> On 25 Sep 2021, at 11:07, Alessandro Vesely via mailop <[email protected]> > wrote: > > On Fri 24/Sep/2021 13:44:49 +0200 Jaroslaw Rafa wrote: >> Dnia 24.09.2021 o godz. 13:36:28 Sidsel Jensen via mailop pisze: >>> >>> I think you misunderstood what Michael wrote. I think he was referring to >>> the changes in WHOIS, which makes it harder to find correlating abusers, >>> since the data is now hidden due to the implementation of GDPR. Privacy >>> is sometimes a two-edged sword. >> Yes, I did mention that in my email. But despite this, I think overall GDPR >> is a step in good direction. > > > I'm not sure the disappearance of WHOIS data was mandated by GDPR. Lots of > domains had anonymous contacts even before, as an initiative of the relevant > registrars. Then, all of a sudden, WHOIS servers were disabled. An > excessively prudent stance or the welcome occasion to finally dismiss > hostmaster responsibilities?
In general the widespread restriction of whois data from the public was a response to GDPR. A lot of companies published privacy protected data and had fake data before GDPR. Many in the sending space (ESPs, certification providers, consultants, ISPs) expected legitimate senders to have valid data in their whois records. However, when GDPR came into effect the registrars themselves stopped publishing data in whois - nothing to do with the individual choice. In some cases individual businesses wanted to publish the data but their provider wouldn’t facilitate it. The underlying piece was that the registries didn’t want to have to deal with GDPR so their response was to make the data unavailable to the general public. However, some registrars stopped publishing whois data before GDPR as a way to prevent their customer from being scammed / abused / harassed. I went to a talk by one of the registrars so I could explain to them what a bad idea it was to stop publishing whois data. They presented all their data for why it was a good idea and how much spam, harassment and outright fraud they were protecting their users from. > Compare domains with number registries, where RDAP allows fully automated > abuse reporting —subject to the same laws. I’m not sure what that has to do with the choices that the registrars / registries made under GDPR or to protect their userbase. laura -- Having an Email Crisis? 800 823-9674 Laura Atkins Word to the Wise [email protected] (650) 437-0741 Email Delivery Blog: http://wordtothewise.com/blog
_______________________________________________ mailop mailing list [email protected] https://list.mailop.org/listinfo/mailop
