Whois is dead as Europe hands DNS overlord harsh warning

Forum Moderators: buckworks & webwork

Message Too Old, No Replies

Whois is dead as Europe hands DNS overlord harsh warning

tangor

10:50 am on Apr 15, 2018 (gmt 0)

The Whois public database of domain name registration details is dead.

In a letter [PDF] sent this week to DNS overseer ICANN, Europe's data protection authorities have effectively killed off the current service, noting that it breaks the law and so will be illegal come 25 May, when GDPR comes into force.

The letter also has harsh words for ICANN's proposed interim solution, criticizing its vagueness and noting it needs to include explicit wording about what can be done with registrant data, as well as introduce auditing and compliance functions to make sure the data isn't being abused.

ICANN now has a little over a month to come up with a replacement to the decades-old service that covers millions of domain names and lists the personal contact details of domain registrants, including their name, email and telephone number.

[theregister.co.uk...]

The times, they are a-changing.

Travis

11:02 am on Apr 15, 2018 (gmt 0)

Good.

Travis

11:18 am on Apr 19, 2018 (gmt 0)

Additional article :

"DNS is about to get into a world of trouble with GDPR"
[zdnet.com...]

lucy24

5:55 pm on Apr 19, 2018 (gmt 0)

In the long term, what will this do to websites that currently use DNS lookups as one aspect of access controls?

Travis

11:27 am on Apr 22, 2018 (gmt 0)

In the long term, what will this do to websites that currently use DNS lookups as one aspect of access controls?

What kind of information are you fetching?

bhukkel

2:56 pm on Apr 22, 2018 (gmt 0)

I dont think it has something to do with DNS, it is the WHOIS data that contains personal data

martinibuster

4:32 pm on Apr 23, 2018 (gmt 0)

European overreach.

lucy24

8:26 pm on Apr 23, 2018 (gmt 0)

What kind of information are you fetching?

I don't personally take this approach, but would you still be able to look up 11.22.33.44 on the fly and verify that it is allocated to {authorized robot}?

:: irritably wondering just whose privacy is being violated when you look up a domain name and find it belongs to Another Happy Registrarname Customer ::

branko97

2:38 pm on Apr 24, 2018 (gmt 0)

Yes, it is aimed at personal data protection against data abuse.

captainwindy

2:23 am on Apr 27, 2018 (gmt 0)

Some domain sales companies, such as Escrow.com, rely on public Whois to confirm the buyer's receipt of the name. Wonder what they would do if not that, when buyers forget or ignore the request to acknowledge receipt? Also, a lot of us who do domain sales need Whois for research and contacts, generally.

keyplyr

3:23 am on Apr 27, 2018 (gmt 0)

@lucy24 - so far they aren't touching lookups for IP range assignment which don't divulge personal information.

However, that may be on some future chopping block.