Slashdot Mirror

← Back to Stories (view on slashdot.org)

After Years of Serving X11, X.Org Stands To Lose Its One-Letter Domain (phoronix.com)

Posted by Soulskill on from the go-set-up-a-notification-to-renew-your-domain dept.

An anonymous reader writes: The X.Org domain predates the X.Org Foundation. It was used in the '90s as a destination by The Open Group around the X Window System. While many are expecting Mir and Wayland to eventually succeed the X.Org Server, it seems the X.Org/X11 Server may outlive the valuable domain. Thanks to poor management by the X.Org Foundation, they risk losing access to their one-letter domain. Procrastination, paired with not transferring the domain when forming the non-profit foundation, has led to a last-minute mess. They left the domain registered for years to a person who is no longer involved with X.Org — and doesn't want to relinquish it. In the few days until the domain expires, they are hoping for a "Hail Mary." Let this be a lesson for open-source projects to better manage their assets.

12 of 140 comments (clear)

  1. It's not just open source projects by forgottenusername · · Score: 5, Informative

    We almost lost our production domain. The original dummkopf who set things up registered it all under his own name and individual email instead of using a role based account. He then was fired for unrelated incompetence. Fast forward to the domain renewal coming up.. charge went to his personal CC.. he disputed the charges.. we would have lost it except by pure dumb luck I was in the middle of a DNS migration project and was auditing/cleaning up the registrar details. It was as last minute as you'd want; expiration was within 12h.

    One of my pet peeves - people who register for services or get licenses tied to their individual accounts.

    1. Re:It's not just open source projects by Midnight+Thunder · · Score: 4, Insightful

      The challenge is that a number of companies don't have the notion of role based accounts, so when you are faced with registering something of the sorts, it is a challenge trying to work out the best way to do this, without tying the account to a transient entity (any employee or physical resource is transient).

      Companies that don't have the notion of aliased accounts or special account types for this purpose are just asking for issues.

      --
      Jumpstart the tartan drive.
    2. Re:It's not just open source projects by Kjella · · Score: 4, Insightful

      If said person was a founding member with an actual stake in the company, I wouldn't be too hard on them. I was part of a start-up and in the beginning it's all about making a profit and taking whatever shortcuts you can. If you get caught up in doing things "proper" and planning for when you have hundreds or thousands of employees you're probably not going to get there. Early Microsoft was hardly perfect but Gates ran with it. Early Oracle was hardly perfect but Ellison ran with it. Early Facebook was hardly perfect but Zuckerberg ran with it. Worrying too much about growth pains means you lose sight of the growth being the hard part and the pains the easy part. If you're just "an employee" and do things with your personal accounts then yeah, you deserve what's coming to you.

      --
      Live today, because you never know what tomorrow brings
    3. Re:It's not just open source projects by forgottenusername · · Score: 4, Interesting

      I guess. Lately I think the real difference between a seasoned engineer and a "senior" engineer is just taking that extra 10% of time to do things vaguely sensibly up front. There is no such thing as temporary. At the least, set things up so refactoring them later doesn't require a total redo.

      This guy in particular was just in way over his head but one of those sorts who is paranoid about admitting that or asking for help. In fact he was hostile to help. Not really part of my original point but he'd do stuff like;

      - ignored my advice to not tie production services into corporate domain (if you ever get sold/acquired etc, you understand)
      - ignored my advice to not create a "split domain" with the corporate domain (eg the windows domain was companyname.com, the windows dns servers thought they were SOAs but that same domain had actual internet resolvers with different records)
      - refused to entertain the notion that linux was production ready (this was in 2009) and forced solaris as a standard. On x86. As vmware VMs.
      - refused to take any help or assistance in installing the base OS despite being a windows guy with zero unix knowledge. We ended up with stuff like DB servers that had 2x swap as ram.. and they had 128G ram..
      - For some odd reason was very hostile to the notion of service/host monitoring.. like.. not just against nagios but _anything_

      The list goes on and on.

      He was just really promoted way above his experience level as happens in startups; they hired me probably 8 months after him, when production databases had been wiped and backups hadn't been successful for months (back to the no monitoring thing).

      It took a bunch of years to fully undo all the crap he had put in place. I danced a jig when I closed the lights on the datacenter he had built (we migrated). Did I mention in that datacenter, he setup "redundant" switches and firewalls for the servers.. but had all the internet drops coming down into one single unmanaged 1G cheapie netgear entry level switch?

      If he had allowed me to help I bet he'd still be working there. I have no problems mentoring people as long as they're not asshats. Last I heard he was in law school after a stint in real estate..

  2. Re:I feel like I'm missing something here... by Volanin · · Score: 4, Informative

    The synopsis is misleading. There is nothing like this in the article. It mentions that Leon Shiman is the current registered owner, but everything else is being kept private for the moment. He being uncooperative is just as likely as he being unreachable for contact for some reason. We'll find out in the next 11 days.

    --
    If I clone myself, can I call it a thread?
    If a girl winks to us, can I call it a race condition?
  3. Re:I feel like I'm missing something here... by mysidia · · Score: 4, Interesting

    Yeah.... I don't understand. You do not need a registrant's consent to pay for a domain renewal.

    One of their fans should just pay the bill on his behalf.

    Also, unless they have gone out of their way to set a registry-level lock on the domain clientRenewProhibited, then most likely ANY domain registrar could technically send an EPP request to renew the domain for 1yr, and just pay the bill.

  4. Not always incompetent or malicious by Anonymous Coward · · Score: 5, Informative

    I'm seeing a lot of comments along the lines of "ah stupid morons, so incompetent to register a client domain using your personal credentials" which tells me these people have not worked a lot in the real world.
     
    I can think of 5 separate occasions where I saw that the CEO, CTO, COO, CO-whoever is in charge couldn't be bothered to come up with the correct credentials or a company account to set up a simple domain for their clients. These aren't mom-and-pop shops-- major ad agencies do this all the time, movie and media companies are slightly better.
     
    Out of desperation, either you set it up yourself, or it doesn't get done and you get fired. Explaining the legality, fragility, and idiocy of this to the people in charge of credentials is pointless-- all they hear is "blah blah blah I won't do what you want me to do"
     
    One place I worked at EVERY TWO YEARS there was a major scramble to get a long-departed tech guy to renew a domain. Each time this happened, the day always finished thusly:"OK, let's never do that again. Give me company credentials and a billing account and I'll set this up to auto-renew".
    "Sure, send me an email about it tomorrow, I gotta go play some golf".

  5. Re:Big deal by Dredd13 · · Score: 4, Informative

    Having been through a similar rodeo, it's just a matter of showing a different set of paperwork that shows "when orgA dissolved, all of its assets were transferred legally to orgB", at which point any representative of orgB has the same power over it because it's a transferred asset which just hasn't had some paperwork corrected at the registrar.

  6. Re:I feel like I'm missing something here... by ScentCone · · Score: 4, Funny

    We'll find out in the next 11 days

    You mean x11 days. Ba-da-bing!

    --
    Don't disappoint your bird dog. Go to the range.
  7. Re:I feel like I'm missing something here... by Todd+Knarr · · Score: 5, Informative

    Yeah, someone's just trying to make drama where there isn't much. Shiman's using his own email for the contact email, and possibly his own personal phone numbers, but the registrant name is "X.ORG Foundation, LLC". Probably all it is is X.org doesn't have the credentials for the registrar account to manage the domain themselves, so they'll need to jump through the hoops with NetSol to prove they're really X.org and get the domain moved to their account. A copy of the letters of incorporation should do the trick, and accompanying it with payment should get NetSol to extend the registration while this is being cleared up.

    Part of this I blame on the registrars who don't make it obvious how to set up a domain so that several registrar accounts can manage/access it, or who don't provide a way to register a domain with a new account owning it and yours just being assigned to manage it.

  8. Re:I feel like I'm missing something here... by Anonymous Coward · · Score: 4, Interesting

    I have seen this before with other open source projects. Members of the project who are developing suddenly get very paranoid of the guy who has been footing the bill for their domain or services. Even if the guy has been trustworthy and a friend of theirs for years and it has been genuinely helping the project. Something happens, like a renewal is filed at the very last minute or they receive threats from an outside party to hijack their domain. Sometimes nothing happened to trigger it.

    Usually, the threats are unfounded, but paranoia and name calling sets in. People accuse the fella paying the domain host, or they're rude to him. Then some random member just demands he hand over the domain. He doesn't know if he can trust that person to handle it properly, or they aren't willing to pay for the control because let us face it they're pinko communists. This creates a lot of contention between the members and their benefactor. It recently happened at cyanogen, they're even threatening to sue the guy even though he handed over everything.

    And, this psychological effect seems to extend beyond just domain control, for example Mozilla biting the hands that feeds them i.e. Google. They were being given something like roughly 80 million every year for making a free browser, and then they were telling people to switch to Bing and refusing to support Google video or image standards. Google kept funding them until recently, even though Mozilla held such contempt for them.

    Many other examples exist I'm sure.

  9. Re:I feel like I'm missing something here... by Trailer+Trash · · Score: 4, Insightful

    That's how we did it back in the olden days around here.
    This was a fun day when Microsoft let passport.com expire, luckily some slashdoter renewed it for them.

    https://web.archive.org/web/20140921073357/http://slashdot.org/articles/99/12/25/114201_F.shtml#40

    Yeah, I'm standing by just in case.

    --
    Do you have ESP?