Slashdot Mirror

← Back to Stories (view on slashdot.org)

US .gov WHOIS Info Restricted Over Attacker Fears

Posted by ryuzaki0 on from the paranoia-strikes-again dept.

An anonymous reader writes "VeriSign Inc has stopped providing access to information about the .gov internet domain, which is restricted to US government bodies, over concerns the data could be used in planning internet attacks."

12 of 178 comments (clear)

  1. info on /whois by DarkHelmet · · Score: 5, Funny
    WhiteHouse.gov

    C/O George W. Bush
    1600 Pennsylvania Avenue
    Washington, DC.

    Yup, wouldn't want anyone to know where HE lives, do we?

    --
    /^[A-Z0-9._%+-]+@[A-Z0-9.-]+\.[A-Z]{2,4}$/i
  2. Talk about a non-news item... by jea6 · · Score: 5, Informative

    If you need whois data for a ".gov" domain, go to the General Services Administration.

    --

    sarchasm: The gulf between the author of sarcastic wit and the person who doesn't get it.
  3. Well by Anonymous Coward · · Score: 5, Insightful

    There shouldn't even be a .gov TLD.

    It should be .gov.us

    1. Re:Well by IIRCAFAIKIANAL · · Score: 5, Interesting

      What, you mean the US should do it like the rest of us?

      www.theregister.co.uk

      www.hrdc-drhc.gc.ca

      But the USA is the Internet, right? That's why you have .gov, .com, and .net instead of .gov.us, .co.us, and .net.us

      It's always bugged me a bit, especially when companies in my country use .com instead of .ca - I always try .ca by default and many of them don't have the .ca even in use to point to the .com.

      I honestly don't know if there is even a TLD for the USA...

      --
      Robots are everywhere, and they eat old people's medicine for fuel.
    2. Re:Well by Our+Man+In+Redmond · · Score: 5, Insightful

      If "TLD" means "Two Level Domain" yes there is. :)

      I don't know if you ever noticed, but postage stamps in every country in the world carry the name of that country somewhere on the stamp, except for one. Which one? The UK. Why? Because they were first with adhesive postage stamps as we now know them and started the tradition.

      I don't have any more of a problem with the US not having to tag .us onto its domain names than I do with the UK not putting its name on its postage stamps.

      --
      Someone you trust is one of us.
  4. Are they going to... by The+Fanta+Menace · · Score: 5, Insightful

    ...hide the contents of the websites too?

    Not much point hiding the whois information of a domain if its accompanying website tells the whole world who and where they are...

    --
    -- Even if a god did exist, why the fsck should I worship it?
  5. Even better ... by shri · · Score: 5, Funny

    I think they should restrict access to the .gov DNS records also. Would go a long way in making the .gov net a whole lot more secure. :)

  6. Q: I never checked, but what WAS in the whois info by Nijika · · Score: 5, Insightful

    It had to be a matter of public record anyway, right? I don't see what this solves. I think the old term "Security throught obscurity" applies here. That term has also been trampled on time and again because it just doesn't work. Hide information via one source, get all confident that you're safe, and then get surprised when you're actually not.

    Is there anyone out there who can explain what this accomplishes really? I'm seriously asking because I might be missing something.

    --
    Luck favors the prepared, darling.
  7. This may have unintended consequences by Anonymous Coward · · Score: 5, Insightful

    While I think the intent is admirable, the net effect might be somewhat frustrating. For example, how are we supposed to get contact info if say a governement group's DNS goes south? Or maybe just a portions of it? what about entities that have been misapportioned? (Good example is the City of Albuquerque, NM.)

    The quote that I found interesting is: "Also removed from the FTP site was the zone file for in-addr.arpa, which is used for reverse-DNS lookups (when somebody wants to find out what domain is associated with an IP address, rather than the other way around)." So is this a prelude for them to stop supporting rev. DNS? If it does stop, are they really aware of the potential consequences? (Stopped email, blocked access, etc.) What about who to contact and how to contact them about possible network outages?

    Things like this might seem like a good idea at the time, but can (and do) lead to other problems. I am in favor of security as much as the next guy, but half though-out moves like this don't help.

    -D.

    P.S. I wonder if they are going to stop publishing things like the white pages (online or even the print edition)? Hey they do have government entity addresses and phone numbers?

  8. rfc-ignorant listing by Charles+Dodgeson · · Score: 5, Funny

    I wonder whether .gov will find itself listed in on rfc-ignorant for this.

    --
    Prime numbers are exactly what Alan Greenspan says they are -S. Minsky
  9. .ca is not a country. by BoomerSooner · · Score: 5, Funny

    You damn pot smoking Californians need to realize CA is not a country (as much as you wish it were).

    Just because you somehow tricked the powers that be into making a .ca domain YOU HAVEN'T WON YET. I'm looking forward to .TX for Texas to leave the Union (and take GW with them).

  10. If you want to participare in a public network... by TobyWong · · Score: 4, Insightful

    If you want to participare in a public network then they shouldn't be hiding whois information. Nobody is saying they can't run their own top secret nework (as I'm sure they already do to some degree) but participation in this giant public network involves some amount of conformance to standards.

    Any information that is so critical to national security shouldn't be on the internet in the first place.

    --
    - Toby