Re: myspace makes GoDaddy take out Fyodor

[Nick FitzGerald <nick () virus-l demon co uk>]

Blue Boar wrote:

> http://blog.wired.com/27bstroke6/2007/01/myspace_alleged.html
> Follow up:
> http://blog.wired.com/27bstroke6/2007/01/godaddy_defends.html
>
> Summary: Fyodor's full-disclosure mailing list archive had the myspace
> password list. Days later, myspace figures this out, goes straight to
> his registrar, GoDaddy waits a whole hour when they can't get ahold of
> Fyodor, and redirects his domain. Nice. Oh, wait. That's GoDaddy's
> versions of the story... Fyodor calcuates it at one minute's notice.

I guess, as a customer, maybe that's what you should expect from a 
$8.95/yr/.com registrar??

Their margins are pretty thin so they won't invest much effort in 
defending you (as a customer) against a "big" complaint from a big 
complainer.

> Hey, how do we get the one minute shutdown turnaround with GoDaddy when
> it's actually warranted?

That really is the question now.

GoDaddy have crapped their nest badly with this, showing just how easy 
it _should be_ to get clearly "dangerous" domains (like, something 
claiming to be a US bank with a street address in the Ukraine and a 
(bogus) UK phone number, say) in their registry knobbled.

Sadly they don't -- and we're sure, will continue to not -- provide 
this level of response for other such cases.

Which begs the question -- exactly what kind of photographs of which 
important person(s) at GoDaddy does MySpace have??


Regards,

Nick FitzGerald

_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.