VeriSign Sued Over SiteFinder Service 403
dmehus writes "It was only a matter of time, the pundits said, and they were right. Popular Enterprises, LLC., an Orlando, Florida based cybersquatting so-called 'search services' company, has filed a lawsuit in Orlando federal court against VeriSign, Inc. over VeriSign's controversial SiteFinder 'service.' While PopularEnterprises has had a dodgy history of buying up thousands of expired domain names and redirecting them to its Netster.com commercial "search services" site, the lawsuit is most likely a good thing, as it provides one more avenue to pursue in getting VeriSign to terminate SiteFinder. According to the lawsuit, the company contends alleges antitrust violations, unfair competition and violations of the Deceptive and Unfair Trade Practices Act. It asks the court to order VeriSign to put a halt to the service. VeriSign spokesperson Brian O'Shaughnessy said the company has not yet seen the lawsuit and that it doesn't comment on pending litigation."
Nice tactic. (Score:5, Informative)
Arguing that they get for free what other companies must pay for is probably one of the easier arguments for win, since it proves itself nearly by definition.
I applaud the jackass who pays to abuse typos. At least they've finally proven their worth.
Re:I've never understood (Score:3, Informative)
There's nothing wrong about cybersquatting, but it's Just Not Right(TM).
Re:I've never understood (Score:3, Informative)
Most ISPs have blocked it (Score:4, Informative)
Please reply to this and list names of fellow anti-VeriSign ISPs if your ISP has blocked this new "feature" as well.
Thanks! I will enjoy analyzing this data.
and the IEFT now has an Internet-Draft (Score:5, Informative)
Re:I've never understood (Score:4, Informative)
First, a history lesson. '40 Acres and a Mule' wasn't a pioneer issue. What it is true that during the western rushes, various federal lands were put up for auction or claim by pioneers. The lands were not, however, specified to be 40 acres, but varied in size based on the territory and the specific land grant. For that matter, according to one of my HS Social Studies teachers (a dozen years ago), there were still federal lands for claim in parts of Alaska. That teacher was known to embellish the truth, so I won't put any varacity statement with that.
'40 acres and a mule' were reparations for slaves in the south. They were instituted by a Northern (Union) general, during the aftermath of the civil war, and were later reveresed by an presidential executive order.
So, in short, your parellel falls a little short. If the ICANN were to pass a ruling granting johnny-come-latelies names from vast corporate pools, that would be comprable.
So, what's wrong with cybersquatting: Well, with the federal land grants, if you occupied and developed the federal lands for a specified period of time, they became yours. You could sell or otherwise use them as you wished. Here, cybersqquatters either are taking a developed item (debatably property) and using its good will and value for an interest contrary to the orginal owners. Which would be a violation of the land grants, so thats one point where your analogy fails.
The other type of cybersquatter (who speculates on names or misspellings) is also abusing the good will of the originator, but may be a valid comparison. It is, however, annoying, to get redirected away from what you wanted because of a typo, and from the other side, a squatter who is taking an otherwise useful resource and making it near-useless is neither providing a valid service or generating good will.
Don't badmouth Netster too bad (Score:5, Informative)
Timeline:
1997 or so: I registered tylereaves.com, mainly for use in e-mail
2000: I let the domain lapse, not really using it, and tired of paying $40 a year or so for it (Hey, registering was expensive in '97!)
200?: Netster becomes the owner of tylereaves.com
2003: I nicely ask for it back.
2003: I get my domain back. They didn't even charge me the trasnfer fees.
Technical defense against hijacked domains (Score:5, Informative)
This is a good time to look at Bob Frankston's dotDNS proposal [circleid.com] for a layer of reliable but meaningless domain names. dotDNS lookups can be made self-verifiable using public-key signatures, but without the costly chain of trust required by DNSSEC methods. The validity of a dotDNS binding can be verified easily by the querier, without relying at all on the server that provided the putative binding.
dotDNS does not solve the whole problem, since any layer that translates from humanly meaningful names to dotDNS names is still vulnerable to hijacking. But the reliable and verifiable name bindings in dotDNS will make it *much* easier to switch name-resolution services when we are dissatisfied with their policies.
dotDNS is a cheap and immediately deployable positive step toward fixing the DNS mess, requiring no approval by any central agency. It's time for a visionary sponsor to step forward and just do it.
Owning a domain you don't use (Score:5, Informative)
But why? There's no real market in domain names any more. Verisign tried to make one. GreatDomains used to have thousands of listings, and you'd see things like "Asked: $25,000. Bid: $20." Now Verisign only has "premium domains" on GreatDomains, ones like "record.com". There are only 66 domains for sale, and few sales.
Re:"Unfair advantage"? (Score:2, Informative)
No, I think their complaint is that Verisign is in charge of baking the pies in the first place... it's hard to develop market share for your product, if users are diverted upstream.
Re:Most ISPs have blocked it (Score:5, Informative)
If you work in an ISP or other network infrastructure company, you know first-hand the degree of astonishment and rage that Verisign's move elicited; the fallout (spam filtration, security, network monitoring, etc.) goes far beyond HTTP. I don't think any of us slept much that night ... it only took a few hours to restore normal DNS behaviour, the remaining ten or so I spent in shock with my jaw scraping the floor.
I've dealt with Verisign before (try getting decent documentation on the cybercash application library!) and knew they were greedy and stupid, but I wasn't counting on raw, unfettered eeeeeevil.
Re:Most ISPs have blocked it (Score:2, Informative)
Re:Pert Peeve (Score:2, Informative)
Re:Most ISPs have blocked it (Score:5, Informative)
BIND patch available to block site finder (Score:2, Informative)
http://www.isc.org/products/BIND/delegation-only.
I just still can't believe Verisign thought they could get away with this.
link with more info... (Score:2, Informative)
http://www.popluarenterpirses.com/ [popluarenterpirses.com]
Re:Null space needs to remain null (Score:5, Informative)
No, there's too much prior art, but John Cage has a copyright on 4'33" of it.
KFG
Re:Most ISPs have blocked it (Score:3, Informative)
Re:Most ISPs have blocked it (Score:1, Informative)
Re:Most ISPs have blocked it (Score:3, Informative)
Re:Most ISPs have blocked it (Score:1, Informative)
Mike Horwath, senior admin, called Verisign's actions "offensive". Concise, yet very descriptive.
Re:BIND patch available to block site finder (Score:3, Informative)
The bug is that NS lookups for non-cached domains fails.
nslookup
set type=ns
geek.com
Fails if not already cached by named
nslookup
geek.com
set type=ns
geek.com
Always works
Re:Most ISPs have blocked it (Score:3, Informative)
Copy of the Lawsuit and More Details (Score:3, Informative)
home.businesswire.com/portal/site/google/index.js
Copy of lawsuit:
search.netster.com/about/lawsuit.asp [netster.com]
Sorry, I forgot to include these links in my submission. Post away!
Cheers,
Doug
Re:Pert Peeve (Score:4, Informative)
Re:Most ISPs have blocked it (Score:3, Informative)
Re:I dunno about that. (Score:2, Informative)
Re:I'm not surprised... (Score:3, Informative)
try these links
Obligatory hello world example [verisign.com]
Micro$oft [verisign.com]
and a goatse.cx [verisign.com] version
Re:Most ISPs have blocked it (Score:2, Informative)
Re:"Unfair advantage"? (Score:1, Informative)
Umm ... guys ... I know it is late but you need to reparse the sentence. Mountain View is the California city in which Verisign is based. The litigant is Popular Enterprises, LLC.
--
Concerned about your network security? Try the free Nmap Security Scanner [insecure.org]
Re:Nice tactic. (Score:5, Informative)
http://www.petitiononline.com/icanndns/ [petitiononline.com]
Alexa (Score:3, Informative)
http://www.alexa.com/site/ds/movers_shakers
Re:"Unfair advantage"? (Score:2, Informative)
If this is the way your VPN systems are set up, then they are set up wrong! The setup you have never was secure or safe because someone could've registered the domains you're hoping won't exist anyway.
The correct way to do this is to use a search order. That's why /etc/resolv.conf
has a search directive.
You put something like
and then when you look up "intranet", it will first try "intranet.internal.foo.org.", then "intranet.foo.org.", and THEN stuff that exists in the outside world.
Of course, not all operating systems have /etc/resolv.conf, but if they
don't have something equally good,
then they're broken and insecure...
Cross Site Scripting Bug (Score:4, Informative)
Re:what the fuck? (Score:3, Informative)
Yes, thank you Ayn Rand. And how do you give them competition? Ask them to relinquish control of their root servers and institute yours in their place? Or maybe start a whole new internet? Yeah, that's going to work.
Let's face it. Verisign broke the rules (ie: RFCs) which were designed to govern how the internet infrastructure works. Rules which they implicitly agreed to in attaining their position of power.
However, perhaps you're right. They 'fought' for their position, so anything is within their rights. Why, if they suddenly decided to randomly redirect people's existing websites to a Verisign information page, I guess that's ok. After all, one can always fight to give them better competition by creating one's own separate internet.
not quite (Score:3, Informative)
Not quite. Owning a domain is a separate issue from DNS. Owning a domain means you have an entry in a domain registry. It does not mean you have a DNS entry. Owning a domain means you have paid your money and signed up and that you have the right to have your domain added to the DNS.
A lame delegation is something different. A lame delegation is when there are NS records that exist in the DNS, but they point to the address of a server that can't answer the queries for that domain. In contrast, if you have a domain that isn't in DNS, there is no NS record at all.
to websitesales@verisign.com (Score:2, Informative)
Whenever somebody miispells my internet address, they end up going to sitefnder.veirsign.com!
This is extremely difficult on my disabled users who frequently mispell my sight name, and rely on their browsers error message to know what happened.
They also don't appreciate that the closest match for the common mispellings are an adult site!, but that is besides the point.
As my main web site makers, what can you do? I'd hate having to go with another web design ferm, I trust that you can fix this... was it an upgrade to Windows 2003 that caused this problem? I've heard some bad things about that... but Microsoft patches their stuff pretty quickly.
Fred is out for the moment, had a horrible car accident, I'm corrisponding for him. Thanks!
-Aaron Peterson
aaron_pet@hotmail.com
509 332 7697
how to call Verisign and complain (Score:4, Informative)
+1 703-742-0914 (worldwide)
+1 888-642-9675 (toll free US/Canada)
When you call, select:
* 1 (purchase an product or renew an exist product)
* then 7 (all other questions)
I recommend that you be patient with the Verisign rep that answers the phone. That person may not fully understand the issue / problem, and they are unlikely to personally be responsible for the Verisign decision. Remember that you are objecting what Verisign as a company is doing. Don't yell at the rep. Be polite but firm.
Ask Verisign to stop the wildcarding now. Explain why what they are doing is wrong (such as being unable to determine of a EMail message is being sent from a bogus / non-existent domain because thisdomaindoesnotexist.com resolves to 64.94.110.11).
If you do business with Verisign now, tell them that you will switch vendors unless Verisign stops this practice in X weeks. (fill in the X)
You might want to leave your phone number and request a callback. Anonymous complaints do not go as far.
If you are in the US, you might want to contact your local member of congress and object about what Verisign is doing. Let Verisign know that you are doing this when you call.
Yes, they might flush your complaint down
Re:Most ISPs have blocked it (Score:2, Informative)
One of our two upstreams (Amplex.net) has redirected traffic to that IP to their own internal site, with a link to a google search and a link explaining the controversy.
how to complain about Verisign to ICANN (Score:5, Informative)
you can file a complaint about Verisign to ICANN by using their:
Partial Windows Fix (Score:2, Informative)
C:\WINDOWS\system32\drivers\etc\hosts
or
C:\W
and add the line
0.0.0.0 sitefinder.verisign.com
Now this won't fix the DNS resolution problems but it will at least stop your browser from hitting the sitefinder page.
Re:How come noone complains about other TLDs? (Score:2, Informative)
Those domains have been set up that way for years. I wager they've been set up since those ccTLDs became popular. And they don't respond to SMTP connections.
The com and net gTLDs have *not* been set up that way for year and we really don't want them to be.
Sitefinder.verisign.com has a web bug (Score:2, Informative)
http://verisignwildcard.112.2o7.net/b/ss/verisi
Why would they want to know my plugins and screen size, amongst other things?
Oh well, not to difficult to get Mozilla to block that at the cookie it sets.
terms of use (Score:2, Informative)
Heh, http://sitefinder.verisign.com/terms.jsp is an interesting read.
I had to modify the following a bit from the original. Slashdot wouldn't let me post it as it was (Lameness filter encountered. Post aborted! Reason: Don't use so many caps. It's like YELLING.)
And just how am I supposed to stop using this? It's kinda forced upon me (besides not using the net at all...).
VeriSign is not the only one (Score:1, Informative)
VeriSign built their own system, which obviously works fine. NeuStar has no such resources or knowledge, and outsourced the building of their system. Unfortunately for them, it is plagued with problems and has never worked right, because they partnered with a couple of morons to build the system for them (an ex-journalist and an ex-IT manager, who thought they could build an 'Internet' company) The NeuStar system is not currently running, because it screwed up the NeuStar
Just a little FYI about other registries already using a SiteFinder-like service, from a developer at a company the morons tried to hire to help them fix the broken service they built for NeuStar. Naturally, we declined to help them try and steal web traffic for profit.
As far as ICANN goes, they knew the registries (both VeriSign and NeuStar and others) were building projects to intercept and sell mis-typed domain traffic. VeriSign and NeuStar legal teams had even met with ICANN to discuss the feasibility of the projects. ICANN agreed with the concept, and to 'see how it goes once implemented'. Their recent silence followed by the 'advisory' is simply their attempt to over themselves after the fact - they knew it was coming, and conceptually bought off on the idea.
So there you have it, from an insider. I guess next time you should have us sign NDA's, morons.