Slashdot Mirror

← Back to Stories (view on slashdot.org)

US .gov WHOIS Info Restricted Over Attacker Fears

Posted by ryuzaki0 on from the paranoia-strikes-again dept.

An anonymous reader writes "VeriSign Inc has stopped providing access to information about the .gov internet domain, which is restricted to US government bodies, over concerns the data could be used in planning internet attacks."

11 of 178 comments (clear)

  1. Well by Anonymous Coward · · Score: 5, Insightful

    There shouldn't even be a .gov TLD.

    It should be .gov.us

    1. Re:Well by swillden · · Score: 3, Insightful

      Given that the .gov.us paid for the development of the internet protocols, including DNS, I think it's not too unreasonable that they get a meaningless perk like having their own TLD.

      --
      Note to ACs: I usually delete AC replies without reading them. If you want to talk to me, log in.
    2. Re:Well by angelo · · Score: 2, Insightful

      It drives me nuts. .gov and .mil used to belong to the us... I've heard that .mil is going onto Internet2 and is leaving Internet. That takes care of .mil. Now it is the time to retire .gov. Move it to .gov.us, and there will be one address to worry about hiding from terrorists.

      www.gov.us could be the central directory to states and federal goverment agencies. That such a site doesn't exist (it sorta does in firstgov, and some news sites, but that's difficult to remember) is rather sad.

      The whole point of this heirarchy would be to have a website on anything and everything in the government, and have that site name be obvious.

      And another thing.. try going to http://state.pa.us ... can't do it without the 'www.' because the dns entry doesn't exist or else has been aliased improperly. The www. should be considered optional at this point. Hell, even eBay has a problem with this.

      this era of stupid web architecture must end.

      --
      Lowmag.net
    3. Re:Well by Our+Man+In+Redmond · · Score: 5, Insightful

      If "TLD" means "Two Level Domain" yes there is. :)

      I don't know if you ever noticed, but postage stamps in every country in the world carry the name of that country somewhere on the stamp, except for one. Which one? The UK. Why? Because they were first with adhesive postage stamps as we now know them and started the tradition.

      I don't have any more of a problem with the US not having to tag .us onto its domain names than I do with the UK not putting its name on its postage stamps.

      --
      Someone you trust is one of us.
  2. Are they going to... by The+Fanta+Menace · · Score: 5, Insightful

    ...hide the contents of the websites too?

    Not much point hiding the whois information of a domain if its accompanying website tells the whole world who and where they are...

    --
    -- Even if a god did exist, why the fsck should I worship it?
  3. Re:I see no problem with this... by 56ker · · Score: 2, Insightful

    Yes - but this move just means they're getting paranoid - it's ineffective anyway. Either someone wants to reassure the general public that they'd doing something (however ineffectual) or Versign wants some press coverage on a slow news day.

    --


    Video Game cheats, hints a
  4. Q: I never checked, but what WAS in the whois info by Nijika · · Score: 5, Insightful

    It had to be a matter of public record anyway, right? I don't see what this solves. I think the old term "Security throught obscurity" applies here. That term has also been trampled on time and again because it just doesn't work. Hide information via one source, get all confident that you're safe, and then get surprised when you're actually not.

    Is there anyone out there who can explain what this accomplishes really? I'm seriously asking because I might be missing something.

    --
    Luck favors the prepared, darling.
  5. This may have unintended consequences by Anonymous Coward · · Score: 5, Insightful

    While I think the intent is admirable, the net effect might be somewhat frustrating. For example, how are we supposed to get contact info if say a governement group's DNS goes south? Or maybe just a portions of it? what about entities that have been misapportioned? (Good example is the City of Albuquerque, NM.)

    The quote that I found interesting is: "Also removed from the FTP site was the zone file for in-addr.arpa, which is used for reverse-DNS lookups (when somebody wants to find out what domain is associated with an IP address, rather than the other way around)." So is this a prelude for them to stop supporting rev. DNS? If it does stop, are they really aware of the potential consequences? (Stopped email, blocked access, etc.) What about who to contact and how to contact them about possible network outages?

    Things like this might seem like a good idea at the time, but can (and do) lead to other problems. I am in favor of security as much as the next guy, but half though-out moves like this don't help.

    -D.

    P.S. I wonder if they are going to stop publishing things like the white pages (online or even the print edition)? Hey they do have government entity addresses and phone numbers?

  6. Re:Q: I never checked, but what WAS in the whois i by vegetablespork · · Score: 2, Insightful
    Be glad they are doing something.

    I'd be more glad if they were doing something that had some hope of being effective.

    --

    Call (206) 338-5780 COLLECT for information about a genuine BA, BS, MA, MS, MBA, or Ph.D.

  7. Re:I see no problem with this... by UberOogie · · Score: 3, Insightful
    So if they take them down, even to say it's for protection, are we losing a facility, really?

    Frankly, yes. It is an instance of the government taking away information that should be available to the public under the guise of "national security."

    And in the current climate, this is exactly the kind of thing we should be fighting against, with Ashcroft in power.

    Granted that this is a relatively minor instance, but it is one that is part of a much greater whole.

    The interests of "security" cannot supercede the interests of liberty.

    --
    "Enough of this wretched, whining monkey life." -- Marcus Aurelius, _Meditations_, Book 9, 37
  8. If you want to participare in a public network... by TobyWong · · Score: 4, Insightful

    If you want to participare in a public network then they shouldn't be hiding whois information. Nobody is saying they can't run their own top secret nework (as I'm sure they already do to some degree) but participation in this giant public network involves some amount of conformance to standards.

    Any information that is so critical to national security shouldn't be on the internet in the first place.

    --
    - Toby