time. The claiming body did tell GoDaddy that copyright has been broken in only one folder however if they had contacted us we would have removed the material at once. After all it is unlikely that we can go on each website on internet to check if a client is giving us their own contents. Our clients do tell us to have mockups similar to others and these mockups are temporary and GoDaddy should have spoken or at least given some respect to their customer than listening to someone claiming. A genuine claim should be investigate rather than just acted upon.
Posted by farrukhsubhani (2 comments )
Reply Link Flag
My experience with GANDI is just great. I am from India. I have checked many registrar but GANDI and Dotster are the best and most trusted in lot..believe me.
Posted by panapanapana (1 comment )
Reply Link Flag
What about Open SRS? How can we investigate this?
Posted by flossed (1 comment )
Reply Link Flag
 

Join the conversation

Add your comment

The posting of advertisements, profanity, or personal attacks is prohibited. Click here to review our Terms of Use.

What's Hot

Discussions

Shared

RSS Feeds

Add headlines from CNET News to your homepage or feedreader.