How Many .com Domain Names Are Unused?

Christopher Forno, CTO at Singapore Data Company writes: When looking for .com names, I've been frustrated by how many are already taken but appear to be unused. It can feel like people are registering every pronounceable combination of letters in every major language, and even the unpronounceable short ones. Is there rampant domain speculation, or do I just think of the same names as everyone else? Let's look at the data.

There are currently 137 million .com domain names registered. Of these, roughly 1/3 are in use (businesses, personal websites, email, etc.), another 1/3 appear to be unused, and the last 1/3 are used for a variety of speculative purposes. I started by crawling a random sample of the domains from the top-level .com DNS zone file, until reaching 100,000 valid domains. [...] For most categories I've included a random sample of screenshots from that category, excluding redundant ones: Content (31% or ~43 million), Ads (23% or ~31 million), No Web Server (11% or ~16 million), Empty (9.2% or ~13 million), For Sale (7.1% or ~9.8 million), Error (5.7% or ~7.9 million), Parked (4.8% or ~6.5 million), Gambling (3.0% or ~4 million), Mail (2.6% or ~3.5 million), Redirect (1.1% or ~1.6 million), Private (0.64% or ~0.9 million), and Porn (0.59% or ~0.8 million).

Ooh! Ooh! I know!

[93+Escort+Wagon]

”Is there rampant domain speculation, or do I just think of the same names as everyone else?”

Yes and yes.

Re:Ooh! Ooh! I know!

[sh00z]

Even if there is rampant speculation, and assuming a 26-character alphabet, there are 1.46*10^11 domain names between two and 10 characters. If 137 million of these are registered, that means only 0.0001% of all possible domain names have been taken. There's plenty left!

Re:Ooh! Ooh! I know!

Not everyone wants www.z727nmsush17s91jsy7782781sh7618723.com

Re:Ooh! Ooh! I know!

This domain name has been mentioned on social media, raising its value by $10,000. Place a bid today!

Re:Ooh! Ooh! I know!

[sh00z]

I understand that, but the factual answer to the originally-posted question is "the vast majority of them."

Re:Ooh! Ooh! I know!

[sh00z]

remember that in 1995, "ebay" was a useless combination of letters.

Re:Ooh! Ooh! I know!

[Solandri]

Even if there is rampant speculation, and assuming a 26-character alphabet, there are 1.46*10^11 domain names between two and 10 characters. If 137 million of these are registered, that means only 0.0001% of all possible domain names have been taken.

About a decade ago, I was trying to think of a domain name to register for a website. I wrote a short program to put together English phonemes to generate every possible pronounceable word (up to 7 letters).. Then I had the program do a whois database lookup for each fictional word as a .com domain, outputting a list of the unregistered domains. (Yeah, I'm probably part of the reason why ICANN now makes you solve a captcha before doing a whois lookup).

All the 4-letter .com domains were gone. Most of the 5-letter domains were gone too, and the few which weren't sounded horrible. Most of the 2-syllable 6-letter domains were gone. But there were lots of 3-syllable 6-letter domains still available. There were lots of 7-letter domains still available. So many that I killed the program part-way through (at domains starting with the letter 'f' if I remember). The list of available domains it was generating was becoming so long it would've taken me too much time to look through it, trying to find one that seemed decent.

Re:Ooh! Ooh! I know!

That would be the pedantic answer. This is a comment section, not an academic treatise journal. Your own subject line shows you thought it a silly notion too.

Re:Ooh! Ooh! I know!

[93+Escort+Wagon]

Sounds like a good time to jump on that four-syllable, eight-letter "cocacola.com" name I've been meaning to register!

Re:Ooh! Ooh! I know!

[Oligonicella]

Yeah, no. Originally, the site belonged to Echo Bay Technology Group. It's shorthand, no more useless than the acronym IBM.

Re:Ooh! Ooh! I know!

[Oligonicella]

Never search for a domain. Just make a prioritized list of acceptable ones and start registering. If it's taken, it will tell you; if not, it's yours. If you search, there's no guarantee that won't be detected and squatted. Happened to me.

Re:Ooh! Ooh! I know!

Here you go, as of now unregistered five-letter .com domains:
brmst.com, byghi.com, bygrs.com, holkr.com, merml.com, mkgar.com, mkgor.com
I didn't need to automate anything to find those and there certainly are many more. You have to make a new name work. Names which are already known are probably taken by the early birds, the on-time birds, the fashionably late birds and everybody else who managed to grab a domain in the last quarter of a century. Developed real estate isn't free.

Re:Ooh! Ooh! I know!

[Marxist+Hacker+42]

But his point is that somebody might easily be able to register http://www.kjdsfiemcisod.com/

Re:Ooh! Ooh! I know!

[93+Escort+Wagon]

Network Solutions used to do that (maybe they still do). Not to bid up the cost of the domain, per se; but to force you to use their registration services.

Re:Ooh! Ooh! I know!

You must be lying. WHOIS is not interactive and therefore cannot have a "captcha" ...

Re: Ooh! Ooh! I know!

[Maelwryth]

I put this down to a bug, but weirdly I managed to buy linux.net a couple of months back even though it was already registered.

Re: Ooh! Ooh! I know!

See hot girls getting bottom anal roast at brmst.com,
Having a baby and need a new stroller try byghi.com,
what wont these homeless bums do for money? Find out at bygrs.com ,
Wanna out on real mass try our unproven new supplement at holkr.com,
Mermen of the world, we now have a new community for you to explore your fetish merml.com,
It not quite a burger and it's mostly trash, try the new mkgar.com,
wanna see beheadings, middle eastern king's gore mkgor.com

Re: Ooh! Ooh! I know!

Why would you think he's lying? Most people don't seem to know much about writing network code. It's extremely likely he just used some basic http library (or even just curl) and screen scraped the results

Re:Ooh! Ooh! I know!

[Zack]

I'm sad that no one has registered this domain already.

Did you try...

[hcs_$reboot]

...prefixing with 'www.'?

Re:Did you try...

[mindwhip]

It is a mistake to assume just because there is no web page the domain is inactive.

Not all active domains carry public web pages. I have a number of domains that I only use for email and other non-web things such as game servers or have web pages on non standard ports and require authentication for special uses such as my private family photo archive.

Re:Did you try...

[Aighearach]

I've got 3 domains for business use that don't have public-facing anything, and a third one that I did at least put up a parking page for.

1 of them will have an active site this year, another one, probably next year.

In the past I've had at least 4 or 5 that eventually expired without ever having hosted anything. Not "domain speculation," merely "business name speculation." No, I never tried to sell any of them.

Re:Did you try...

[novakyu]

'Looks like TFA did look at the DNS record, which is the thing to look at, if you are trying to determine if the D is being used.

obvious.com

Same as Land in the US, only tiny fraction is used while 100% is owned by someone. Domain names are just internet real estate, wouldn't expect it to be any other way.

Re:obvious.com

[drinkypoo]

"Domain names are just internet real estate, wouldn't expect it to be any other way."

Still offensive, and the worst offenders are registrar squatters. It's like filing for a trademark, and the government burning your application and filing for it themselves. Registrars should be prohibited from owning more than one domain.

Re:obvious.com

[The+Grim+Reefer]

Same as Land in the US, only tiny fraction is used while 100% is owned by someone.

Actually you'd be surprised that there are minuscule amounts of land that don't belong to anyone. Most, if not all of it, is useless. There are tiny islands of land in rivers that are not owned in many places. I don't know how it works now, but I knew someone who found an island in a river in Pennsylvania 30 years ago that was not owned. He just had to pay the property taxes on it and it was his. Of course these islands become partially, or totally submerged during heavy rain. So you probably don't want to live on them.

Re:obvious.com

[Aighearach]

Squatters don't matter very much, their antics don't survive a trademark registration.

Wonder how many empty and error just don't have in

[raymorris]

A lot of servers we do security for have stuff at http://domain.com/employeeport... and http://domain.com/he/ or whatever, but nothing on the index page.

Another chunk are non-web servers. Domains aren't just for web sites, of course. Others are only accessible from certain networks and VPNs, something like DellTeamNet.com for Dell employees or whatever.

I wonder how many of the "empty", "error", "unused", and "no web server" are actually used - just not for a public web site with a normal index page.

"No Web Server"

[XanC]

There are plenty of domains in heavy use for things other than the Web. Classifying these as "unused" is probably not right.

Re:"No Web Server"

[Luthair]

Yea, I own my last name as a domain but only use it for email.

Re:"No Web Server"

[Kazymyr]

Same here. No http server on a domain doesn't mean it's unused.

Re:"No Web Server"

[David_Hart]

Same here. No http server on a domain doesn't mean it's unused.

Same thing applies to a stale web page. Just because a web page is stale doen't meant that the domain isn't in use for other services, such as email.

How do they know it's not in use?

[mark-t]

Just because a domain doesn't have a website doesn't mean that it isn't used for something.

Re:How do they know it's not in use?

[houghi]

You could even argue that cybersquatting is using the domains in some form. Just because it is a bad way it is being used does not mean it isn't being used.

Re:How do they know it's not in use?

[Dan+East]

Port scan it?

Re:How do they know it's not in use?

Pretty much this our company has a few domains that are specifically used for b2b API calls. And no these are not simply a sub-domains but an actual different top level domains.

Re:How do they know it's not in use?

[mark-t]

How do you portscan a domain if you don't have an IP address for it?

Re:How do they know it's not in use?

A domain doesn't have to have an A record to be useful. It could have AAAA, MX or other records, or subdomains. I have a domain which is in use but deliberately has no A or AAAA record.

Re:How do they know it's not in use?

In my case, I have a software startup currently in submarine mode.

I had to grab the domain ahead of time because the code uses it as part of the namespace.

Re:How do they know it's not in use?

yeah, it pretty much does. Go back to sleep moron.

Re:How do they know it's not in use?

[mark-t]

No, it does not. Some domains are exclusively email domains, for instance, and doing an name lookup will not resolve to any IP address.

If such domains are not in use, how is email sent and received through them?

Re:How do they know it's not in use?

If a domain name doesn't have an IP address associated, it's not a domain name.

Re:How do they know it's not in use?

[mark-t]

Really? So what do you call the 'bar.com' part of an email address "foo@bar.com", for example, it not a domain name?

Such a name might be associated with email addresses, for instance, but still might not resolve to any IP address. What do you call it, if not a domain name?

Re:How do they know it's not in use?

[Oligonicella]

If the rent is paid, it's being used. That the owner is attempting to hustle someone else is a separate issue.

Re:How do they know it's not in use?

[Oligonicella]

Who are you answering?

Re:How do they know it's not in use?

[Oligonicella]

A domain can exist for the sole purpose of sheltering subdomains.

Re:How do they know it's not in use?

[dissy]

How do they know it's not in use?

He says if no web-server was running, he went by DNS records.

Just because a domain doesn't have a website doesn't mean that it isn't used for something.

From his report, he has two categories for "No A record but does have MX" and "No MX record but does have A records with no apparent web server"

Mail (2.6% or ~3.5 million)
Any domain not in any other category, but with MX DNS records (for email), I categorized as Mail. I did not attempt to see if the mail server was working or if delivery was possible. It's possible that many of these domains are not actually used for email, but I've given them the benefit of the doubt.

No Web Server (11% or ~16 million)
If I was unable to connect to, or receive a valid response from, port 80 or 443 for either the top-level domain or the www subdomain and the domain had no MX records, I placed the domain in this category. Some of these domains likely have some non-web use, such as an FTP or video game server, but I expect them to be a small fraction. Additionally, the crawling server was only configured for IPv4, so any IPv6-only websites would have been grouped here.

It would seem all the other categories were determined from data returned by a web server.

Re:How do they know it's not in use?

[Obfuscant]

and doing an name lookup will not resolve to any IP address.

If it is a domain for email it better have at least an MX record (or whatever the IPv6 equivalent is), even if it has no A or AAAA. That's "resolving".

If such domains are not in use, how is email sent and received through them?

If the name does not resolve to any IP address, how is email sent to it?

Re:How do they know it's not in use?

[Obfuscant]

A domain can exist for the sole purpose of sheltering subdomains.

Those snowflake subdomains should get a thicker skin and learn to live on the Internet like the rest of the domains.

Re:How do they know it's not in use?

[Anubis+IV]

So what do you call the 'bar.com' part of an email address "foo@bar.com", for example, it not a domain name?
Such a name might be associated with email addresses, for instance

Completely correct.

but still might not resolve to any IP address.

Incorrect.

In your example, it wouldn't resolve to a web server (e.g. an A or AAAA DNS record), but it would still resolve to a mail server (e.g. an MX DNS record). If it doesn't resolve to a server at all, then the AC would be correct: it isn't a domain name in any practical sense, since the entire purpose of a domain name is to act as a map back to an IP address.

As such, going back a few posts in the thread, if you want to portscan a domain, you just do a DNS lookup to see what IP address(es) it's advertising, regardless of whether they be associated with web servers, mail servers, or something else.

Re:How do they know it's not in use?

Wow, someone actually read the source...

Re:How do they know it's not in use?

[mark-t]

If you ping a domain with no A record, you will get a "name or service not known", that's what I meant by "no IP address".

Re:How do they know it's not in use?

[Aighearach]

I have 2 that don't even have DNS set up.

They are absolutely "in use," and I would die on that hill to protect my right to them.

Re:How do they know it's not in use?

[Aighearach]

First of all, you can use only private DNS to get the IP.

Second, the domain portion of the email address is still the domain, regardless of if the mail is currently deliverable.

Third, the owner of the domain is in control of the DNS. It resolves to a mail server if I say so, not simply because an email address exists that references it. Perhaps the email address was routable in the past; or perhaps it will be routable in the future. Maybe it is only routable on Fridays.

Re:How do they know it's not in use?

[Aighearach]

If the name does not resolve to any IP address, how is email sent to it?

One obvious answer that everybody on slashdot should already know; mail can be sent from systems with the right hosts file!

Or in general, you don't have to send mail out through a mail gateway, your mail client can instead connect directly to the recipient server.

You might have a setup where email can be routed normally inside a private network, but from the outside you have to know the IP. Like for an emergency sysadmin contact in case the private network is down, in a situation where normally everything is on the private network.

Not saying it is common or recommended, just that there are lots of obvious places that an IP address might come from.

Re:How do they know it's not in use?

The domain doesn't need to resolve to anything to be useful. It can have subdomains. To have localpart@mail.example.net or www.example.com, you need to register example.com, but there don't need to be any records for example.com.

Re:How do they know it's not in use?

MX records don't hold IP addresses, and the names they hold don't have to be under the same domain. Those other names have to resolve to IP addresses for the domain to get mail. The mail domain as such does not need to resolve to an IP address.

Besides, read what you're replying to.

Mark-T: "Just because a domain doesn't have a website doesn't mean that it isn't used for something."
Idiot AC: "yeah, it pretty much does. Go back to sleep moron."
Mark-T: "No, it does not. Some domains are exclusively email domains, for instance, and doing an name lookup will not resolve to any IP address."
Another idiot: "Nu-uh, having an MX record is resolving."

Re:How do they know it's not in use?

[Obfuscant]

One obvious answer that everybody on slashdot should already know; mail can be sent from systems with the right hosts file!

And being /., the pedantic answer to that is that's resolving the name into an address -- just not using public name servers. One assumes, however, that when one seeks to determine if an address is "in use", or tries sending email to it and it is not locally controlled, the public DNS system will be used.

Or in general, you don't have to send mail out through a mail gateway, your mail client can instead connect directly to the recipient server.

And if the domain does not resolve, how does one determine the recipient server? Yes, yes, local systems can do a lot of things locally.

You might have a setup where email can be routed normally inside a private network, but from the outside you have to know the IP.

So the name resolves -- locally -- but not globally, and then I'll ask again, if the name does not resolve to any IP address, how does it get email?

Not saying it is common or recommended, just that there are lots of obvious places that an IP address might come from.

A name that doesn't resolve to an IP address isn't getting an IP address from anywhere.

Re:How do they know it's not in use?

[Anubis+IV]

Okay, but you do recognize that it’d still have an IP address, right? And that it’s discoverable? That’s what this whole thread has been about: whether or not you can port scan a domain with no web presence. Clearly you can, just not in the way that you were thinking.

Re:How do they know it's not in use?

You can't ping or port-scan a domain without an A or AAAA record. It literally has no address. MX records contain (usually other) domain names, not addresses.

Re:How do they know it's not in use?

[novakyu]

They think they are AmerICANNTs, instead of AmerICANNs.

Re:How do they know it's not in use?

[Aighearach]

My advice, if you don't know those answers, don't worry about that level of detail.

It isn't really reasonable to expect to be taught how to sysadmin in the comments.

All of your questions are circular or simply don't need answers; "If you can't make it to the store using a flying car, how do you buy Marmite?" It doesn't need an answer, because not everybody wants Marmite in the first place, and there are other ways to get to a store. Obviously, the use cases are different between having public DNS, and not having it; but the ability to make a use case for email function is there either way. Nobody said, "local DNS replaces your use case for email," what is being said is that you don't absolutely need public DNS to be using email.

Public www is not the only use case for domains

How many of these might be domains that are used only for email or other services other than www?

Re:Public www is not the only use case for domains

[bobbied]

I'd say a LOT of them are... There are a lot of reasons to buy and keep a domain, but not field a web server. Squatting is likely the majority of the problem for common or "sounds like" domain names, but like others have pointed out, "homesteading" (where the domain is parked for future use, or just doesn't have a webserver) is a huge fraction of this.

Interesting

[110010001000]

Interesting, but it appears he manually classified the websites by looking at the content of the top level page. Needs some AI. That way he could go through more than 100,000 of the 137,000,000 domains. I am sure this can be done with Deep Learning Neural Networks.

Re:Interesting

Could probably be done with some simple scripts to map port and protocol activity to known server types, and some keyword lookup on anything that has publically available banners or content (http or otherwise). Doesn't need "AI" at all.

Re:Interesting

[110010001000]

You don't understand: that is the equivalent of what AI is in 2019. In fact, this guy missed an opportunity to label his work as AI.

Squatters

[DaFallus]

My last name isn't incredibly common, so I thought I would buy the .com domain. Turns out it is owned by Tucows who offers to rent it to me for $35 a year under their RealNames service. I contacted them about actually purchasing the domain outright and the response I received was that sale of their domain names start around $5000.

Re:Squatters

Your last name is Tucows? Weird.

Re:Squatters

Maybe you should try spelling it "thephallus.com".

Re: Squatters

[Dynedain]

Back in the first internet boom (when we wore onions on our belts since it was the style at the time) a startup registered the 20,000 most common US surnames as .com domains. They were selling email accounts. In the inevitable bankruptcy the whole thing was sold to Tucows.

Re: Squatters

[Danathar]

Try another TLD like .info, I had the same problem but found that my last name was available under .info

Re:Squatters

[grumpy-cowboy]

Same thing for me. My lastname is not common at all... But if I want the [MYLASTNAME].com, it's 29 000$US !!! :D

So I bought the [MYLASTNAME].ca instead for ~10$ CA ;)

Re: Squatters

Do not use .info. That TLD is so full of spam domains that many downrate or outright block all mail from .info domains.

Re:Squatters

[bobbied]

LOL.. .com is actually in use, even though my last name is exceedingly rare in the USA. The issue I see is that the SAME business has .com .biz and .org.

Personally, I think ICAN should make it so any legitimate claimant to a domain name can force an entity who has the same domain registered in multiple top level domains to give up one. So, in my case, the business would be required to give me their choice of .com, .biz or .org as I have a legitimate claim to the domain name.

Re: Squatters

[Monster_user]

Mozilla encountered this with Firefox. They didn't own the Firefox.com domain, but they arranged to share it for a while.

I seem to recall various laws on the books rendering cyber squating largely illegal. Squatters are legally required to surrender the domain, as squatters typically cannot justify ownership of a domain.

The question isn't whether they should give one of the alternate TLDs up. The question is whether your organization has been around for longer than the owner, to have a claim and prior art to back it up. The question is also whether the alternate domain suits your organization better than the holder.

Dot Coms were intended to be commercial entities. Apple.com would be either Apple Computer or Apple Records. While .org would be non-profits, Apple.org would be an agricultural or educational group.

These days .Com is a rather generic entity, similar to .net, and simply implies a web presence. The .biz tld implies a smaller company or startup, and shouldn't squatted by major entities, unless there is a significant profit to be made by spoofing their .com domain.

Re:Squatters

My last name isn't incredibly common, so I thought I would buy the .com domain. Turns out it is owned by Tucows who offers to rent it to me for $35 a year under their RealNames service. I contacted them about actually purchasing the domain outright and the response I received was that sale of their domain names start around $5000.

You will find that *every* domain is taken. Networks Solutions, GoDaddy, etc. I've been trying to register a special domain, very unlikely to be thought of by another person. Both companies say it is already registered, but they can try to contact the "owner" and make an offer, so they can sell it to you for some $500 fee.

I have registered it in Brazil, where the registro.br performs a great job. No room for squatting domains in Brazil.

Re:Squatters

[RuiFRibeiro]

Exactly the same with my name. But I will give then the middle finger much before subsiding shady and predatory business tactics.

Re:Squatters

[drinkypoo]

I looked into getting cardot.com with the idea of running slashcode or similar and having an automotive discussion site. It's being squatted by Uniregistry, and I hope Frank Schilling fucking chokes on it.

Domain squatters should go up against the wall first when the revolution comes.

Re: Squatters

[kaizendojo]

There oughta be some kind of term limit in place if you don't actually use a domain for a period of time.

Re:Squatters

Many years ago I decided to buy a domain for my song parodies. I looked up parody.com and it was available. I looked up songparody.com and it was also available. However, I thought those domain names were too generic for MY song parodies, so I went with another name. The very next morning, I checked and both parody.com and songparody.com had been taken. The squatters are watching.

Re: Squatters

[Obfuscant]

There oughta be some kind of term limit in place if you don't actually use a domain for a period of time.

I think a point being made in this discussion is that it is hard to determine that a domain isn't being used. I have a domain that I've held for twenty-five years. It has a DNS entry, and it has an MX record to a mail server. Is it "in use"? Is that all it takes? Then your "term limit" is so trivially met that it is meaningless.

Re: Squatters

[Obfuscant]

These days .Com is a rather generic entity, similar to .net, and simply implies a web presence.

What you infer is not actually implied.

The .biz tld implies a smaller company or startup,

Again, what you infer is not what is implied. Unless the registrar for the (.com) or (.biz) domains have strict, enforced rules about who can register in those TLD, you can't infer what you are inferring.

I think they should return to such, BTW. My uni has apparently registered a name in SPAIN (.es), even though the really short name it makes is not spelled correctly. AND they're using it as the signup site in a process to force employees to register for 2FA, because too many employees are falling for phishing emails. Trying to explain that the reason employees are falling for phishing emails is because the uni is repeatedly using non-university domain names for sites that employees need to log in to is a waste of time. Like our timesheet system, the IT help desk system, the sharing of documents, signing documents, and now signing up for 2FA. "Employee, you need to go to i3iwg.goo and sign in to sign up for mandatory 2FA for your university account..." Uhhh, ok. I'll get right on that.

Re:Squatters

Try namecheap. I got a domain just a couple of years ago for personal use, and managed to get the .com, .net, and .org versions of it, all at the same time. (Why? So no one else could have them.) They didn't try any "already registered" crap with me.

Re:Squatters

[Killall+-9+Bash]

No one owns domain names. They are "registered".

$35/yr is a little high, but not outrageous

Re:Squatters

[Aighearach]

as I have a legitimate claim to the domain name.

You don't have any sort of claim, legitimate or not.

The feeling of desiring something doesn't imply that you have a claim to it.

In the reverse, if the business has a trademark and you've got one of those domains, they might have a claim to it if it isn't your full legal name; ie, including middle name or initial as displayed on the relevant legal documents. (birth certificate, marriage license, name changer order)

Re:Squatters

[Dynedain]

BTW, they aren't offering to let you rent your surname domain. They're offering you a single email address @ your surname domain for $35/year.

Re:Squatters

$5K doesn't sound all that bad. I have a quite uncommon last name, but someone had registered all of .com, .net and .org. He must have died or something, beause one-by-one they dropped. I lost the .com at auction. It sold for over $2000... If you knew my last name you'd laugh. Fortunately, when the .org dropped, no one even noticed. I just waited for it to enter the free pool again and registered normally it for the $20.

Re: Squatters

[ichimunki]

There is a built-in disincentive to sit on unused domain names: the cost of keeping it registered with the registrar. As long as someone is willing to pay for that, what business is it of yours whether they are "using" it or not.

Re: Squatters

[kaizendojo]

Excellent point. Thanks.

Where have you been?

" Is there rampant domain speculation"

Did you just get started on the internet? Where have you been the last 30 years? Under a rock? I remember 20 years ago trying to get a good domain name was a nightmare... I guess now it's impossible.

Re:Where have you been?

[Aighearach]

I don't have that much trouble finding domains.

IME it is actually easier to find open domain names than unused trademarks, so it is mostly a non-issue; without using it as a trademark, somebody else can do so and then take it. So the bottleneck is the trademark.

Re:Where have you been?

[Megane]

I have a 3-character .com domain that I registered back in 2000. I used a random number function to generate each character, and the first one was unused. I tried a few more times and those were already taken. Back then in the first dot-com domain rush people were speculatively registering every 3-character .com domain out of the 26 x 37 x 37 (?) possible, and I just got lucky.

advertisement much

[fermion]

So Singapore data company appears to be real as it has a linkin result.

However a CTO who does not know even the most fundamental basics of the internet, or expects to buy a .com domain in 2019, does not the best advertisement make.

I mean, I fully expect his next post to ask who are these 'hackers' that broke into into his Windows 3.11 computers and stole all his data. I fully expect him to be shocked, I tell you shocked, that someone thug could or world log onto an innocent person remote disks an download all the data.

Or how he left his unencrypted laptop for a minute at the airport to go the bathroom, and even asked the nice kid next to him to watch it, an by the time he landed at his destination all the data was sold on this new fangled thing called the dark web.

All 3-4 letter combinations taken

[xpiotr]

Probably 5 letter combinations too... https://whoapi.com/blog/we-are...

Re:All 3-4 letter combinations taken

[kenai_alpenglow]

A few years back I was able to find a 6-letter .com that included the initials of my LLC (3 of which where LLC) at the time. I grabbed that puppy up right then.

Re:All 3-4 letter combinations taken

I was able to grab a useful 4 letter TLD back in 2015 so it's certainly possible (Haven't had time to publish any project there so far).

I call bullshit

This study is flawed and Indemand a recount. From a typical browser history it is easy to exteapolate that at least 1/3 of the .com domains serve porn.

Re: I call bullshit

must be one of those newfangled data scientologists who produce visually pleasing garbage from piles of junk data.

godaddy is the culprit

[magarity]

Years back I tried an experiment: put a domain name in a browser and not no response. Went to GoDaddy to register it and was told it was taken. Tried in the browser again and got a 'this address is for sale!' banner and an email to the address I had given GD offering to sell it to me within minutes. GD pretty much exists to suck up domain names people submit and then try to sell their idea back to them.

Re:godaddy is the culprit

Network Solutions does something similar.

Go search a random domain there. It'll show as available. Then go to another registrar and search, and it'll show as owned by Network Solutions.

They don't really buy it, but there's some loophole where they can 'preview' it, or something, and hold it for a few days.

Network Solutions called this a 'feature'. At this point I'm sure all the registrars do it.

Re:godaddy is the culprit

If this is truly the case then you should be able to put together a reproducible test of randomized words into a domain. At that point you could document it and possibly even automate it. Once it's that obvious you can get some attention from media, ICANN and/or some other places.

Re: godaddy is the culprit

[astrofurter]

+1 interesting

Re:godaddy is the culprit

It usually takes a little more than just trying to resolve the domain name. It is well known that some domain registrars reserve domains that you look up through their web site (e.g. to see if they're available). There's even a name for it: domain name front running.

Re:godaddy is the culprit

This behavior was documented years ago and is referred to, IIRC, "domain tasting". I believe it's been reduced but the best way to register a domain is to go to someone other than the companies doing this (such as godaddy) and register the domain on the spot.

Don't check on a browser, don't do a whois either, just register it and if it's not taken, no one will have the chance to front run you, and it's yours. Keep repeating until you find a domain you like that isn't registered. Oh, and don't ever go to godaddy either for any reason.

Re:godaddy is the culprit

[fermion]

Go daddy did not innovate this as it has been done since day one. Large corporations were too dumb to register thier domain early, then too greedy to pay what was a time fair market value as it was cheaper to sue. It is like having a food truck, having someone else but the parking lot you use, then suing them to prevent them from using the lot as they please because you are entitled to the space for your business.

It was legal and reasonable speculation just like any other. Some made money, most lost a lot. There is no real harm because we are not talking real estate in London or Paris.

Re:godaddy is the culprit

[chispito]

Years back I tried an experiment: put a domain name in a browser and not no response. Went to GoDaddy to register it and was told it was taken. Tried in the browser again and got a 'this address is for sale!' banner and an email to the address I had given GD offering to sell it to me within minutes. GD pretty much exists to suck up domain names people submit and then try to sell their idea back to them.

Did you follow up and look up the WHOIS info on the domain to see if it indeed had been registered just right then? Maybe they just had not yet pointed the DNS to their parking page for some stupid reason.

Re:godaddy is the culprit

[Obfuscant]

Did you follow up and look up the WHOIS info on the domain to see if it indeed had been registered just right then?

Or it had been registered already, just didn't have a web server running on the naked domain name IP address. Nothing says that "example.com" and "www.example.com" must resolve to the same address, nor does anything require "example.com" to run a web server at all.

Re:godaddy is the culprit

[Aighearach]

I've had an enom reseller account for over 15 years, and this has never happened to me.

A few times I used the linux command-line whois tool, which queried whois.verisign-grs.com and it never happened to me there, either.

But when a business asks you to call them "Daddy," expect to get treated the way you'd expect to get treated.

They are all gone

[xaosflux]

Man, I can't even get a name for my startup company, even furryballsploppedmenacinglyonthetableinc.com is being park squated by a registrar!

Re:They are all gone

If you search for it via a registrar, they will squat it immediately. If you do an nslookup, a registrar will eventually squat it.

Re:They are all gone

[Aighearach]

Creation Date: 2018-07-09T11:04:15Z

Registrant Country: ZA

$ HEAD furryballsploppedmenacinglyonthetableinc.com
403 Forbidden
...

Client-Warning: Redirect loop detected (max_redirect = 7)

Highly unlikely to be a registrar squatting on it; doesn't display a sales page.

Inside vs Outside

[bobstreo]

Last company had hundreds of internal subdomains almost none of which have any external visibility to the casual "Internet Researcher"

Externally some domains were just redirects for companies that had been absorbed, or products no longer supported.

That being said, there are a lot of people who spend their lottery scratchers money on squatting on domains, and will probably end up with just as much profit over time.

Re:Inside vs Outside

[Megane]

I worked at Cisco back in the early 2Ks and I was surprised to discover that they had american.com (or maybe it was america.com), due to one of their many acquisitions. Of course the airline has its own 2-character domain, so they had no need for it.

Well, yes.

[QuietLagoon]

... Is there rampant domain speculation ...

There is and there has been for a couple of decades. Welcome to the Internet. It's a wonderful place. You may like it here.

Porn Sites Primarily Chinese?

[MDMurphy]

I wouldn't have guessed, but not too surprised when it showed that gambling sites were primarily in Chinese. What did surprise me was the same held true for porn sites. My guess is that the great firewall would filter those out, though that was just an assumption. if true, are those sites aimed at ex-pats? Just for research purposes only, I searched Google for the word "porn" and got 4.2 billion hits. Searching for the Chinese word for porn gave me 600 million. Then I searched for the Chinese word for pornography which gave more hits, 700 million. Interestingly, clicking on "images " for the Chinese word for porn showed almost all very explicit images, while the word pornography showed suggestively, but not explicit images. Searching in English is similar, but where porn gives you porn images, searching for pornography gives you mostly anti-porn images.

Defensive as well

[Strider-]

I work with a 501(c)3 nonprofit. We operate our website off of the .org domain, but also own .com, .net, and .info for defensive purposes. We don’t want someone else to grab them and do something nefarious with them. I should actually check to see if those redirect back to our .org

Re:Defensive as well

[PPH]

Well, peta.net doesn't appear to redirect. So I suppose People Eating Tasty Animals might still e able to grab that one.

wwf.net doesn't redirect properly. So maybe the World Wrestling Federation could pick that one up.

Re:Defensive as well

[Strider-]

Yeah, we're much smaller than those... But I operate a tight IT ship.

-licks tootsie pop-

1
2
3
-crunch-

Three, there are three unused .com domains.

Re:Wonder how many empty and error just don't have

[The-Ixian]

Yeah, I have always ever used my domains for e-mail or DDNS for remote access and custom web services. I have never put up a web site on any of them.

Does that mean my domains are "unused"?

Re:Wonder how many empty and error just don't have

[acceleriter]

Does that mean my domains are "unused"?

It does to the people who want your domain. I have my own domain for email and have had several requests to purchase it (for peanuts, I might add) since "it wasn't in use" due to a lack of web presence.

Re:Wonder how many empty and error just don't have

[McGruber]

Domains aren't just for web sites, of course.

Indeed. I have a short .com domain that is only used for my for personal email.

1998?

Is this an article from 1998?

I'm expecting a follow up article about how all the good King names are taken.

"Richard the SECOND? You expect me to go by Richard the SECOND?"

I bought my name ...

... over 20 year ago (as a .com).

Back when buying your own domain name was starting to be a cool thing, I checked it out. I figured I'd try it but with no luck. Because my last name is also that of a company. A company that claims to be, among other things, a player in the telecommunications biz. But there it was, so I dropped $35 on it and I've had it ever since.

Once I got it set up, I started receiving e-mail that was directed at the company in question. So I added a note on my page redirecting people to the appropriate address. It took over ten years for someone to contact me from that outfit and ask if I'd be willing to sell*. Nope. By then, I started running my own consulting business from that site and I couldn't be bothered to change all my contacts**. I also figured that anyone in the telecoms business who wasn't smart enough to grab their own domain back when Al Gore invented the Internet didn't deserve it by now.

*Lots of 'domain management companies' offer to take over the maintenance of my domain. But it only costs me a few minutes a year to manage. And I suspect they are either after money or are trying to steal it, since there is a market for it.

**There is nothing better than having your own e-mail domain. No matter how shitty ISPs get, I can always switch without having to update a bunch of contact information.

Re:I bought my name ...

[Obfuscant]

Once I got it set up, I started receiving e-mail that was directed at the company in question.

I once owned the .com version of the name used by a .net ISP. It was pretty funny trying to explain to a Granny why her email to her grandkids was being read by someone else. She just didn't get the concept that X.com and X.net were two very different things. I was also on the Microsoft Developer's Mailing list -- as someone at the .net site who gave them the wrong address. Ignorance of the difference between .com and .net says lots about Microsoft Developers.

I eventually got tired of the problem and sold the domain to a large company and let them deal with it.

Re:I bought my name ...

I kept a domain solely for email but eventually I found that gmail and others would silently drop my emails. To ensure I could get a job/date/whatever, I had to drink the coolaid and use a @gmail.com account.

I still own the domain and a half dozen others that I don't use. All must count toward this article.

Re:I bought my name ...

I found that gmail and others would silently drop my emails

That's all about branding. And lock-in. You have a business, ACME-Widgets for example. Google would rather that their domain shows up in your address, as if there is some implied endorsement of their service. And it would be a big bother to switch services and have to inform all your customers. So, no, you can't use your own domain.

I have a friend who bought (or so she thought) her business name from a registrar/ISP. So she had set up www.ACME-Widgets.com and e-mail for herself and employees. And then Microsoft bought the ISP. Everyone got a message that they would be moved to www.ACME-Widgets.msn.com and their e-mail addresses would move over as well. The original domain names were sold to a squatter, who wanted an outlandish price for them. It took years for them to let go of the domains.

You can find ISPs that will allow you to redirect from your own domain, support e-mail redirection, etc. GMail and Microsoft are not in that group. And beware of the ISPs that insist you turn domain name administration over to them.

Re: I bought my name ...

Sources or citations?

It really sounds like ACME-Widgets.com was the name of the ISP. Or you misunderstood and Widgets.com was the name of the ISP, and she setup an ACME.Widgets.com subdomain which would have to be migrated to the ACME.Widgets.msn.com domain.

Re: I bought my name ...

Hate to be the bearer of bad news, but Google isn't the bad guy here. You're just incompetent.

Calm down. There are pros that can manage your mail server for a fee. If you don't want to pay somebody, and you don't want to learn, then Google will be happy to provide that service for free.

Re: I bought my name ...

It really sounds like ACME-Widgets.com was the name of the ISP.

No. I made up the ACME-Widgets name to obfuscate the actual business name and keep my friend from becoming a Slashdot topic of discussion. Suffice it to say that I am quite familiar with the fuck-up that Microsoft caused. As I was one of the people that tried (unsuccessfully) to sort it out for her.

Re: I bought my name ...

Maybe you were unsuccessful because you are terrible at sorting things out, assuming you are the same AC that I was replying to as an AC.

I am well aware that you made up ACME-Widgets.com. ACME has been a stand in for whatever before I can remember, very popular in Warner Bros. cartoons.

Now stop being an obtuse moron and provide some actual meat in this discussion.

Some are used internally

[Anubis350]

I have a domain name I just use for internal use on my network, but have the actual domain name so, among other things, I can issue real certs for it. I suspect there's a fair amount of use cases like that. Also probably plenty of domains just used for email, or internal gsuite type stuff.

Re:Wonder how many empty and error just don't have

[hackertourist]

Isn't that what subdomains are for? I.e. instead of registering the separate domain 'dellteamnet.com' they could have stuck it at teamnet.dell.com.

Re:Wonder how many empty and error just don't have

[The-Ixian]

You are assuming that the silos can coordinate with each other efficiently.... Never the case in a mega corp....

Easier for the remote access team to set up their own domain than to try to navigate the waters necessary to open and maintain a sub-domain.

Three letter domain redirect

[pjwhite]

There's a three-letter domain owned by some friends of mine that does nothing but redirect to a page on my own website (with my permission). I've had several people contact me to try to buy the three letter domain, even though a quick whois would have given them the real domain owner's info.

Just Bot It.

[wolfheart111]

for any tdl really. You get some pretty interesting names. :)

You just NOW figuring this out?

Hell, fifteen years ago when I was setting up a complex of five domains, I made the mistake of doing a search for one of them first. By the time I went to register it, someone had grabbed it and I got an email offering to sell it. It sat unused for five years until lapse, at which time I finally got it.

Yer a little late to the topic, Sonny.

PS: Hint - if you get such an email, do not respond. If you do, you'll never see it free again.

Re:You just NOW figuring this out?

[Aighearach]

What amazes me is that so many people know about the problem, but don't know which companies do it, and which don't.

I can't imagine facing this situation, and not spending the time to do a little research and do some tests to find a good company.

How do you know it's unused?

[thegarbz]

Well how do you know the domain name you want is unused?

Did you scan every port on the address it pointed to?
Did you check all DNS entries to see if there is an active subdomain?
Did you check the MX records to see if someone's getting email from it?
Did you check with all products out there to see if someone didn't just block that domain because they produce a product that relies on hijacking DNS in order to configure, and they registered the domain to ensure they don't end up trampling on a legitimate site?

Re:Wonder how many empty and error just don't have

[aaarrrgggh]

And even when the silos do communicate, things like trust chains and business units can make it a pain.

While dellteamnet.com might be ambiguous, it might actually be for intranet.storage.marketing.dell.com. For my company, we have two legacy domain names (.com and .net) or our original, rediculously long domain name (20 characters... only took us a month to justify paying for a 6-letter domain), and two backup domains that likely should be retired. That is for just 50 people...

Re:Wonder how many empty and error just don't have

[Oligonicella]

Well, I have five, three of which are related by name and connected to books of mine. One is the 'real' site and the other two are by and large stubs. They have bits of stuff on them but are to keep those particular names under my control.

Re:Wonder how many empty and error just don't have

I used to work at a company that resold secondary domain names. One story was legendary among the sales team. There was a three letter domain name, privately owned, which also happened to be a word which summed up an entire multi-billion dollar industry. One of the main companies in that spaced noticed this domain, and asked our sales people to help them acquire it. They wanted to pay around $500,000 for the privilege of owning it.

The man who owned it had worked in Silicon Valley for a long time, had plenty of money, and didn't need the $500,000. Let's say the domain name was ABC.com, this guy's name would then be ABCowski.com. In his word's, "That's me. I'm John ABCowski. I'm ABC.com. I don't need the money. Stop bothering me." The sales guys, who worked on commission, were tearing their hair out, not able to understand why the guy wouldn't take the money. As a non-sales person, and someone who finely appreciates the fact that money doesn't buy everything, I found this hilarious.

Kawhoosh!

[Oligonicella]

That is all.

goatrape.com

[jwhyche]

I was going to make a joke about goatrape.com not being taken. Then i checked to make sure. That was a mistake.

Re:goatrape.com

Is that where the private family photo archive is?

Re:goatrape.com

No, but I bet we can find a good picture of your mama there.

Re: goatrape.com

What, no link?

Re:goatrape.com

[bazorg]

And was that mistake the greatest of all times?

All my domains point to a web server...

That says "Hi" in a very basic HTML index page to visitors/bots. It's the simplest solution that keeps the "your domain appears to be unused and we'd like to buy it for peanuts" emails in check. I'm even nice enough to set up SSL certs.

Personal Use

Or there are those that own our own names as web address. I know I do, I also own a few variations. Not all are in use though, mostly out of protecting myself.

Anyone remember

Haris's Lament: "All the good ones are taken."

What's old is new again...

You can still buy many registered domanis

There's an active aftermarket in domains, why not use that? I use https;//www.domainjackal.com and https://www.domainauctionsearch.com for this purpose.

Re:Wonder how many empty and error just don't have

[novakyu]

Not quite a 3-letter domain, but this one is provably real: milk.com.

Re:Wonder how many empty and error just don't have

[_merlin]

Yeah, I have domains where the base domain just gives a 403 but subdomains are used for various things, or / gives a 403 but other URLs have content on them. My wife's e-mail is on a domain with that server a placeholder page with two sentences of text on it. I had someone asking to buy it off me as I'm clearly not using it and she didn't understand that there are more services than web sites.

Re: Wonder how many empty and error just don't hav

Oil
Ore
Gas

Those are my guesses

Domain Harvesters

How is this guy a CTO? Everyone knows there are companies that harvest domain names. Domains with full words are scarfed up by domain harvesters and then sold as a premium domain for thousands of dollars. WTF?