Also, there is NO WAY that this hijacker could have authenticated the
request at Internet Domain Registrars side - since the domain in question
has a valid email address of our Customer.
That makes me question Internet Domain Registrars security processes if they
DO NOT AUTHENTICATE transfer requests properly and just send those out -
this is against ICANN rules! Time to contact [EMAIL PROTECTED] me
thinks.
cheers
Genie
eyeondomain.com
----- Original Message -----
From: "opensrs" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Saturday, June 23, 2001 5:42 AM
Subject: RE: can we track who requested Transfer Away from OpenSRS?
> same here. it just happened on wednesday
>
> -----Original Message-----
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED]]On Behalf Of genie
> Sent: Friday, June 22, 2001 11:04 PM
> To: [EMAIL PROTECTED]
> Subject: can we track who requested Transfer Away from OpenSRS?
>
>
> A customer of ours just received transfer away request from OpenSRS
request
> for one of their domains....
>
> They have not applied for it and suspect someone is trying to hijack their
> domain... the OpenSRS message does not disclose anything about the party
> attempting to do transfer away request.
>
> <snip>
> A request has been received to transfer the domain ****.com
> away from the Registrar Tucows. This request was entered at 22-Jun-2001
> 14:12:02 by Internet Domain Registrars If this is a valid request and
> you ...
> <snip>
>
> Is there a way we/customer can get more details (email address... name...
> anything?) on the requestor? It would be nice to be able to track them
> down.
>
> cheers
> Genie Livingstone
> eyeondomain.com
>
>
