Slashdot Mirror
Whois Record Falsification Closer To Illegality
PipianJ writes "Reuters is reporting that the House of Representatives has recently passed the bill that would approve of penalties for those using fraudulent WHOIS records (H.R. 3632). Interestingly however, this does not directly outlaw it, instead extending the penalty by seven years for felonies performed using such fraudulent websites. The Senate has not yet passed their version (S.2242). The bill as originally written, however, focuses primarily on penalties for promoting counterfeit music, computer programs, and other media with identical labeling."
Fine spammers who use information in whois records, it might be more acceptable. As it is now, my choices are to do a domain by proxy or falsify (oops, typo!) some of my information.
...beacuse when you have to change your records, your gonna be swimming in it.
"I use a Mac because I'm just better than you are."
providing "555-555-5555" as a phone number or "Small Wok Way, Chopstick Town, WI" as a street address.
I need to change my phone no. and move now.
I'm sick of getting mail from "registrars" charging $40 and up for two year renewals and so forth. People wouldn't have to falsify records if ICANN did not require registrars to sell their records to whoever wants them. On that note, I'll probably move all my domains to Gandi as they begin to expire because of this (they allow me to exclude my records from the stuff they sell).
Also, will this penalize people who use their real names but false addresses? From the sound of it, it looks like it would.
US businesses that currently accept chip and PIN/signature
..watching them try to enforce it. It appears that the U.S, like other countries, has still not gotten the idea it's going to be nearly impossible to legislate the internet. I have a feeling this is going to be used more as one of those charges they use when they need an excuse to do a raid, and dont have enough evidence for what they're going for.
Disagree? Lemme hear it.
Before you mod me funny, think, perhaps I was insightfully funny?
How are they going to enforce it when a large portion of those registrants are actually non-US?
I will confess that much my knowledge of federal penalties is second hand, having lived with two former federal agents most of my life, but what good does this do, really? The federal penalties for most crimes seem to already be aimed at simply "crushing the perp and ruining him/her forever" rather than anything resembling pursuit of justice.
Yet another good reason to vote for Michael Badnarik in November. He wants to move us toward a system based on restitution, not simply locking the perp away and throwing away the key.
Click here or a puppy gets stomped!
This will only become acceptable if you cut down on the fraudulent abuse of WHOIS. For example the Domain Registry of America garbage. You also have to take into account annoyances. I remember originally having my authentic WHOIS info and getting called by people wanting to "buy" my domain, for a good price; and various other crap.
How about enforcing fines, penalties, and heck jailtime for all the fuckhead spammers (both V.AGRA and Register.com) who abuse the whois registry data? Or who want to charge you $10 to "protect your privacy" on top of your $10 registration per month? It's a shell game. I wish we still lived in some magical utopian internet bubble where only good geeks(tm) were on the net, but fact is we're up to our elbows in fuckheads and if I have to put in (555) because I don't want to be telemarketed.. well.. do something about the fuckheads and I'll put a good number in.
Mmm... now that's a mature reply.. "Congressmen, it's a principle of fuckheads. Take that to the floor!"
Thanks for your cooperation.
When you get to hell -- tell 'em Itchy sent ya!
"The government must play a greater role in detecting those who conceal their identities online," said Texas Republican Rep. Lamar Smith, a sponsor of the bill.
Scared yet?
http://domainsbyproxy.com/
Nuff said.
"On a scale from 1 to 10, people are stupid"
Some of us prefer to have our names listed as: Anonymous Coward on our website registrations
I register my domains at GoDaddy.com, and use DBP for my WHOIS information. I rarely get any spam coming through my mydomain.com@domainsbyproxy.com address.
At least with this legislative leniency, my approach won't be outlawed yet.
...I'm trying to conceal my identity online.
I have no problem with people knowing where I live and having my (now out of date) cell number, but I'll be damned if they're getting my fax number!
999-999-9999 FOREVER!!
No, no wait... what I'm really doing is stealing from Network Solutions, since I'm not paying them $9/year to hide this information for me.
Would somebody please show us where exactly the law prohibts registering with 555-555-5555 as a phone number?
I think we've got the wrong bill associated with this story.
Flat out and to the point: I have a right to privacy.
My domain is a personal one. It's not meant to be a high profile public site... I get maybe 5 anonymous visitors a month.. why should I provide valid whois info? I don't feel comfortable with doing that and I will NEVER provide real info.
Instead, how about making sites that involve monetary transactions register valid names?
I don't give a rat's ass if "this is the internet, it's public," my right to privacy is my own. If you don't like it, tough shit. If they wanna make it illegal, then bring it on - I still won't provide valid info.
What are they gonna do?
We have secretly replaced these Slashdot mods' sense of humor with a rusty nail. Let's see if they notice!!
"The government must play a greater role in detecting those who conceal their identities online," said Texas Republican Rep. Lamar Smith, a sponsor of the bill.
With all due respect to the Representative from Texas, I call bullshit.
I can understand the problems deliberately fraudulent registration information can be when trying to track down the owners of a malfeasant commerce site, but what about the option to reveal no information to the public?
This is the correct bill...
Check out the URL carefully. Unless you like penisbird, no clicky.
If you truly want a gmail invite and haven't gotten one yet, mail me. I've got a few.
"Regime change".
Weaselmancer
rediculous.
Set up some public keys for federal agencies, and let us post our info in encrypted form... they can read it whenever they want, and no worry of it being harvested by spammers.
I was going to put a sig here, but I had already submitted the message.
The Federal Anticounterfeiting Act of 2004, the bill that was *actually* linked to, is some scary stuff.
Writing a program like Daemon Tools (no, not the *IX suite of software, the CD image software) or bnetd (a FOSS Battle.net implementation) would become illegal, with a potential five year federal prison penalty.
Why have I not heard about this before?
May we never see th
I'm really tired of you trolls posting this... just stop.
As they demostrated by their voice (anonymous) vote. Not wanting to be accountable for thier actions. The "Voice Vote" itself should be outlawed.
Badnarik is the reason that I no longer identify myself as a Libertarian.
Okay, him and the knuckleheads at NORML.
Seriously, the guy is a tinfoil madhatter.
From now on, I am Independent.
We have two bills -- one of the two linked-to ones makes writing software like Daemon Tools, no-CD patches, and bnetd (a libre open source battle.net implementation) a federal crime.
The second bill makes not providing identifying information to let the feds track you down if they know what your website is illegal. (What if I want to speak freely, without fears of being harassed? I can post papers anonymously, but not be anonymous on the Web?) Add in the next obvious thing, a requirement for webmasters to log and be able to provide information for who posted something, and federal law enforcement can track anyone down.
Combine this with the fact that Cat Stevens just fell under the eye of the Homeland Security Watch List, had his plane diverted to Maine and was kicked out of the United
States. As far as I can tell, his main crime was criticizing US involvement in Iraq.
And Bush's polls are looking better than ever.
It's an authoritarian next few years for all of us...
May we never see th
But they the "House of Representatives" are "anonymous cowards" by the way they vote
I have my right to privacy, if this passes, it takes away that right by forcing me to give away personal information.
So all I have to do is take over Microsoft and set my laywers against the government to appeal dumb things like this that get passed.
For example, imagine a company that uses the address for a local bank in their program to harvest credit card numbers from web surfers. If caught the whois records add to the fraud case.
If this is the intention of the legislation, then enforcement is not a major issue...since it is something tacked onto other scams.
I'm really torn on this issue on the one hand I like privacy on the web.
On the other I would like to see people who run spamming and other illegitimate websites to be terribly molested.
Why not some kind of commercial website whois notice related to accepting funds or displaying product for eventual sale, just because lawmakers are concerned about creating a complicated law in this case they are losing sight of some of the major freedoms they are trying to protect.
Does this mean that the RIAA's plan to flood P2P networks with bogus songs is soon to be illegal?
The enemy of my enemy is my friend.
I thought this was illegal, I rem filling out something with some legal stuff when I signed up for my domains, and I was bummed that I would have to put my personal details out there. Then I found Domains by proxy and I didn't have to. So, I didn't break the law, but you can't find my name/address/email with a simple whois!
CB
free ipod and free gmail!
Though Bush is an mostly idiot, propagnada and control of the right news casts (fox, drudge, etc) do work in his favor. Something his advisors, and his daddy (ex-CIA) have learned over the years from our enemies and from his fundlementalist background. Peolple are losing rights, and corporate money is buying theselves rights at our expense.
I don't know whether this is good or bad. I could possibly gain security from the gov't's attempts to stop users from using WHOIS records falesly...ie. they might be using my name or phone number or etc. to do something devious. Or, will I be losing privacy because internet anonymity is slowly becoming illegal?
Fool, voice vote is invoked if there is a clear majority supporting/opposed to the bill in the interest of expediency. Anyone can call for a show of hands or ballot vote, and anyone can hear what their neighbors are yelling. Since their voting system is electronic and updates the score as soon as they vote, even ballots aren't anonymous. With good reason, it's public policy and they're accountable to their constituents.
how soon this congress and admin will outlaw that horrible chemical HOH. It is responsible for so many deaths and can hide terrorists activity. Perhaps, we can get this fine group of people to outlaw such a dangerous item. After all, it would be just about as easy to enforce this one as the whois record as well.
I prefer the "u" in honour as it seems to be missing these days.
but what about the option to reveal no information to the public?
Well, if you don't engage in any malfeasance, then you have nothing to worry about. As the submitter notes, providing fake information is not being outlawed. You only have to worry if your domain is used for illegal activity and you use falsified registration information.
Yet.
Funny - a few years ago it was legal to to reverse engineer things, and post the results. Now we have the DMCA.
I guess you can continue in your mistaken belief that what you do now won't potentialy be held against you later.
It's a crazy world, run by people who want to keep what they have, and gather more. If they think you or your 'innocent' doings threaten their way of life, your ass will be legislated to illegality in the blink of an eye.
After all, it's far easier to do what you want to people when they're all criminals.
Wait and see.
It's also massively perverted. While the popular example is pot- I'll give you the reverse. In Massachusetts, if you're caught drunk driving, you get a MAXIMUM of 2.5 years, $5k, license suspension for one year (unless you need to get to work- then you're eligible for a limited license after just 3 months, and if you have "hardships" you're allowed to get a limited license in 6 mo).
Keep in mind drunk driving is a HUGE cause of vehicle-related fatalities in the US; about 40%, and I believe that puts it at #1. 1.4 million people are arrested and charged with DUI every year. That is a -staggering- number; almost 1 in every 100 people has been charged with DUI.
Please help metamoderate.
domain sullust.net
status production
owner Andrew Francis
email locust@bur.st
title Mr
address PO Box 5009
city Dalkeith
state WA
postal-code 6009
country AU
admin-c locust@bur.st#0
tech-c locust@bur.st#0
billing-c locust@bur.st#0
nserver ns1.bur.st
nserver ns2.bur.st
nserver ns3.bur.st
nserver ns4.bur.st
registrar JORE-1
created 2002-03-25 12:35:22 UTC JORE-1
modified 2004-03-01 14:21:26 UTC JORE-1
expires 2008-03-25 06:35:06 UTC
source joker.com
I think this is the right way to go about this.
It shouldn't be illegal to falsify whois records. Lookup the whois info on your favorite pr0n site. I'll bet it's not a real person that you find. It should be legal to put false information into the whois database because sometimes you're better off without people being able to find out who you are.
It should be treated with the highest level of seriousness when someone hides behind false information to commit crimes, but providing that false information shouldn't be a crime in and of itself.
LK
"Hi. This is my friend, Jack Shit, and you don't know him." - Lord Kano
Government. Transgression...ex post facto. A nefarious spam-happy individual salivates. Your ears are burning. A black-robed magistrate is deciding malfeasance...the gavel falls, you're dumbstruck. Guilty. Falsifying information pertaining to a, " who-is, " registry. " Perhaps...you've carried this anonymity a bit to far ? "
Think now. Why would a culture thousands of years advanced, wait until say, circa 1800 San Francisco time, to fabricate eating utensils...hmm?
Plenty of time.
More toothless legislation.
Quite a lot of the spam I get these days can be traced back to registrars in India. How is this law going to to good in the US?
It's not. As usual.
as it stands, 1st of all, it is _not_ illegal to use fake WHOIS records, even under the provisions of the legislature being discussed. All this does is to add jail time (up to 7 years according to the wording of the bill) to those that then go on to use the fraudulent domain for spamming,fraud,con activities. It just makes the punishment for those that are already doing illegal things worse.
/.
i run an internationally political website, and if I used my real name, phone, address, etc, I would have been physically attacked, at best. This law does not affect me in any way as I am not doing any fraud, spam, con-games, nigerian emails, or what have you.
I would add that other laws that have been struck down HAVE made what I am doing illegal, fortunately nothing like that has stuck. In summary, the discussed law is not a problem for anyone, as long as they are not spammers, fraudsters, nigerians, etc.
Agreed, its a step in the wrong direction. But as for now, as long as you are not engaged in other illegal activities, you (should not) dont have to worry.
this merely adds penalties onto already illegal activities if you fake your WHOIS records.
I am not a lawyer, but I play one on
"The government must play a greater role in detecting those who conceal their identities online,"
Gee, how big of a role is the government going to fill here? Falsifying information on your reg for a domain is not just a trick that spammers and pirates use. People like me, who would prefer to not have my address and phone numbers posted for any stranger to look at, also falsifying or 'fudge' out records. This is surely going to have the privacy nuts in an uproar.
And granted, they state they are mainly looking for people who run pirate sites (music, software, etc.) who use false information in their registar, but I wonder what restrictions, if there are any, are written in to keep this and the government from applying this on a wider scope.
Eh, oh well, this should not amaze anyone I guess, in the days when Record Companies control what crap you listen to while giving hand jobs to paranoid government officials, we're destined to put up with this kind of non-sense.
seriously, the grandparent asked a serious question. you posted something that is useful to _nobody_.
way to take up space.
now im just feeding a troll (you), but seriously, 'regime change'?!?!? lets say that bush gets voted out, and kerry (most likely) gets voted in. will anything change in your life? betcha 10,000,000 dollars that your life will go on as normal.
prove me wrong, kids, prove me wrong - A. Tanzarian.
Hmmmm, so I wonder what happens when you register the domain in a real persons name then commit the felonies that brings down the legislation on their head. How long will it take the red tape to get sorted out on the first few cases before some innocent patsies get slammed?
Help find Sean Sullivan - Missing in California - Mirrors here and here.
I don't use valid records in most of my WHOIS records. I use one domain for posting to usenet, talking mainly about anti-spam stuff. I have another for mailing lists subscriptions. Yet another couple for seeding to spammer's "remove" forms. Then I have a number of personal domains. They all have common DNS records. I don't want spammers getting ahold of my personal information via my other domains. Spammers have a bad habit of attacking anti-spammers. I have also used the proxy registration options of my registrar, Godaddy. Unfortunately that doubles the cost of my domains and isn't very practical. Is there a solution that doesn't cut into your wallet?
The thing is I registered 22 domain names with bulkregister.com and 2 with stargate.com. Thing where good for about 2 years and then I moved into a new house, new town, same state. we where in the house for about 2 months (November 2003). Then all hell broke lose as a markiting target I became a hotspot for email, and now telephone marketers and most of it was due to 2 of my domain names. when I moved I had to chase down passwds and account names for 3 different registrars and I changed the contact info for all of them and luckily I had everything available and not in boxes.
o is/Arc01/msg00028.html
So to get to the point here with a law that makes fraudulent whois records a crime at what point dose not updating records make you a criminal?
And I didn't sigh on to opt in on every email list selling sex, drugs, or rock and roll or any other possible thing in the world that's hitting my spam filters
Domain names are not merely the objects of trademark disputes, they are also important facilitating elements for online speech. Just as it is legal to publish a book or broadsheet with no indicia of authorship or publisher, it should be legal and possible to publish a website or other Internet communication without such identification. Indeed, in the United States, anonymous speech is a constitutionally protected right. Most domain names do not conflict with trademark rights, and ICANN would be overreaching its mandate to subordinate broad free speech interests to this relatively narrow concern.
Above taken from: http://www.dnso.org/dnso/dnsocomments/comments-wh
Support Free Trade Campus
get a free account Now!
some how this got posted to a wrong artical a bit ago I hope it's going to the right place now? I don't need the bad karma if it's not
I'd Tell you all my secrets but I lie about my past
I'm all for strict drunk driving laws. In Virginia, where I live, you don't want to get caught on a DUI, especially if you're an incorrigible offender. There was a guy from NC who got slapped on the wrist 8 times in NC for DUIs, when the VA state police caught him in Southern VA, and found out about his previous **8** offenses he was arrested, his car was seized, his license revoked for a long time and last I heard he was sent to rot for 5 years on a felony sentence in a state prison. DUIs can and often do result in very dangerous, at a minimum criminally negligent acts, so I see no problem with severely punishing people after the first offense if they managed to not harm anyone but themselves.
:)
But with white collar crime, like copyright infringement and this area, we have to be very careful. People often do recover quite easily from white collar crime, but violent crime when successful usually does lasting damage. Someone gets maimed or killed. That's why I think that with white collar crime the better approach is make things like fraud weak charges in and of themselves, but make the penalties increase rapidly for people caught committing them en masse or repeat offenders.
Do I think a spammer who operates one fradulent site should get sent to the pokey for 5 years? Absolutely not unless they did a lot of really bad stuff from it. However, someone operating a whole chain of them I'd lock away very quickly.
The best longterm solution for all of this, though, is to keep the laws simple, easy for the public to understand and as enforceable and compatible with the more decent side of human nature as possible. But then again, that would kill most trial and defense lawyers' careers quickly. The public, at least IMO, won't benefit from this law. What the public needs is for the Congress to rewrite the fraud laws from scratch in a way that makes perfectly good sense for our circumstances today, and that the average person can follow. We need to move toward a system where the laws are well-written by design, I mean why do we have all of these "loopholes" that keep getting closed?
Maybe another part of the solution is that the Congress should meet for one month a year to discuss the budget, hear public complaints about the laws, and then either take another month to pass reform measures or go home. In VA, our assembly cannot be busy bodies like the Congress, the General Assembly meets only about 1 month or so a year
Click here or a puppy gets stomped!
I don't really care if the domain manager knows my home address and e-mail, but why the hell to does the whole goddam world have to see it?
Table-ized A.I.
"I wonder exactly what makes a record false"
My name is Nobujuta Mussabi, Recently VERY bad things have happened to my father, OKIMBE mussabi. OKIMBE had nearly 10,000,000,00 EUROS in a swiss ACCOUNT. AS he has most UNFORTUNATLY been killed in a PLANE CRASH, I am unable to ACCESS the money. as their is a civil war in my native country of SIERRA LEONE i am UNABLE to access his TREASURE. if you would SEND ME 10,000 for the TRANSFER FEE, i will SPLIT the money.
Please see my 'fake website URL here' for info on how YOU can profit from my misfortune!!!1!'
---
Im sorry, I got carried away. what was your original question? oh yeah, "I wonder exactly what makes a record false.". If you are wondering, they are currently doing. and they aren't nice about it.
"I'm a hardcore libertarian and I'm saying this! My reasoning is that I don't think there's a "right to lie". In fact, I think most lies border on fraud to begin with. I can't support anyone's right to falsify WHOIS records anymore than I could support their right to falsify their personal resume or travel under a false identity."
i am also a hardcore libertarian. I, for one, dont believe any governemnt (or international body) has any business checking up on me. If you dont like the information I provide, then dont use it. If I enter my name as John Doe when it really is John Deer, what business is that of the government, be it the UN, US, or what have you.
I prefer to remain anonymous, as long as it does not infringe on anyone else's rights. A _true_ libertarian would agree.
The IETF's CRISP working group has developed a replacement for whois: IRIS (Internet Registry Information Service). IRIS allows for different levels of access, so that you don't have whois's "all or nothing" response any more. This will help protect record details like addresses from harvest by J. Random Abuser (spammer, what have you). This is goodness.
I assume that the law enforcement agencies in the country in which the registry is domiciled would have to provide the highest level of access (equivalent to the current whois), but that other LEAs would have to go through the country of domicile.
This is speculation, though; ICANN/registry/registrar policies may make it easier or harder.
You're free to withhold all the information you want from the domain name registry- and not have a domain name. This will not impede your use of the Internet or operation of servers in any way; you'll just have to use your IP instead of an easier-to-remember character string when you want to link someone to your server. Think of it as the Internet equivalent of an unlisted phone number.
You have a right to privacy, but you don't have a right to a domain name.
You can vote for whatever candidate strikes your fancy. AAMOF, I am very happy that you are voting at all, which is more than most people in the US do.
But think about the real outcome of voting for a non-Kerry candidate. If you agree with me that Bush must be ousted from office, voting for any other candidate besides Kerry serves no purpose other than to dilute the non-Bush voter support, thus Bush is even more likely to win the election. In my opinion, Ralph Nader's presence on the ballots pulled just enough support away from Al Gore to keep Gore from winning the 2000 election. Thus, Bush took the prize.
Let's play Four Horsemen of the Apocalypse. I'll be Pestilence.
Since when has anyone babysat on their representative's "voice or hand counted" votes? Show me the trail, electronic or otherwise on who voted which way and I'll conceed. But I and the majority of the public remains sheltered from this information.
This is absolutely insane... You are a criminal, for doing nothing more serious than wanting a domain, while not wanting to be trivially-easily identified with that domain.
Any such law would be the beginning of the end of personal domains, which is probably the true motive of the big companies behind the scenes, asking for the law. Domain names are so cheap anyone can get a few, but it's expensive for a company to have to sue you to get it (and they've been loosing more and more), so in the future, they can just take it, based on a technicality.
Yes, I understand the need to be able to contact a human. In that case, a vaild email address should be fine, and everything else can be fake. It's not as if law enforcement can't find the real source, if they actually have reason to suspect you of a crime.
This is just another attack on privacy, since the courts said you can't be forced to provide your real name when requested online, this is the next best thing for tracking individuals.
Slashdot gets worse every day... Pipedot: News for nerds, without the corporate slant
STEAL their domains.
There should be an agency that attempts to confirm WHOIS records. If the information given is false, or the individuals cannot be contacted - the domain DIES.
"...Well, there's egg and bacon; egg sausage and bacon; egg and spam; egg bacon and spam; egg bacon sausage and spam..."
Let's outlaw more stuff we don't understand.
Congress should pass a law requiring them to repeal two old, stupid laws for every new one they enact. (That's Bill Maher's by the way--one of the political and comic thinkers of our time.)
If the framers had been able to predict what was going to happen, they'd have started a 4th branch of government, the sole purpose of which is to go through existing laws with the power to strike out the old, the irrelevant, the conflicting, and make it understandable so that the common citizen could actually understand the law well enough to abide by it without having to keep a $1000/hr lawyer on retainer.
but have you considered the following argument: shut up.
I registered oleg.ws and now I am in a world of pain. Thanks for those yahoo filters. I think there should be an option for non-commercial (non-.com?) users to hide the info but disclose it to people who make a personal application with a legitamate concern.
As for seven year prison sentence, that's awfully harsh for someone who merely causes an annoyance. Make them do something to compensate the society - like secure public school/library computers - 8hr/day each weekend for a couple of years and most of them will get the message. If they don't and screw up, then put them in jail.
Jerky Boys' Chickety China the Chinese Chicken
"You press Staaar-Seven-Two-Three."
Probably the only really funny thing the Boys produced.
Zodiac Survey
I've got to wonder if politicians have any idea what these tech bills are actually talking about.
Some registration and hosting companies will hold your details on file but put their own contact information in the whois records and forward and legitimate communications to you. Domains by Proxy specifically advertises such a service but some hosting companies will do it on request.
The WHOIS records aren't a legal declaration of your True Name, True Legal Domicile, Phone number you agree to be reached at 24 hours a day by anyone who wants, ICBM address, Subpoena Acceptance Address, Mother's Maiden Name, Fingerprints, and RIAA pre-approved guilty plea that you give The Authorities in exchange for permission to speak on the Internet. They're simply administrative contact information people can use to try to reach you if your system is having trouble. There's a billing address there so that the Registrars can reach you if they want more money. There's a technical address to reach you if things are broken. There's an administrative address for general administrative requests. If somebody can't reach you because your information is out of date or incorrect, that doesn't mean you're an evil miscreant, it just means that you won't get proactive billing notices, and if your DNS isn't working right, people can't reach you to let you know.
It is possible to give the registrars fraudulent information - if you're impersonating someone else who really exists, but that's adequately covered by existing fraud laws. But if you give your name as "Johnny Smith" and put your address as "111 Main Street, Bogustown, USA" or "1600 Pennsylvania Ave, Washington DC 90210", that's nobody's business, that's just not a very useful contact handle you're giving somebody. If your payment to the registrar works, it works. And here in California, it was common-law right to use any name you wanted to except for purposes of fraud, though apparently the DMV got that changed a decade or so ago and insists that you need papers from some government or other to have a name.
ICANN seems to have been one of the early prime movers in True Name Whois Information, in spite of the damages to privacy that it causes (e.g. spammers hitting your published admin address.) The "IP" that they're interested in has always been "Intellectual Property", not "Internet Protocol", and they're really grouchy about the concept that anybody could ever use a domain name without agreeing to provide an always-updated True Name and Legal Process Server Address so that trademark owners can find you and sue you if they think they've got a claim on a domain name you're using. More recently, though, the RIAA/MPAA have taken up the cause, because they want to be sure that if you ever even think about sharing copyrighted music on line, they want to be able to drop handcuffs on you. If there's a dispute about domain name ownership, and your Registrar is unsuccessful in contacting you using the contact information you provide, for some reasonable period of time, it's reasonable for them to bounce your domain name.
On the other side of the argument, while I strongly value privacy, most of the time when I try to track down spammers using whois records, the information is bogus, which is annoying, and it's almost always either obviously bogus or else some foreign address that looks hard to track down. The main exceptions are in-your-face spammers like Spamford or Scotty Richter, and spammers with corporate shells to hide behind (e.g. one spammer had a mailbox at the street address of The Company Corporation, which is in the business of setting up cheap Delaware corporations), so they're effectively untraceable.
Meanwhile, if you're a "hardcore libertarian", you need to think about what rights mean. Saying somebody doesn't have the right to do something isn't just a statement about ethics - its equivalent to saying that you have the right to beat them up if they do it. Falsifying your personal resume is attempting to deceive somebody about your skills so they'll give you something that they wouldn't if you'd been honest, and of course that's wrong.
But "Trav
Bill Stewart
New Fast-Compression-only CPR http://preview.tinyurl.com/dy575ks
Learn how Congress works before you try to criticize its processes.
Votes can be taken any number of different ways in the House:
1. Voice vote
2. Divison
3. Recorded
A voice vote is almost always used in the first place, if it's overwhelming, there's no point in wasting time going any further.
Any member can then demand a division, where by those in favor rise, those opposed rise, and are counted, but their votes are not recorded (but the press and others will always note who voted which way).
Then, any member can request a recorded vote, which must be supported by at least 1/5th of a quorum (the rules are slightly modified for any votes by the Committee of the Whole), and then votes are taken by electronic device and officially recorded as to who voted which way.
You can be assured that for almost everything other than entirely non-controversial legislature. Also, most bills regarding income tax increases, and other fiscal measures automatically require a recorded vote.
What?
It's better to be able to simply not provide a phone number, but that's available if the registrar has an automated form that insists on something. (Kind of annoying if your main phone isn't part of the North American Numbering Plan and the web page is over-enthusiastic about validation.)
Bill Stewart
New Fast-Compression-only CPR http://preview.tinyurl.com/dy575ks
I hear Dan Rather has a new story brewing on record falsification.
The government doesn't actually need to legislate anything on the internet. They can destroy the parts they don't like and legislate the parts which they deem useful (and controllable).
You have a right to privacy, but you don't have a right to a domain name.
We have every right not expressly granted to the government in the Constitution, and not specifically given to the government by ourselves through our legislators.
Too many people these days think that the only rights we have are those listed in the First through Fifth Amendments, or derivative rights. This isn't true. Refer to the Ninth and Tenth Amendments if you think otherwise.
Max
My god carries a hammer. Your god died nailed to a tree. Any questions?
what's wrong with creating a junk corporation in some republic of vanuatu etc and using that as the registrant? aren't corporate entities legal persons also?
now if (hypothetically) i were to create a website about the political situation on country A, saying that the government was being run by gangsters or other such interests and put it online. now the gubmin or the powers behind it decide that i need to be taught a lesson. so they get the whois records out of my domain name, and some Really Large Individuals pay me a visit at night and express their displeasure at my actions in extremely personal and forceful terms
or take it the other way. you see a website done by/for some gorgeous geek chixx0r, you look up her name, address, fone number on the whois and off you go.
something tells me they REALLY didn't think this through
Suchetha
learn from yesterday, plan for tomorrow, party tonight
or one out of three ain't bad
The one time I've had my Miranda rights read to me, the cops violated them and the Federal Privacy Act after we got back to the cop shop, or as the sergeant said "This isn't a threat, it's just a choice you can make". (I'd been photographing misbehaving small-town cops, and they didn't appreciate it, but this was pre- Rodney King, so it was easier for them to get away with things, and I was supposed to go on vacation the next day and didn't want to spend the weekend in jail instead of getting on my plane, which the cops were quite correct that they could do.) Charges were later dropped, but it was annoying.
Until the recent Hiibel case , the courts were really clear about this; it's an ugly mess, and the Supremes upheld an Nevada law permitting cops to ask people to identify themselves, in spite of the fact that that's not what the cop did in the events under consideration.
Bill Stewart
New Fast-Compression-only CPR http://preview.tinyurl.com/dy575ks
He has made a bunch of statements opposing terrorism over the years, including the recent school invasion in Russia and the 9/11 attacks and the US invasions of Iraq.
Bill Stewart
New Fast-Compression-only CPR http://preview.tinyurl.com/dy575ks
Spammers' favorite big registrar! Spammer location obfuscation! Boo! Evil Protectors of Miscreants!
It's the same thing, of course - some of the biggest users of privacy are annoying resource thieves. Oh, well.
Also, GoDaddy is a US company, so anybody in the US who wants to drop legal papers on them can pretty much do so, so your activities may not be outlawed yet, but that could change, and you've got no protection for any useful information you've provided them if you do. For a while, Gandi.net was the politically correct choice for registration - they weren't Verisign, did good customer service, weren't Verisign, were based outside the US so you have to trigger two governments' stupidities before you get hassled, weren't Verisign, charged a reasonable fee (12 euros was pretty low back then, though others are lower), and they weren't Verisign. OpenSRS seems to be the current politically correct approach more recently.
Bill Stewart
New Fast-Compression-only CPR http://preview.tinyurl.com/dy575ks
That's true for swing states, but if you don't happen to live in one of those, you may as well vote for the person you think will be the best candidate regardless of party affiliation. Otherwise the two parties get the message from the voting public that the two parties are all they really want and have no incentive to adapt to reality.
Keith D.
Here's my solution. First, I pay for a PO Box. It's not too expensive and it's a legal address to register domains. So whois returns the PO Box as the contact address. I also use the PO Box for other things like the university after finding they sometimes "accidently" publish your home information even if you've requested it to be private. In order to get a PO Box, you give your real street address to the post office, so should the feds breathe down your neck, they can't claim you did this to avoid being tracked down. All they'd need to do is get your PO Box registration from the post office to find out your street address and I'm sure they have routes for this.
Second, for phone number, use areacode-555-1212. This is a directory service similar to 411 but localized by area code. If you have a listed number, the interested party would have to pay to use this number to get your listed number. This cuts down greatly on telemarketers who do not wish to pay the fee very often. Also, if you have an unlisted number, this service will just say that. Again, the feds can request even unlisted numbers directly from the phone company so using this phone number does not prevent them from getting your real phone number.
So really all you need to reveal is your real name when you register the account. Some may be a bit leery of even this I know. But my point is in the context of this proposed law. IANAL, but it seems to me that as long as you register using your real name, a PO Box and the 1212 number, the feds would not have a claim to say you falsified your registration. To do so, they'd have to outlaw all anonymizing registatration services that put a middle-man address/phone number into the whois record as this method is basically a free way to achieve the same effect.
$20 per *month* to protect your privacy?
I think the going rate is more like $20/year for proxy-registered domains, and that'll probably drop in a few years once competition increases. Considering people used to pay $35 a year for just the domain, that's not exactly an insanely high price. And, for that matter, if you can't afford an extra $.83 a month, maybe you have other priorities to focus on besides your website?
GoDaddy actually has a good domain "whois" information protection built in - by making you type in a random password to continue to get to the information.
This should be required by all websites/registrars that link to the whois database.
I think what you do is a little overkill.
Can you confirm though that your speaking out against spammers has actually increased your junk email? I have been tracking a spammer in my home state and I have suspected the same.
Yell & scream & rant & rave... it's no use... you need a shaaaave ~ Bugs Bunny
so... do you want a medal for that?
why is this 'Interesting' anyway?!?!
The reason for "federalizing" laws which already exist is simply to expand the powers and general scope of the federal government. Look at the incredible (exponential?) growth of the US federal government over the past century. History shows that the powerful elite are uninterested in repealing laws or reducing the scope of government. They are here to add new laws and secure more revenue, and further entangle themselves in the market (aka the cookie jar). There's a reason why governments expand over their lifetimes -- because it benefits those in power.
I find it a bit curious and well ludicrous that our overpaid legislators would be so concerned over incorrect or false information on whois records but allow for the falisification of caller ID on our telephones.
Hmm, maybe it's just me but I would think MORE people in America would benefit from non-fradulent CallerID (Darn them telemarketers) than from what the heck a whois record says. Most internet users (even if they own a domain) don't know what WHOIS records are anyhow.
..the law in no way requires you to PROVIDE information. It simply requires that information that is PROVIDED must be accurate. From the actual bill:
(6) the term `counterfeit documentation or packaging' means documentation or packaging that appears to be genuine, but is not.
If I list my Address as "1234 Testing Lane," I'm in violation. But if I list it as "Not Disclosed", I don't believe (IANAL) that I am. Same goes for name, or listing the name as "System Administrator." E-mail could be listed as "whois@mydomain.com," which would be legit if that was a real e-mail address...
I don't know a way areound the phone number issue, however. I believe that listing "not disclosed" as a phone number would be within the law, but I'm not sure a registrant will accept that if they validate phone numbers...
"The bill as originally written, however, focuses primarily on penalties for promoting counterfeit music, computer programs, and other media with identical labeling." So promoting (ie spreading/sharing/p2p'ing) files that are not what they appear to be is illegal? Does this make the RIAA's activities of spreading fake files on p2p networks, illegal?
The bill as originally written, however, focuses primarily on penalties for promoting counterfeit music, computer programs, and other media with identical labeling."
Would this include the practice that some music companies have of sharing mp3 files that are the same size as genuine files but 95% static?
I believe that if I get busted for let's say warez that illegal whois information is going to be the least of my worries.
Another crappy law that won't actually do anything about the situation.
Now offering a gmail invite to anyone who completes 1 freeipods.com offer using my referral link below.
http://jayceecorder.blogspot.com
Yeah, those powerful elites just loved the New Deal, environmental regulations, labor laws, civil rights, regulation of stock markets, etc...
The real problem isn't false information in WHOIS databases. The real problem was allowing every stock broker with a geek relative to set up a registrar. I don't remember there being a Constitutional right to have a domain name.
In the beginning the internet was ruled (for the most part) by technology people, for technology people. The technology people did a reasonable job keeping their own arena in check. Wall Street showed up when they saw potential dollar signs. The technology people held back, forcing Wall Street to jump through hoops and hurdles to come up with funding and learn the jargon and the ways of computer science. This was wholly unacceptable to Wall Street as it was standing in the way of the technology bubble which would make them extraordinarily rich. Wall Street worked diligently through Congress to use public tax money (namely 401k funding) to subsidize the explosion of companies in the internet sector who both provided the equipment (personal computers, Windows support), the services (ISPs), and the content (web sites) for the web. As more people swamped to the network they learned about domain name registration and everyone wanted to be cool and have one. Domain name registration was no longer NSF subsidized and Wall Street quickly realized that being a registrar was a profitable endeavor. I feel that domain name registration should have remained subsidized to force the politicians to consider the result of their actions. I pay tax money. What's changed between now and '92?
The real problem is not the pollution of WHOIS databases. The real problem was the underhanded pillaging of public tax money to bring everyone, good/bad/indifferent, to the open network. If left to its own methods the computing industry would have evolved much more productively. There would never have been a complete sanitation (USENET trolls, a little spam) but the signal to noise ratio would have been preserved as much higher.
+++ATHZ 99:5:80
> ...penalties for promoting counterfeit music, computer programs, and other media...
Oh, I think I'm going to just love seeing this language frame the intellectual property debate. Let's nip this one in the bud people--it is not the music that's counterfeit; it's the digital "right to use" that is counterfeit.
Never forget it.
jhw
civil rights
This isn't an expansion of government. Government cannot pass laws to "create" civil rights. Rights are derived from the reality of human nature, not government. As much as they want you to believe that government is the source of freedom, the opposite is true. We are born free, and from there we can only lose freedom. Government cannot "create" rights, any more than the mafia can create rights. They can only destroy them.
Mr. fuckhead here didn't preview his comment sufficiently, c/month/year :-p
And no, I don't think I should have to pay for a protection racket..
You have a right to privacy, but you don't have a right to a domain name.
I also don't have a right to a cheeseburger. I do have the right to go buy one from anybody that will do business with me. Getting back to the domain issue, I can also put in fake address info, fake email and a fake name, and that's fine. The registrar won't care, so long as they're paid, and apparently, neither does the government, so long as i'm not ripping people off.
I still object to this law, since it's just another boat anchor that they can use against me, shoudl they choose to harrass me, whatever the reason.
"We returned the General to El Salvador, or maybe Guatemala, it's difficult to tell from 10,000 feet"
I didn't falsify my records when I started my sites.
I have moved twice since then. Somehow - I keep forgetting to update the records...
_ _ _ Go for the eyes Boo! GO FOR THE EYES!
I guess there are a couple of things you could do, but after your children start getting harrassed at school you probably find a lawyer and try to get the site taken down. Sorry, that domain is registered to "N.B." with no address - can't contact them and the registrar isn't cooperating. It's against their policy, and besides, they don't really have any better information than what is on WHOIS. Your lawyer suggest you change your name and move to a new city because that is the best that you can do.
Can we talk about Everyone should be allowed to (and is) publish their opinions anonymously, that's what America's about. in a little different context now? Sure, they have broken some laws, but so what? You can't find them and they can freely continue.
I run several sites, some of which contains information that some people do not like. I provide true information in my WHOIS record, but I am considering changing it to protect my privacy (WITHOUT HAVING TO PAY EXTRA FOR IT). I think I should have a RIGHT to privacy, not the ability to pay for a service to provide the privacy that I have a right to. The problem is that with valid information in my WHOIS record, anyone who doesn't like the content of my site (no, nothing about WAREZ or piracy or terrorism or anything like that) can call me up and harrass me about it.
I have gotten calls at 2 in the morning and people who mess with me simply because they have access to my information. I have a right to not be harrassed or attacked. Calling the police or phone company is a waste of time. I just want the RIGHT to privacy that our forefathers established for us.
Is that really so much to ask?
--- The revolution will be digitized! - http://www.binrev.com/ ---
I think laws like this are crap. If you want to make something illegal, just make that activity illegal. Don't make ancillary activities part of the crime.
This is just a way for them to "tack on" all sorts of extra time to your jail sentence. If we really wanted the crime to get that sort of jail time, why not simply up the penalty for that specific crime.
Here in Washington State we have this thing where sex offenders serve their prison terms, and then are kept in "civil confinement" until they have been "rehabilitated" enough to be back in public (and living down the block from your kids.)
Now, obviously nobody wants a sex offender living next to them. But wouldn't it be a lot simpler and saner (and legaler) to simply increase the penalty for the crime? Don't rely on some after-market bolt-on to provide justice. Make the penalty for child molestation life in prison. Trust me, the public would support that!
This is just infuriating to me. If we want to increase the penalty for armed robbery, let's do it. That would be a lot simpler than passing some law which adds time to your sentence for possesion of a handgun while you commit your crime. (And you don't even have to use the handgun, or brandish it; simple possession, which is one of your Constitutional rights, will get you more time.)
No matter how many laws the legislature passes, there's still going to be crime. All this does is make more paperwork, more red tape, and more little options they have for throwing the book at you. We should eliminate these "enhancements" and simply modify the penalty to fit the crime rather than these back-door methods which can be used selectively and in discriminatory fashion.
"www.lanwars.org"
i just went to your website. looks ike you got owned buddy!
Really simple solution for the registrars:
I give them my real info, they provide fake info. Or I get to continue to fake mine.
IF SOMETHING GOES WRONG the authorities can leave a message with the registrar who will contact me and tell me to check my messages. I will gladly talk to them if I hear of any problems. In the meantime, sorry Dotster, your monthly newsletters don't even show up in my Inbox anymore.
If the authorities want, they can yank the website after two weeks of no response from the owner. Or the registrar can choose to give up the owner's info at any time. Who would you register with? Someone that promised to keep your info private or someone that handed it over the very second the feds asked for it?
However, there are also people that are doing things online that, if they were done on a streetcorner, would get them arrested. They "know" that they cannot be caught, punished or prosecuted in any way because "online" is a law-free zone.
Why should this be the case? This means that not only spammers and the like can hide in plain sight, but also people that are actively making the Internet truely horrible are allowed to continue. Their actions are decried by governments and corporations alike and, unfortunately, those are the folks that can actually do something to change the nature of the Internet in ways that will be worse for everyone. For example, what would it serve if in order to register a domain you had to be registered as a business? Well, for one thing it would cut out kiddy-porn vendors and 19 sorts of scammers. But, it would also affect a lot of individuals.
I'm all for people protecting their privacy, but owning a domain and being private are not necessarily the same thing. Being able to hide your identity while posting on various dicussion boards is fine. Being able to set up a store where people can buy perscription drugs without a prescription for 10x the normal price isn't fine - but it is almost impossible to track these people down given the current system. Warez boards can be considered a true benefit to society - until you are a software developer with your sole income from sales of software.
I think the best example of this is where someone decides in a vindictive moment to register a domain "johnsmithsucks.com" and puts up pictures of John Smith and his family. Photoshopped pictures. Obscene photoshopped pictures. And amusing stories about John, his children and their dog. Try getting such a thing shut down if you have only "N.B." as the name on the domain registration. Yes, you might be able to track down the hosting, but maybe they are unhelpful or a bargin hosting company in Korea. You might be able to get it shut down, but I doubt it without an incredible amount of work. It would probably be better if you just left down quietly and changed your name.
Is this fair? It can happen today. Would you laugh if it happened to your neighbor? Sure you would, admit it.
"Federalization" also comes from the grass roots. People are not getting what they wanted from their state legislatures so they turn to the Feds.
I'm sure they will have fun trying to enforce valid WHOIS data. I 'm curious how privacy protection measures will be addressed with this legislation. I use RegisterFly's WHOIS protection service http://www.registerfly.com/protectfly/index.php. Their info isn't fraudulent, but technically, the data doesn't accurately correspond to the true owner.
By "people", of course, you are referring to those who wish to initiate force as a means to an end. I would humbly request that you define the group in real terms instead of implying that all individuals ("the people") fall into this group. Believe it or not, there are people who actually don't want or expect anything from government, and demand to take 100% responsibility for their own lives. (I know because I'm one of them.)
If I'd meant "all people" ("the people"), I would have said so. Some people are not getting what they wanted. "People are dying" does not mean that we are all dying; it means "there exists a nonempty class D of people such that all members of D are currently dying," which does not deny the existence of some other nonempty class L containing people who are not currently dying.
I honestly don't know what to do for people who don't want to be part of a society. I suppose we could all get together and set aside a place where all governments have agreed not to go or claim. I don't want to live there myself, though, as I expect it will turn out rather like Heinlein's "Coventry".
Oh, I want to be part of society. And I am. I am quite capable of engaging in moral, productive interaction with others. And I do. Yet I still oppose the initiation of force as a means to an end (i.e. government). Were you trying to imply that government and society are the same thing?
What I don't want is to grant ownership over my life and body to anyone but myself. Were you trying to imply that an individual cannot possibly interact morally or productively with others without the "aid" of government?
Government is not morality. Government is pure force. Human beings are quite capable of making moral and rational decisions without being ruled by other human beings.
I mean to imply, in fact I will assert, that two or more humans cannot live in contact with one another for an extended period without forming a government. Every society has rules, and some of the rules are always about punishing and/or ejecting members who won't follow the rules.
I utterly reject the notion that government==force. Government is people working out norms of behavior and abiding by them.
You have the whole ownership thing backwards. WE own our GOVERNMENT. Sometimes the people we hire from among ourselves to embody our government's purposes need to be reminded of that, but that makes it no less true.
Human beings have proven through millennia that they are NOT capable of always making moral and rational decisions which will be universally accepted by their fellow human beings. That's why we have laws, and lawbreakers.
Try making a society that has no rules. Just try.
> ... registrar isn't cooperating. It's against their policy ... ... that is the best that you can do.
> Your lawyer suggest
The lawyer can get a court to order the registrar to reveal the info in the case you describe. Most probably if registrars held identifying info that was not made public in whois then they would have policies to avoid needing court order for most things.
In fact there are ways to register a domain by proxy, that is, someone else (third party)registers the domain for your use, and your contract with that third party is what defines your right to use the domain. The third party's identity and contact info is in the whois, and in most cases the third party can also perform additional administrative stuff for you related to the domain.
I think the way whois is published can be changed so that privacy of domain owners is beeter kept, and at the same time fuller and more accurate identifying info is kept in record. It can be open to the public without being open to spambots. The only difference would be in how that info is requested.
I utterly reject the notion that government==force.
That's exactly what government teaches you, isn't it? Why don't we ask one of the thousands of civilians who've had thier house and land confiscated through "eminent domain"? The idea that these people somehow "agreed" to have their land confiscated before purchasing it is laughable. Nobody in their right mind would purchase land they know will be stolen later on. That's exactly what you propose, isn't it?
In reality, the social contract theory is void, and always has been. There are exactly 2 modes of human interaction possible: voluntary association, and involuntary association (force). The modes are mutually exclusive -- you cannot interact both ways at the same time. Thus, every possible human interaction falls into exactly one of the two categories. Agreed so far? Now, the social contract theory proposes that we "volunteer" to interact through force (to submit to rule by force). This is illogical. You cannot volunteer to be forced, any more than you can force a person to volunteer. Therefore, the social contract theory is void, and the reality of government is obvious. We submit to government because we are forced to submit, not because we "volunteer" to submit.