Slashdot Mirror
Domain: verisign.com
Stories and comments across the archive that link to verisign.com.
Comments · 360
-
My Favorite:
Here's my favorite:
3. COST OF THE VERISIGN SERVICES.
The Verisign Service(s) are provided to you free of charge.
Something tells me they're gonna have a lot of registrations really soon! -
Re:Complain to Verisign as well
If you have the time call them to complain:
Domain Names & Related Services
U.S. & Canada: 888-642-9675
Also check their contact info
I'm not sure if they care about complaints about this but they might care about the other effects of the quantity of complaints. -
Re:wonder of wonders
-
Re:wonder of wonders
-
Re:wonder of wonders
Whee, this is fun! (Check out the bottom line of the page.)
Anybody want to take bets on how long it takes for this site to be cracked? -
Re:Verisign would look nice in gasoline and flame
just mail their Contact Page email addresses, see what happens then
-
Terms of useGet this: (Terms of Use):
Use of the VeriSign Services. You agree not to use the VeriSign Services in any manner that is unlawful, or in any manner that could damage, disable, impair or otherwise interfere with another party's enjoyment and use of the VeriSign Service. You may not manipulate or attempt to gain unauthorized access to our website or systems or any websites or systems connected through our website through hacking, password mining or any other means. Modification by VeriSign. At any time VeriSign may modify or terminate these terms of use, its websites and the VeriSign Services and may at any time discontinue your use of the VeriSign Services without any notice to you, and without liability to you, any other user or any third party. Please review these Terms of Use from time to time so that you will be aware of any changes. Your continued use of the VeriSign Services constitutes your agreement to all such terms, conditions, and notices.
A "terms of service" section on a website people don't reach voluntarily?
-
beyootiful
hello
Fan fucking tastic. -
Site Finder Developer's Guide available...
Available here
How nice of them to let us know...
-
Voice your concerns
If you're upset about this, I'd recommend calling one of the 800/888 numbers on the Verisign Corporate Contacts Page and lodging a formal complaint.
You can also email your concerns directly to customer service (which is what they will have you do after you call, anyway)
As of right now, smtp is also enabled on that IP. Haven't received a bounce message yet for an intentionally incorrect email. Wonder where all the badly addressed spam will go now?
-
They've been waiting for a critical massFrom the bestpractices whitepaper:
Several TLD administrators* already support wildcard functionality in their zones, demonstraiting that the concept works in practice. The applications provided by these administrators to support wildcard functionality vary, but in all cases the administrators provide a web page to inform the human web users that they have reached a destination as a result of attempting to resolve a non-existent domain name. In most cases, the web page informs the user that the domain is available for registration. In one case the web page helps the user find web sites associated with delegated subdomains.
They've been watching others do this for a long time... just waiting for a critical mass so they can point to everyone else and say, "They're all doing it, why can't I?"*The zones for
-
Re:How can we undo this?I checked their site, and found a Domain Names & Related Services contact number (888-642-9675), and gave it a try.
Unfortunately, the rep that answered the phone was unable to help, he said that he works for Network Solutions, and can only help with domain registration issues, and that the Verisign parent company runs the root nameservers. He was unable to give me a contact number for Verisign. However, you may want to try calling this number yourself to see if maybe a different rep has the contact number for Verisign.
I did a whois on the verisign.com domain, and came up with the main contact number for Verisign: 650-961-7500, but it's been ringing for the past 5 minutes, with no answer. One would think that they would have an automated voice-response system on their main number, so I think that they are being innudated with calls.
-
Re:Oddly enough...
I don't- I get this bounced back.
-
Make sure you let Scott and Matt know ....
You may want to let Scott Hollenbeck (shollenbeck@verisign.com) and Matt Larson (mlarson@verisign.com) from VeriSign's Naming and Directory Services know what you think of their Best Practices.
And while you are at it, you may consider a friendly note for W.G. Champion Mitchell (wmitchell@verisign.com), President, NetSol and Stratton Sclavos (ssclavos@verisign.com), Chairman and CEO, VeriSign. -
Make sure you let Scott and Matt know ....
You may want to let Scott Hollenbeck (shollenbeck@verisign.com) and Matt Larson (mlarson@verisign.com) from VeriSign's Naming and Directory Services know what you think of their Best Practices.
And while you are at it, you may consider a friendly note for W.G. Champion Mitchell (wmitchell@verisign.com), President, NetSol and Stratton Sclavos (ssclavos@verisign.com), Chairman and CEO, VeriSign. -
Make sure you let Scott and Matt know ....
You may want to let Scott Hollenbeck (shollenbeck@verisign.com) and Matt Larson (mlarson@verisign.com) from VeriSign's Naming and Directory Services know what you think of their Best Practices.
And while you are at it, you may consider a friendly note for W.G. Champion Mitchell (wmitchell@verisign.com), President, NetSol and Stratton Sclavos (ssclavos@verisign.com), Chairman and CEO, VeriSign. -
Make sure you let Scott and Matt know ....
You may want to let Scott Hollenbeck (shollenbeck@verisign.com) and Matt Larson (mlarson@verisign.com) from VeriSign's Naming and Directory Services know what you think of their Best Practices.
And while you are at it, you may consider a friendly note for W.G. Champion Mitchell (wmitchell@verisign.com), President, NetSol and Stratton Sclavos (ssclavos@verisign.com), Chairman and CEO, VeriSign. -
Make sure you let Scott and Matt know ....
You may want to let Scott Hollenbeck (shollenbeck@verisign.com) and Matt Larson (mlarson@verisign.com) from VeriSign's Naming and Directory Services know what you think of their Best Practices.
And while you are at it, you may consider a friendly note for W.G. Champion Mitchell (wmitchell@verisign.com), President, NetSol and Stratton Sclavos (ssclavos@verisign.com), Chairman and CEO, VeriSign. -
Re:wonder of wonders
Actually, the verisign search seems to be pretty good. A search for FUCK VERISIGN returns a slashdot article about verisign sending out deceptive domain renewal mail as the second result.
-
Re:wonder of wondersMore fun with sitefinder.verisign.com
Hmm, cross-site scripting. Seems harmless enough, but I wonder if VeriSign stores anything important in the verisign.com cookie...
-
wonder of wonders
what are the chances - using the
search page that comes up at the
verisign site to search for "register" we find at the top of the
list a link to networksolutions.com (a verisign company). we also
note that searching for the same word at google
does not result in that site being present in at least the first four pages of results.
yeah - thats a real useful search tool verisign has there - thanks so much. -
More Verisign Shenanigans and Tomfoolery
On one hand, Verisign wants us to believe they are sufficiently trustworthy to extort as much as USD1595.00 from us for a handful of 1's and 0's (SSL Certificates), and on the other they expect to be able to get away with the dispicable, annoying business practice of hijacking users' web requests? This is annoying enough as it is with opportunistic larrikins buying up misspelt domains, without the custodian of the database abusing its' position by returning effectively forged replies to queries for domains which do not exist. Reminds me of their recent foray into the domain 'Back-Order Domain Acquisition Service business.
I guess with competitors closing the gap by offering virtually the same thing for a fraction of the price, they must be getting desparate. -
Corrected link
-
Re:There is DNS for phone numbers
Because not all numbers go through the portability database yet. Unlike DNS, there's not one standard system. For historical reasons, there are many lookup systems which interoperate. Up until the 1970s, telephone switching had no database lookups at all. Gradually, routing databases have been retrofitted to the telephone system. In time, all numbers will probably be completely portable, but we're not there yet. See Ported Number Call Flow.
-
There is DNS for phone numbersWe do have DNS for phone numbers. The number you dial is the "directory number". The actual point of connection is something else. There's a distributed database, run over Signalling System 7, to pass that information around. Verisign runs most of that database.
Verisign operates a one-stop service for number portability. It's straightforward - they control the number database. You don't get a choice of registrars.
One less-known feature of this approach is that it's used for wiretapping. By messing with the routing database, calls are routed to wiretapping access points before going to their ultimate destination. Verisign offers wiretapping services to law enforcement and various other "authorities" as a commercial service, under the name NetDiscovery(tm). Coming soon: Verisign wiretapping for voice over IP!
-
There is DNS for phone numbersWe do have DNS for phone numbers. The number you dial is the "directory number". The actual point of connection is something else. There's a distributed database, run over Signalling System 7, to pass that information around. Verisign runs most of that database.
Verisign operates a one-stop service for number portability. It's straightforward - they control the number database. You don't get a choice of registrars.
One less-known feature of this approach is that it's used for wiretapping. By messing with the routing database, calls are routed to wiretapping access points before going to their ultimate destination. Verisign offers wiretapping services to law enforcement and various other "authorities" as a commercial service, under the name NetDiscovery(tm). Coming soon: Verisign wiretapping for voice over IP!
-
Re:Here's how to get a free keyYeah, right. Provide your name, address, date of birth, and social security number, and you get a key.
Thawte originally promised to move the database outside of the US if the US ceased to have adequate privacy protections in law. After the Patriot Act, they should have done so, but they didn't. Thawte today is just a front for Verisign, which, among other things, operates a national wiretapping service for law enforcement and others.
- Stepped-up concern over security has put the heat on carriers to ensure they can meet mandates under the FCC's 1994 Communications Assistance for Law Enforcement Act (CALEA), requiring telecom service providers to support the ability of law enforcement agencies to conduct lawful, authorized electronic surveillance of call content and call data.
... One company, VeriSign Inc., offers a one- stop, turnkey solution to help telecom carriers comply with CALEA.
VeriSign's nationwide signaling network infrastructure, digital certificate technology and secure data centers enable it to provide a scaleable service bureau solution that saves carriers significant capital expense and virtually eliminates administration costs involved in meeting the legal, technical and operational requirements of CALEA.
Using Verint Systems Inc.'s STAR-GATE, a solution that provides the means to access and deliver intercepted communications content and call data to law enforcement agencies, VeriSign offers a streamlined solution that meets the needs of wireline, wireless and cable telephony carriers. Puri explains that once contracted by the carrier, VeriSign becomes the primary point of contact for law enforcement. "Once we receive the order
Among the orders NetDiscovery processes are historical call records, pen registers or trap and trace (real-time call data as it occurs), as well as wire taps from both law enforcement and national security agencies. The company's personnel are set up to handle classified orders, having attained the appropriate government security clearances, Puri says.
In addition to eliminating a carrier's need to maintain such personnel, NetDiscovery also eliminates the need to connect to the thousands of agencies with authority to request information.
The solution supports circuit switches and beginning this quarter it will support packet-based gear, such as soft switches. The company is working with Cisco Systems Inc. to support its soft switches, routers and gateways.
In addition to Cisco, VeriSign is working with four other "market-leading" vendors to ensure support for their packet-based offerings, it says.
"Almost every provider has some sort of packet-based hardware, so support for packet under CALEA is critical. It cuts across all types of carriers from wireline to wireless to cable MSOs," he says.
The company is looking also at solutions for ISPs and their gear (routers, gateways, etc.) although they are not included under CALEA, Puri adds.
Verisign just had a session on wiretapping for ISPs at Supercomm. Basically, Verisign runs the US's wiretapping infrastructure. They thus can't be trusted as a security provider.
- Stepped-up concern over security has put the heat on carriers to ensure they can meet mandates under the FCC's 1994 Communications Assistance for Law Enforcement Act (CALEA), requiring telecom service providers to support the ability of law enforcement agencies to conduct lawful, authorized electronic surveillance of call content and call data.
-
Re:Send compaints to
And, when there, do exactly what?
Search for 'complain':
No results were found for your search.
Try changing some of the words in your query. -
Re:ICANN'T
In a related (completely offtopic) story, here's an excerpt from Verisign's 10-Q (SEC filing):
Issues arising from implementing agreements with ICANN and the Department of Commerce could harm our domain name registration business.
The Department of Commerce, or DOC, has adopted a plan for a phased transition of the DOC's responsibilities for the domain name system to the Internet Corporation for Assigned Names and Numbers, or ICANN. We face risks from this transition, including the following:
ICANN could adopt or promote policies, procedures or programs that are unfavorable to our role in the registration of domain names or that are inconsistent with our current or future plans;
the DOC or ICANN could terminate our agreements to be the registry for the
if our agreements to be the registry for the
the terms of the registrar accreditation contract could change, as a result of an ICANN-adopted policy, in a manner that is unfavorable to us;
the DOC's or ICANN's interpretation of provisions of our agreements with either of them could differ from ours;
the DOC could revoke its recognition of ICANN, as a result of which the DOC would take the place of ICANN for purposes of the various agreements described above, and could take actions that are harmful to us;
the U.S. Government could refuse to transfer certain responsibilities for domain name system administration to ICANN due to security, stability or other reasons, resulting in fragmentation or other instability in domain name system administration; and
our registry or registrar businesses could face legal or other challenges resulting from our activities or the activities of other registrars. -
Good read
-
Good read
-
Good read
-
Good read
-
Good read
-
Good read
-
Good read
-
Good read
-
Good read
-
Good read
-
Good read
-
Re:ICANN'TMaybe we should start putting the slashdot effect to good use as a form of net activism.
Anyone who dosen't like Verisign should take a moment to get to know the company better by reading their 2001 annual report (1.5 MB)
If 100,000 people read it, it will eat up 150GB of bandwidth. If everyone does it once a day how long would it be until verisign cracks?
-
Re:phones
-
You forgot the digital certificate
Iam sure Verisign are thanking Office depot and Microsoft for the 400$ they earn each time a developer wants a digital certificate in order to even apply for a logo application,
Why Do I need a VeriSign Certificate?
A VeriSign certificate provides security for product submissions (if your product contains kernel-mode drivers)
A VeriSign certificate is required to open an account for the Windows logo program
A VeriSign certificate enables secure access to error-reporting data for your product as part of the Windows logo program
how many small developers and shareware authors are going to pony up the cash for their application ? so only those who can afford to play the game can ? sounds fair to me
someone earlier said scam, i say they are right
-
So who is it?This implies to me that a credit card payment gateway was compromised. Who was it?
- Authorize.Net
- Verisign
- Intellipay
- WorldPay
- iTransact
- QuickCommerce
- or someone else?
Inquiring minds want to know... - Authorize.Net
-
Re:Self-signed and non-trusted CAs
The only reason the big companies charge so much (their claim, not mine) is the insurance they provide, and the fact that they are "trusted" by the various vendors.
What 'insuramce'? I guess you have never read Verisign's DISCLAIMER (my emphasis):
Except as expressly stated in an agreement between you and Verisign, all content, services, products and software provided on this web site are provided "AS IS" without warranty of any kind, either express or implied. Verisign and its suppliers and licensors disclaim all warranties, express or implied including, without limitation, those of merchantability, fitness for a particular purpose and noninfringement. You are solely responsible for the appropriateness of the site, its content, and the products and services offered by Verisign on the site for your intended application and use. Verisign does not warrant that the site, its content, or the products and services it offers on the site meet your requirements. Subject to the terms of any agreement between you and Verisign, Verisign, its suppliers and licensors shall not be liable for any direct, indirect, special, consequential, incidental, or punitive damages, even if Verisign, its suppliers or licensors have been advised of the possibility of such damages. Certain state laws do not allow limitations on implied warranties or the exclusion or limitation of certain damages. If these laws apply to you, some or all of the above disclaimers, exclusions, or limitations may not apply to you, and you might have additional rights.
(This is in ALL UPPER CASE in the original, but
-
Seat of Trust is infinite regressionThis is just another attempt to make a definitive, final "seat of trust" for computing. Only now, it's in proprietray X86 assembly code that OEM's pay tens of thousands of dollars for.
Also, conceptually, this will still not solve the trust issue, as someone could still open up their case and replace their BIOS chip.
Most of us build our "seats of trust" on human relationships, like our family and friends. Oh, and these guys, too.
-
Wiretap detection by round trip time measurementThis might be useful in another context - detection of legal telephone wiretaps.
One of Verisign's services is telephone wiretapping. A telco can outsource their wiretapping function to Verisign, which then takes care of transmitting the calls to law enforcement or other wiretapping customers.
The way Verisign does this uses their control of the Signalling System 7 network, which controls phone call routing and which they bought a few years ago by acquiring Illuminet.
The basic concept is that Verisign alters the routing for the tapped phone so that all calls to and from it route through some Verisign tapping facility. Phone numbers today are somewhat "portable", which requires a DNS-like database lookup for every call. Change the database, and calls are rerouted.
This approach avoids the need to tap into the voice path at end offices. But there's a side effect. Because it changes the routing for the voice path, it has to change the time of flight, based on speed of light lag.
A useful tapping test for a phone is thus to measure its round-trip time to a nearby phone. Normally, local call latency is a few 8Khz sample times, under 1ms. But a round trip to Northern Virginia from a West Coast phone would add about 30ms of latency.
Using a short section of hose at each end to get the phones to feed back around the loop gives you a quick read on latency. If you hear a high-pitched whine, latency is normal; if you hear a low-pitched growl on a local call, the routing is nonstandard and something funny is going on.
-
Let's DDOS the root server!
Even though the DDOS root server survived yesterday, I'm sure its still vulnerable. BTW, here are some links that you Slashdotters might find interesting...be sure to click on them many times; they may not work right if you don't:
FREE ATI RADEON 9700 PRO CARDS! NO LIMIT PER PERSON!!! CLICK MANY TIMES NOW!
GET PAID FOR USING AMD PROCESSORS!
THE BEST LINUX DISTROBUTION EVER!!!
COMPLETE OPEN SOURCE CODE FOR WINDOWS!
Verisign, home of the root server. -
Let's DDOS the root server!
Even though the DDOS root server survived yesterday, I'm sure its still vulnerable. BTW, here are some links that you Slashdotters might find interesting...be sure to click on them many times; they may not work right if you don't:
FREE ATI RADEON 9700 PRO CARDS! NO LIMIT PER PERSON!!! CLICK MANY TIMES NOW!
GET PAID FOR USING AMD PROCESSORS!
THE BEST LINUX DISTROBUTION EVER!!!
COMPLETE OPEN SOURCE CODE FOR WINDOWS!
Verisign, home of the root server. -
Let's DDOS the root server!
Even though the DDOS root server survived yesterday, I'm sure its still vulnerable. BTW, here are some links that you Slashdotters might find interesting...be sure to click on them many times; they may not work right if you don't:
FREE ATI RADEON 9700 PRO CARDS! NO LIMIT PER PERSON!!! CLICK MANY TIMES NOW!
GET PAID FOR USING AMD PROCESSORS!
THE BEST LINUX DISTROBUTION EVER!!!
COMPLETE OPEN SOURCE CODE FOR WINDOWS!
Verisign, home of the root server.
