Welcome to WebmasterWorld Guest from 54.196.233.208

Forum Moderators: buckworks & webwork

Message Too Old, No Replies

Why don't registrars defend against phishing-style domain names?

     
9:51 pm on Jul 10, 2005 (gmt 0)

Senior Member

WebmasterWorld Senior Member tedster is a WebmasterWorld Top Contributor of All Time 10+ Year Member

joined:May 26, 2000
posts:37301
votes: 0


I was just checking out some of the devious work done by phishing scams. It seems to me that to be really successful, these phishermen use a clear knock-off of a well known domain -- paypal and ebay being high on the list.

Maybe I'm being naive here, but why aren't registrars a first line of defense here, at least on the names of the biggest online services, major banks and credit cards? Seems like it would be an easy thing to raise a red flag on a requested regitration for any name that contains "paypal", as an example.

1:49 am on July 11, 2005 (gmt 0)

New User

10+ Year Member

joined:Feb 26, 2005
posts:34
votes: 0


"hey, we would like to pay you money for domains"
"sorry, but we wont take your money because of the potential to upset some people"

its all about the money... that plus if they did it with some companies they would have to do it with all of them, and thats just not practical.

2:16 am on July 11, 2005 (gmt 0)

Senior Member

WebmasterWorld Senior Member digitalghost is a WebmasterWorld Top Contributor of All Time 10+ Year Member

joined:Feb 23, 2002
posts:3687
votes: 0


Whay aren't companies asked to register the IP that they send email from, which can be checked against a list? Wrong IP, email not sent. Gmail does something very close to that, they verify the IP, (at least from e-bay and Paypal), and provide a warning that the IP doesn't match.
5:00 am on July 11, 2005 (gmt 0)

Senior Member

WebmasterWorld Senior Member 10+ Year Member

joined:May 31, 2005
posts:1108
votes: 0


You mean e-mail validation something like SPF? [spf.pobox.com ]
5:55 am on July 11, 2005 (gmt 0)

Senior Member

WebmasterWorld Senior Member digitalghost is a WebmasterWorld Top Contributor of All Time 10+ Year Member

joined:Feb 23, 2002
posts:3687
votes: 0


Exactly like that. Sorry Tedster, I know that doesn't answer the question, but it is not the domain that's the real problem, it's the email. Most folks don't even know how to view headers, let alone interpret them. Stop the false email.

In short, don't make me think.

8:21 pm on July 11, 2005 (gmt 0)

Senior Member

WebmasterWorld Senior Member 10+ Year Member

joined:May 31, 2005
posts:1108
votes: 0


Well SPF and its like are a good step in the right direction against phishing. It is also being touted as a fix for SPAM, unfortunately in that case it is overstated, as I can see ways of SPAMming and even with SPF in place.
7:18 pm on July 12, 2005 (gmt 0)

Preferred Member

10+ Year Member

joined:Mar 9, 2003
posts:546
votes: 0


I believe Gmail uses DomainKeys.
2:15 pm on July 13, 2005 (gmt 0)

Preferred Member

10+ Year Member

joined:Sept 8, 2004
posts:629
votes: 0


In that case, guys, how about letting your thoughts on this subject be known at you-
know-where? ;)

And yeah, you're being naive, tedster. :)

Fortunately, there are some registrars out there who will take time to handle this. However,
it's a matter of finding out who. (I have 1-2 candidates in mind who, I'm sure, will indeed
proactively handle this issue...)

Not to mention there are hardly any laws authorizing registrars to handle this. (I think...)

10:10 pm on July 13, 2005 (gmt 0)

Senior Member

WebmasterWorld Senior Member 10+ Year Member

joined:Dec 27, 2001
posts:762
votes: 0


To answer your question, I don't believe the registrars want to or are even allowed to be the domain name police. Who is to say that a misspelling of paypal is incorrect? Perhaps it's a perfectly legitimate reason.
11:51 am on July 14, 2005 (gmt 0)

Preferred Member

10+ Year Member

joined:Sept 8, 2004
posts:629
votes: 0


By the way, guys, Tedster just approved my request to post this link: spoofstick.com [spoofstick.com].
It's available for both IE and Firefox users, so go check it out!