Slashdot Mirror

← Back to Stories (view on slashdot.org)

Shielding Domain Registration Info?

Posted by Cliff on from the anonymous-to-whois dept.

occamboy asks: "I'd like to register a new domain, but I'm tired of getting tons of spam (most filtered, but some not) and snail mail whenever I register a new domain. In short, I'd like the domain, but I don't want to announce the details of its owner to the world. I was thinking of using GoDaddy's domain proxy, but the terms are scary: they reserve the right to change the agreement anytime, by posting the new terms on their site, and the buyer automatically agrees to the new terms. What's to prevent them from grabbing my domain name from me, or doing some other nefarious thing? So, is there any good way to anonymously acquire a domain? Should I just register with fake info, use a service ... or what?"

9 of 93 comments (clear)

  1. Sneakemail it by polymath69 · · Score: 4, Informative
    This won't do anything about the postal spam, but give your email as a sneakemail address. Then whenever that address gets harvested for spam, you can cancel it, set up a new one, and update your whois record.

    It will still get harvested... but you'll probably only have to cycle it a couple of times a year. The three or four spams a year that'll get through is probably negligible.

    This is a good strategy for /. email, too.

    --

    --
    I don't want to rule the world... I just want to be in charge of mayonnaise.
    1. Re:Sneakemail it by Mr.+Slippery · · Score: 3, Informative
      Why is it so hard to have one set of private records for the registrar and another set for the public and to do it without charging an extra $10/yr per domain?!

      Because running a domain is a responsibility. As RFC 1591 puts it,

      Concerns about "rights" and "ownership" of domains are inappropriate. It is appropriate to be concerned about "responsibilities" and "service" to the community.

      If you don't want the responsibilities, including making contact information available, don't have your own domain. Or hire someone to perform those responsibilities for you.

      --
      Tom Swiss | the infamous tms | my blog
      You cannot wash away blood with blood
  2. Re:Use fake information by brewthatistrue · · Score: 5, Informative

    well, if you are worried about what agreements you are entering into, ICANN requires valid contact information. How often your info will be checked for validity varies, but if you get caught with fraudulent info you can lose your domain. http://www.icann.org/registrars/wdrp.htm http://www.internetprivacyadvocate.org/ProtectYour PersonalInfo.htm (urls via google keywords: whois contact icann)

  3. GANDI by 0x0d0a · · Score: 3, Informative

    You said that you were worry about proxies -- I have secondhand that GANDI is a good registrar -- prices slightly higer than GoDaddy, but significantly better (as in favoring the user versus the registrar) policies. Not sure if they provide a proxy service.

    --
    May we never see th
  4. Re:namecheap! by adam+mcmaster · · Score: 4, Informative

    RegisterFly.com offer something similar, only $1 to protect each domain. It puts something like this in the whois record:

    Registrant Contact:
    RegisterFly.com - Ref# 11453500
    Whois Protection Service - ProtectFly.com (11453500.fly@spamfly.com)
    +1.2122952121
    Fax: +1.2122952153
    230 Park Avenue
    Suite 864
    New York, NY 10169
    US

    That email address gets forwarded to your actual address, and it changes every so often so you don't get spam to it.

  5. On PO boxes, eamil, and such by dacarr · · Score: 3, Informative
    First, PO boxes. Diverting all domain related snail spam to a post office box really isn't the purpose of putting a PO box in your whois record, it's to divert the attention from where your system really is. I for one really don't get that much snail spam or domain spam (more on that in a second).

    So you get the PO box, for one reason - as far as the untrained eye without a legal proceeding is concerned, your computer with your domain is actually housed inside of a box that, at its smallest, is the size of a one foot thick index card. They need legal documentation to get your real address, and you in turn need to prove to the USPS where you really live.

    The email address is a little simpler. It's easy enough to set in your /etc/aliases file (or whatever your MTA of choice uses) something like 'hostmaster' or 'hostslave' and have it divert to you, and in turn you just have either Procmail or your MUA of choice to stick it in a folder that you might check on once in a while. After a while, remove/change the address, change it in the whois record, and watch as the few spams that come in just kind of bounce.

    In short, in my experience it's really not that much that you're going to get in the way of junk mail of any flavor. YMMV.

    --
    This sig no verb.
  6. Dotster by Tumbleweed · · Score: 3, Informative

    My registrar is Dotster, who has a free spam whois shield available for its customers. The email address in the domain info given out is really an alias to the one you give them, and that alias shifts like once a week or so (not sure on how often). This is generally not often enough to get onto spam lists, though I have gotten a couple of messages over the last few years. Obviously not something to worry about.

  7. "Anonymous" domain registration problems by Animats · · Score: 3, Informative
    • Most of the "anonymous domain registration" schemes involve some dummy party actually being the domain owner. If you ever get into a dispute with that party, you have a problem.
    • Those "indemnification" clauses really matter in a situation like this. If someone goes after the dummy party, you'll end up paying their legal fees.
    • Operating a business anonymously is a criminal offense in many jurisdictions, including California.
    • It's not clear what happens if someone files a Whois Data Problem Report for your "anonymous" domain. But you probably won't like what happens.
    • If someone wants your domain, they could make a case under the UDRP that your registration was in bad faith.
    • Some spam filters may blacklist mail from, or mail that mentions, anonymous domains. It's like putting up a sign that says "I am a slimeball".
    • There are signs of a crackdown on anonymous business web sites. Microsoft is sueing "bullet proof web hosting" firms.
  8. http://www.myprivacy.ca/ by MDMurphy · · Score: 3, Informative

    Use MyPrivacy.ca. They give you a free email address that will forward to your existing address. They only allow email from legit domain hosts to get through unchallenged. If from just anyone, they have to go through a challenge/response system.

    Works great, I've yet to get any Spam in the last few years that I've been using them.

    http://www.myprivacy.ca/