Slashdot Mirror

← Back to Stories (view on slashdot.org)

Shielding Domain Registration Info?

Posted by Cliff on from the anonymous-to-whois dept.

occamboy asks: "I'd like to register a new domain, but I'm tired of getting tons of spam (most filtered, but some not) and snail mail whenever I register a new domain. In short, I'd like the domain, but I don't want to announce the details of its owner to the world. I was thinking of using GoDaddy's domain proxy, but the terms are scary: they reserve the right to change the agreement anytime, by posting the new terms on their site, and the buyer automatically agrees to the new terms. What's to prevent them from grabbing my domain name from me, or doing some other nefarious thing? So, is there any good way to anonymously acquire a domain? Should I just register with fake info, use a service ... or what?"

14 of 93 comments (clear)

  1. Sneakemail it by polymath69 · · Score: 4, Informative
    This won't do anything about the postal spam, but give your email as a sneakemail address. Then whenever that address gets harvested for spam, you can cancel it, set up a new one, and update your whois record.

    It will still get harvested... but you'll probably only have to cycle it a couple of times a year. The three or four spams a year that'll get through is probably negligible.

    This is a good strategy for /. email, too.

    --

    --
    I don't want to rule the world... I just want to be in charge of mayonnaise.
    1. Re:Sneakemail it by Mr.+Slippery · · Score: 3, Informative
      Why is it so hard to have one set of private records for the registrar and another set for the public and to do it without charging an extra $10/yr per domain?!

      Because running a domain is a responsibility. As RFC 1591 puts it,

      Concerns about "rights" and "ownership" of domains are inappropriate. It is appropriate to be concerned about "responsibilities" and "service" to the community.

      If you don't want the responsibilities, including making contact information available, don't have your own domain. Or hire someone to perform those responsibilities for you.

      --
      Tom Swiss | the infamous tms | my blog
      You cannot wash away blood with blood
  2. Re:Use fake information by brewthatistrue · · Score: 5, Informative

    well, if you are worried about what agreements you are entering into, ICANN requires valid contact information. How often your info will be checked for validity varies, but if you get caught with fraudulent info you can lose your domain. http://www.icann.org/registrars/wdrp.htm http://www.internetprivacyadvocate.org/ProtectYour PersonalInfo.htm (urls via google keywords: whois contact icann)

  3. GANDI by 0x0d0a · · Score: 3, Informative

    You said that you were worry about proxies -- I have secondhand that GANDI is a good registrar -- prices slightly higer than GoDaddy, but significantly better (as in favoring the user versus the registrar) policies. Not sure if they provide a proxy service.

    --
    May we never see th
  4. Re:namecheap! by adam+mcmaster · · Score: 4, Informative

    RegisterFly.com offer something similar, only $1 to protect each domain. It puts something like this in the whois record:

    Registrant Contact:
    RegisterFly.com - Ref# 11453500
    Whois Protection Service - ProtectFly.com (11453500.fly@spamfly.com)
    +1.2122952121
    Fax: +1.2122952153
    230 Park Avenue
    Suite 864
    New York, NY 10169
    US

    That email address gets forwarded to your actual address, and it changes every so often so you don't get spam to it.

  5. Lawyer by Detritus · · Score: 2, Informative

    If you're serious, you should talk to a lawyer. He should know the proper, and legal, ways to register the domain so that the contact info points to your legal representative, not your personal info.

    --
    Mea navis aericumbens anguillis abundat
  6. Some TLDs allow you to withold your details by dizzyduck · · Score: 2, Informative
    Nominet (administrators of the .uk TLD) allow individuals to withold their personal details from WHOIS via the Registrants Online interface. The only visible information is your name.
    Registrant's Address:

    THE REGISTRANT IS AN INDIVIDUAL WHO HAS ELECTED TO
    HAVE THEIR ADDRESS OMITTED FROM THE WHOIS DATABASE
    --
    Allergy advice: Contains eggs.
  7. Privacy by rawg · · Score: 2, Informative

    For email, I setup a email address that only receives mail from the registrar. All other email is bounced.

    For my phone, I'm on the national do not all list. That's an $11,000 fine if someone calls me to sell me something.

    My home/business addresses are not really a problem. The only crap mail I get is from Domain Registry of America. I use junk mail to start my fires when it gets cold. The amount of junk mail I get makes it real easy to start the fire on the first try.

    --
    The above is not worth reading.
  8. On PO boxes, eamil, and such by dacarr · · Score: 3, Informative
    First, PO boxes. Diverting all domain related snail spam to a post office box really isn't the purpose of putting a PO box in your whois record, it's to divert the attention from where your system really is. I for one really don't get that much snail spam or domain spam (more on that in a second).

    So you get the PO box, for one reason - as far as the untrained eye without a legal proceeding is concerned, your computer with your domain is actually housed inside of a box that, at its smallest, is the size of a one foot thick index card. They need legal documentation to get your real address, and you in turn need to prove to the USPS where you really live.

    The email address is a little simpler. It's easy enough to set in your /etc/aliases file (or whatever your MTA of choice uses) something like 'hostmaster' or 'hostslave' and have it divert to you, and in turn you just have either Procmail or your MUA of choice to stick it in a folder that you might check on once in a while. After a while, remove/change the address, change it in the whois record, and watch as the few spams that come in just kind of bounce.

    In short, in my experience it's really not that much that you're going to get in the way of junk mail of any flavor. YMMV.

    --
    This sig no verb.
  9. Dotster by Tumbleweed · · Score: 3, Informative

    My registrar is Dotster, who has a free spam whois shield available for its customers. The email address in the domain info given out is really an alias to the one you give them, and that alias shifts like once a week or so (not sure on how often). This is generally not often enough to get onto spam lists, though I have gotten a couple of messages over the last few years. Obviously not something to worry about.

  10. formerly known as rackshack by sakura+the+mc · · Score: 1, Informative

    http://www.ev1servers.net

    not only do they do dedicated servers, but you can also get domains through them. you have to sumbit real info for payment, but after you purchase the domain, they have no problem with you putting fake info on your domain.

  11. Re: RegisterFly.com -- ugh... by hlygrail · · Score: 2, Informative

    As an IT manager at a previous employer, I once had to consolidate a bunch of domain names to a single vendor (Verisign terms, at the time, didn't suck as much as they seem to now, so that's where we consolidated). All the other domain hosting services let go of the records once they were notified and had verified the validity of my request.

    RegisterFly, on the other hand, fought tooth and nail to hold on to it, and only let go once we got our company attorneys involved. I never understood the reasoning -- we only had 4 months left with them anyway, and we'd paid such a ridiculously low amount to register the name anyway, I"m certain they spent more manpower dollars in fighting the transfer than they ever could have made on the original domain registration fees.

    Truly the worst part (then anyway, YMMV now) was that they didn't have a phone contact method -- most everything had to be done via online chat, and INVARIABLY the person "typing" on the other end (loosely stated because of their awful grammar skills) didn't have a clue. Nevertheless, you may have better experiences with them, but you couldn't pay me to put a domain with them now.

  12. "Anonymous" domain registration problems by Animats · · Score: 3, Informative
    • Most of the "anonymous domain registration" schemes involve some dummy party actually being the domain owner. If you ever get into a dispute with that party, you have a problem.
    • Those "indemnification" clauses really matter in a situation like this. If someone goes after the dummy party, you'll end up paying their legal fees.
    • Operating a business anonymously is a criminal offense in many jurisdictions, including California.
    • It's not clear what happens if someone files a Whois Data Problem Report for your "anonymous" domain. But you probably won't like what happens.
    • If someone wants your domain, they could make a case under the UDRP that your registration was in bad faith.
    • Some spam filters may blacklist mail from, or mail that mentions, anonymous domains. It's like putting up a sign that says "I am a slimeball".
    • There are signs of a crackdown on anonymous business web sites. Microsoft is sueing "bullet proof web hosting" firms.
  13. http://www.myprivacy.ca/ by MDMurphy · · Score: 3, Informative

    Use MyPrivacy.ca. They give you a free email address that will forward to your existing address. They only allow email from legit domain hosts to get through unchallenged. If from just anyone, they have to go through a challenge/response system.

    Works great, I've yet to get any Spam in the last few years that I've been using them.

    http://www.myprivacy.ca/