ICANN/GNSO GNSO Email List Archives

[registrars]


<<< Chronological Index >>>    <<< Thread Index >>>

RE: [registrars] Domain Registry Support

  • To: "'Rick Wesson'" <wessorh@xxxxxx>, "'Marcus Faure'" <faure@xxxxxxxxxxx>
  • Subject: RE: [registrars] Domain Registry Support
  • From: "John Berryhill" <john@xxxxxxxxxxxxxxxxx>
  • Date: Sun, 7 Aug 2005 00:17:39 -0400
  • Cc: "'Jim Archer'" <jarcher@xxxxxxxxxxxxxxxxxxx>, "'Registrars Constituency'" <registrars@xxxxxxxx>
  • In-reply-to: <42F463D5.3090107@ar.com>
  • Sender: owner-registrars@xxxxxxxxxxxxxx
  • Thread-index: AcWaWAYYWsoEjs3LTQWQdDmHieBTbwArX3Ug


Could I interest you in some fake banks:

http://www.aa419.org/fake-banks/fakebankslist.php

These are typically used in connection with Nigerian 419 schemes, and also
include sites where you can "verify" that you've won the Dutch lottery, such
as this gem:

www.dutchstakeout.com


-----Original Message-----
From: owner-registrars@xxxxxxxxxxxxxx
[mailto:owner-registrars@xxxxxxxxxxxxxx] On Behalf Of Rick Wesson
Sent: Saturday, August 06, 2005 3:17 AM
To: Marcus Faure
Cc: Jim Archer; 'Registrars Constituency'
Subject: Re: [registrars] Domain Registry Support

Marcus Faure wrote:

>Hi Rick,
>
>is there a charge for the service?
>  
>
no, nore is one is planned

>If CORE were to participate, we would inform the respective member who
>is in charge of the compromised domain, but would not enforce to take
>it down.
>  
>
great. I'll work on putting a formal note togther for registrars and how 
it all works.

-rick

>Yours,
>Marcus
>
>  
>
>>Something I've been doing for network service providers is a daily 
>>report on compromised systems. I'm working with APWG on
>>a system to desiminate information about phishing to registrars and 
>>NSPs. We are finalizing the agreement and the folks at APWG would like 
>>to know who would be interested in participating.
>>
>>The system is real time, notices in text and xml using jabber as the 
>>transport. Also if anyone of you have an ASN and would like reports on 
>>your network let me know.
>>
>>in short would anyone use authenticated information about a fishing 
>>attack to place the domain on hold? also the jabber infrastructure could 
>>be leveraged for regular IM instead of a mailing list. Most of the folks 
>>going after botnets are moving from lists to IM because of the 
>>timeliness of the information.
>>
>>-rick
>>
>>
>>
>>
>>Jim Archer wrote:
>>
>>    
>>
>>>Would it be possible or desirable to set up a special RC list just to 
>>>announce scams and such?  That would be a relatively low traffic list 
>>>and we could all add representatives who are not interested in most 
>>>discussion here but who are responsible for these kind of consumer 
>>>affairs issues.
>>>
>>>This might be an effective for all of us to help protect our customers...
>>>
>>>What does everyone think?
>>>
>>>      
>>>
>
>  
>





<<< Chronological Index >>>    <<< Thread Index >>>