/ Most Viewed
Challenges in Anti-Spam Efforts
Without commenting on the particulars as they relate to Goodmail -- especially since I am on the advisory board for Habeas, a competitor -- let me note that public discussion is largely missing the nature of the current Internet mail realities and the nature of the ways we can deal with them. There are two articles in the current issue of the Internet Protocol Journal, of which I wrote one, that provide some useful background about this reality. Simply put, Internet mail needs to sustain spontaneous communications... more
- Dave Crocker
- Comments: 11
- Views: 20,876
ICANN Launches Russia’s Top-Level Domain in Cyrillic Characters
The first Internet domains using the Cyrillic script were launched on May 13 after Russia was officially assigned the .?? (.rf, for "Russian Federation") domain by the global Internet governing body. Representatives of the Internet Corporation for Assigned Names and Numbers (ICANN) handed Russia its Cyrillic domain administration certificate at an Internet forum that kicked off in Moscow. more
- CircleID Reporter
- Comments: 0
- Views: 20,873
Ye Olde DNS
I've been writing about the intrinsic problem with the use of the DNS as both a technical mechanism and as a source of unambiguous meaning and authority. The problems are much worse than most of the posters seem to note. The current approach assures that the Internet will unravel and worse, that URLs become perversely reused. The commercial terms of service associated with the use of ".com" names exacerbates the problem by imposing arbitrary social policies into the plumbing of the Internet. more
- Bob Frankston
- Comments: 1
- Views: 20,868
Multistakeholderism Is Working: Even in Exile
I'm happy to report (mostly) positive feedback on my last article that examined how the multistakeholder model tackled, and tackled well, Phase 1 of the review of all Rights Protection Mechanisms. While bad news may sell more clicks, a little good news from time to time also appears to be welcome. Good news also reminds us of how fortunate we are to have a private sector ICANN with a multistakeholder model of policy development... more
- Paul McGrady
- Comments: 6
- Views: 20,865
Policy Failure Enables Mass Malware: Part II (ICANN and OnlineNIC)
On Wednesday September 29th at 1PM there will be a meeting in the Old Executive Building in Washington D.C. with Registries and domain Registrars to discuss illegal Internet sales of prescription drugs. ICANN was originally invited but declined because citing "inappropriateness" . One "U.S." Registrar who definitely will not be in attendance is OnlineNIC more
- Garth Bruen
- Comments: 2
- Views: 20,850
Putting a Spammer in Jail
The country's first criminal trial about spam ended in Leesburg, Virginia earlier this month with a conviction of Jeremy Jaynes, better known under his nom de spam of Gavin Stubberfield. I was an expert witness for the prosecution, the Commonwealth of Virginia. The case was brought under Virginia's state anti-spam law, not the weaker Federal CAN-SPAM act... more
- John Levine
- Comments: 1
- Views: 20,847
Microsoft Choking Domain Parking Business Practices?
In a follow up to Microsoft's Strider URL Tracer tool released a few months ago, SecurityFocus is running an article which takes a closer look at how Microsoft's free Strider URL Tracer with Typo-Patrol is aimed at fighting typo-squatters and domain parking abuse. From the article: "In most cases, the typo domain is not even selling a product or service itself. The typo domain makes its money from syndicated advertising such as Google's AdSense program. The typo-squatter simply parks the domain and the only content on the site ends up being the ads served from a syndicated advertising program..." more
- CircleID Reporter
- Comments: 9
- Views: 20,831
IPv6 Security Myth #5: Privacy Addresses Fix Everything!
Internet Protocol addresses fill two unique roles. They are both identifiers and locators. They both tell us which interface is which (identity) and tell us how to find that interface (location), through routing. In the last myth, about network scanning, we focused mainly on threats to IPv6 addresses as locators. That is, how to locate IPv6 nodes for exploitation. Today's myth also deals with IPv6 addresses as identifiers. more
- Chris Grundemann
- Comments: 2
- Views: 20,816
Damaging Malware Uncovered in the Google Play Store
Android users can choose from 3.718 million applications in the Google Play Store. When installing applications, the majority of consumers trust Google to keep their devices safe from hackers. However, the reality is different. Just back in May 2023, researchers discovered over 101 infected applications in the Android store. Many of these apps counted over 400 million downloads. more
- Evan Morris
- Comments: 0
- Views: 20,811
10th Registration Operations Workshop (ROW), June 8th, 2021, Online
The Registration Operations Workshop (ROW) was conceived as an informal industry conference that would provide a forum for discussion of the technical aspects of registration operations in the domain name system and IP addressing. The 10th ROW will be held online on Tuesday, June 8th, 2021 at 13h00-17h00 UTC. Click to learn more about the discussion topics and registration details. more
- Marc Blanchet
- Comments: 0
- Views: 20,811
Canada Finishes its Spam Task Force, Result is Pretty Good
Industry Canada, the part of the Canadian government roughly equivalent to the U.S. Commerce Department, has had a task force on spam working for the past year or so. I was invited to participate as an unofficial member, since I'm not a Canadian. Yesterday, it wrapped up its work and published its report (aussi disponsible en francais) to the government. It's quite good, and has a set of 22 recommendations. more
- John Levine
- Comments: 2
- Views: 20,791
The Fight Is on to Save Access to WHOIS: A Call to Action for Brand Owners
Late last week, ICANN published the guidance from the Article 29 Working Party (WP29) that we have been waiting for. Predictably, WP29 took a privacy maximalist approach to the question of how Europe's General Data Protection Regulation (GDPR) applies to WHOIS, a tool widely used by cybersecurity professionals, businesses, intellectual property owners, consumer protection agencies and others to facilitate a safer and more secure internet. more
- Brian Winterfeldt
- Comments: 8
- Views: 20,763
DNSSEC: Will Microsoft Have Enough Time?
I have previously pointed out the shortcomings of good and user friendly support for DNSSEC in Microsoft's Server 2008 R2. During the period just after I wrote the post, I had a dialogue with Microsoft, but during the last months there has been no word at all. The reason I bring this up again is that more and more Top Level Domains (TLDs) now enable DNSSEC and also the fact that within six months the root will be signed. more
- Torbjörn Eklöv
- Comments: 0
- Views: 20,752
ICANN Files Legal Action Against Domain Registrar for Refusal to Collect WHOIS Data
Germany-based ICANN-accredited registrar EPAG owned by Tucows has informed ICANN that it plans to stop collecting Whois contact information from its customers as it violates the GDPR rules. more
- CircleID Reporter
- Comments: 1
- Views: 20,735
Transition to IPv6 Address
Last month's column looked at the exhaustion of the IPv4 unallocated address pool and the state of preparedness in the Internet to grapple with this issue... There has been a considerable volume of discussion in various IPv6 and address policy forums across the world about how we should respond to this situation in terms of development of address distribution policies. Is it possible to devise address management policies that might both lessen some of the more harmful potential impacts of this forthcoming hiatus in IPv4 address supply, and also provide some impetus to industry to move in the originally intended direction to transition into an IPv6 network? more
- Geoff Huston
- Comments: 1
- Views: 20,729