>> The problem with most the solutions proposed to date assume that the RSP/reseller is active in the management of the domain and fully aware of any and all changes that are made by the domain owner.
Under the OpenSRS system that simply is not true. << The difference being that this is not a regular change via an authenticated user in the end-users web interface, but an exceptional change through a FAXed change request that (as stated) can be all too easily forged. I think the FAXed requests should be bogged down as much as possible. Possibly even requiring a payment so that OpenSRS can spend some additional time verifying the change. -- Regards, Sam I-Tequenology -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of ezgoing8 Sent: 20 March 2002 01:42 To: opensrs discuss Subject: Re: hijacking, AGAIN The problem with most the solutions proposed to date assume that the RSP/reseller is active in the management of the domain and fully aware of any and all changes that are made by the domain owner. Under the OpenSRS system that simply is not true. OpenSRS simply does not give the RSP/reseller much of a role in the managing of the domain names. All we can do is collect and submit the fees to OpenSRS from the domain owner and request OpenSRS send passwords to the domain owner if they lose their password. If it is a hosting client then we would have information on his current status. In case of doubt with hosting clients we ask for the last four digits of the credit card number used. But if he is just one of the many who use us to register the domain name and then either park it or host it elsewhere we would not be involved in the management process for the domain name. We still have a few domain names with BulkRegister.com. At one time when a domain name was transferred away from BulkRegister.com they would send us an email asking us to verify the request from our client, giving us just a few days to verify the information. Very few of these clients ever responded to our emails asking if they did in fact wish to transfer the domain name to another registrar. BulkRegister discontinued this practice so I assume they received as few responses as we received. So I don't think these alternative proposals will work. ----- Original Message ----- From: "POWERHOUSE" <[EMAIL PROTECTED]> To: "Charles Daminato" <[EMAIL PROTECTED]>; "David Denney" <[EMAIL PROTECTED]> Cc: "Dave Warren" <[EMAIL PROTECTED]>; "opensrs discuss" <[EMAIL PROTECTED]> Sent: Tuesday, March 19, 2002 2:41 PM Subject: Re: hijacking, AGAIN > Well, Two Jason Ingrams is not common, and OpenSRS made that mistake, what > about someone with My name, > Richard Jones, of which there is about 2 to 10 in EVERY single City I've > been ever been in. > > Why don't they just make a short email that goes out to the current email > before it is changed, that simply says something to this > effect... > ...
