US Web Firm Described As "Phantom Registrar" Haven

snydeq writes "InfoWorld's Martin Heller directs attention to ongoing investigations of more than 40 phantom registrars linked to The Directi Group, including PDR, one of the 10 worst offenders on the Net. According to KnujOn, an additional 19,000 domains advertised through spam have been hiding their ownership behind PrivacyProtect.org, which The Washington Post has outed as Directi-owned. Directi claims it suspends illicit domains, but KnujOn provides documentation suggesting that Directi reports the registrars suspended and then reinstates them at another IP address. 'There has been some outcry about all this from the ICANN At-Large Committee, but as of this writing there has been no response from ICANN's Tim Cole,' Heller writers. 'Perhaps that has something to do with the fact that LogicBoxes, a Directi-owned registrar, has sponsored ICANN meetings in L.A. and Delhi.' Directi has since issued an official response to the allegations."

The Reason This Will Never End

[imyy4u3]

Quite simply, even if they shut Directi down, another company will take over the job of hiding the spammers for one simple reason: money. The spammers can afford to pay a company to hide them because they are making bank. Amazingly, about 1% of all spam emails actually result in a sale! So if you send out 1,000,000 emails, you can expect 10,000 sales! If people would just stop buying shit from spam emails, this wouldn't be a problem.

Now on the other hand, why do we even bother to try to pass spamming laws? Talk about another waste of time and money. If we pass a law saying all spam email must contain the words "unsolicited email" in the subject line, everyone will set their servers to block such email and therefore the spammers will certainly not put that in the subject line. So now we have to spend even more money to try and track the spammers down, which in essence we can't do because they pay companies like Directi money to hide their domains, IPs, etc.

Bottom line, this is an endless loop, and if anyone has any REAL suggestions on how to get rid of spammers, or how to force companies to stop hiding them and their domains, I'd love to hear it.

Send the tax collectors

[GaryOlson]

Al Capone was prosecuted and imprisoned because he failed to pay his taxes. Use the same tactic on spammers. Subpoena the customer list of these registrars under conspiracy to avoid taxation. Then audit the taxes of all the domain owners.

These types of registrars and domain owners will no longer have a viable business if the expense of avoiding the government is too high. This would also be a useful method of giving lawyers something to do and stop bothering us normal people (with NewYorkCountryLawyer as an exception of course).

Use the information against the spammers?

[Seriph]

I've been doing some digging into this over the last few months and noticed an awful lot of spamvertized sites seem to have their domains registered with such privacy protecting registrars.

I've been thinking about how to use the fact that a domain is registered with such a registrar as part of a spam scoring metric and whether anyone else has already done work on this? Just on the mail passing through my systems, I'm seeing a very strong correlation between a mail being spam and it referring to a domain registered with such a registrar, with the domain nameservers being on dynamic IP space, and with the DNS for the spam domain having a very low TTL value set.

It's also interesting to track back the nameservers for any domains referred to in the NS records of the spam domain. By doing so I can find fairly large networks of interrelated spam domains and spam websites, the addresses of many of which already appear on the likes of the Spamcop and Spamhaus SBL/XBL lists or appear there shortly afterwards.

The point is, is it practical to use this sort of information against spammers and is anyone already doing it?