CircleID

Comments

Garth Bruen Discussing Whois, DNSSEC and Domain Security

• Comment posted Apr 05, 2011 3:06 pm PDT — by Garth Bruen
  Michele, Would you be opposed to having an open-forum discussion/debate about these issues during a future ICANN meeting we are both present at? -Garth

• Comment posted Apr 05, 2011 2:39 pm PDT — by Garth Bruen
  Respond to the Detective, not me: "And then there's a big hole at the bottom of our little box square here, and that big hole is DNS.  That big hole is ICANN.  That big hole is the registrars.  That big…

Two Years Later Dozens of Registrars Still in the Shadows

• Comment posted Dec 19, 2010 7:12 pm PST — by Garth Bruen
  This is about friendship? I thought it was about policy…

What's Driving Spam and Domain Fraud? Illicit Drug Traffic

• Comment posted Dec 15, 2010 2:57 pm PST — by Garth Bruen
  Google, Microsoft, Others Join Obama to Fight Phony Pharmacies http://www.pcworld.com/article/213677/google_microsoft_others_join_obama_to_fight_phony_pharmacies.html

Two Years Later Dozens of Registrars Still in the Shadows

• Comment posted Dec 15, 2010 2:51 pm PST — by Garth Bruen
  While you may dismiss illicit online pharma as my personal pet peev, major providers and the U.S. gov't think otherwise: Google, Microsoft, Others Join Obama to Fight Phony Pharmacies http://www.pcworld.com/article/213677/google_microsoft_others_join_obama_to_fight_phony_pharmacies.html

• Comment posted Dec 10, 2010 3:43 pm PST — by Garth Bruen
  (http://www.icann.org/en/correspondence/burnette-to-bruen-08dec10-en.pdf). As many of you know the issues I have been raising were reported in June to compliance staff. I note that response from Ms. Burnette is welcomed because it is all we asked for originally, a declaration from the…

• Comment posted Dec 07, 2010 3:42 pm PST — by Garth Bruen
  you just made my point

• Comment posted Dec 07, 2010 3:41 pm PST — by Garth Bruen
  I find really hard to believe that anything I'm doing interferes with your work. Anyone who thinks this is "broad brushstroke" against the Registrars as a whole didn't read carefully. Two key statements from the posting: 1. "The good news…

• Comment posted Dec 03, 2010 11:45 pm PST — by Garth Bruen
  "ad hominem attack" is a common phrase used to describe this type of logical reasoning failure in an argument. Who does it seem to be benefiting? Any guesses who is funding us? Who am I holding in the corner? "Crusade"…

• Comment posted Dec 03, 2010 10:06 pm PST — by Garth Bruen
  Your response to a report about transparency within the industry is to claim KnujOn is not transparent? I suppose it is difficult to comprehend that a grass-roots effort is supported by ordinary Internet users sick of being ripped-off and spammed.…

Policy Failure Enables Mass Malware: Part II (ICANN and OnlineNIC)

• Comment posted Sep 30, 2010 2:11 pm PDT — by Garth Bruen
  SECURETABS[DOT]NET replaced with SECURETABS[DOT]ORG, still at Onlinenic!

• Comment posted Sep 30, 2010 12:11 pm PDT — by Garth Bruen
  SECURETABS[DOT]NET is now finally offline after 74 days, but there are still three other malware-redirected domains in this scheme: GENERICTAB.COM (TUCOWS), CHEAPDRUGSNORX.COM (OnlineNIC), BESTGENERICPHARMA.COM (DIRECTNIC). The domain that controls the rotation of these sites: PHARM-TRACKER.COM is also sponsored by OnLineNIC.…

Policy Failure Enables Mass Malware: Part I (Rx-Partners/VIPMEDS)

• Comment posted Sep 25, 2010 3:57 pm PDT — by Garth Bruen
  ameritrustpharmacy[DOT]net, indiangenericspharmacy[DOT]com, cheapestpharma[DOT]net and toppharmacy[dot]org still active

• Comment posted Sep 24, 2010 2:40 pm PDT — by Garth Bruen
  One of the main malware directed sites: HEALTHCUBE[DOT]US is now offline...still more to go

• Comment posted Sep 23, 2010 2:41 pm PDT — by Garth Bruen
  There's no need to increase cost on the consumer, the finger here is pointed at providers and sponsors who have the most to gain from a secure Internet and have the best ability to make that happen. There is an…

Who Is Blocking WHOIS? Part 2

• Comment posted Jul 12, 2010 7:38 pm PDT — by Garth Bruen
  Jothan , I hear what you are saying, and I understand where you are coming from, but it’s off track. In your analysis of bears and honey there are some flawed assumptions. The first assumption is that we are trying…

Who is Blocking WHOIS?

• Comment posted Jul 12, 2010 4:06 pm PDT — by Garth Bruen
  On July 8, 2010 Humeia contacted us with the correct Port 43 Location: comnet-whois.humeia.com

Who Is Blocking WHOIS? Part 2

• Comment posted Jul 02, 2010 6:19 pm PDT — by Garth Bruen
  Bob responds: Yes, eventually, after 5 pages, I found the pricing. How does that maze qualify as easily accessible? Yes, the RAA reads: "must be clearly displayed on the website."

• Comment posted Jul 02, 2010 6:14 pm PDT — by Garth Bruen
  I look forward to you posting your contact infromation in the "contact us" link

• Comment posted Jul 02, 2010 6:03 pm PDT — by Garth Bruen
  Paul, What I see is the contact information buried in the site and you claiming that it is compliant. It's like driving around without a license plate in your trunk instead of screwed the bumper and saying "yes I have…

• Comment posted Jul 02, 2010 5:46 pm PDT — by Garth Bruen
  Paul, You have a link that says "contact us" and the required RAA contact infomration is not there. Be serious. -Garth

• Comment posted Jul 02, 2010 5:11 pm PDT — by Garth Bruen
  "we are aware of the problem with the illicit pharmacy domain names and are shutting these domain names down by the dozens every week, " KnujOn has a good working relationship with LegitScript, which as you may know, is the…

• Comment posted Jul 02, 2010 4:49 pm PDT — by Garth Bruen
  For those who don’t know GlavMed is a spam-advertized illegal drug-trafficking network that may be affiliated with the notorious RBN. Key-systems sponsors many of their domains including BUY-DRUGS[DOT]ORG which certainly not an “Org.” We’ve just filed a complaint against BUY-DRUGS[DOT]ORG…

• Comment posted Jul 02, 2010 4:17 pm PDT — by Garth Bruen
  You specifically left out a number of things I told you and you told me. The RAA states: "accurate contact details including a valid email and mailing address." VALID EMAIL, not a form. You are in violation of your contract.…

• Comment posted Jul 02, 2010 3:27 pm PDT — by Garth Bruen
  Volker, I do not think you should be amazed to find Key-Systems in such a report considering your sponsorship of illicit pharmacy domains, especially the GlavMed network which will be detailed in another posting. Because of length and time constraints…

• Comment posted Jun 30, 2010 2:42 pm PDT — by Garth Bruen
  Michele, You are confirming what many consumers and abuse-handlers suspect, that front-line staff at Registrars exist to confuse and misdirect. We went through the ordinary contact channels or the sales department in order to TEST for an appropriate response. Why…

• Comment posted Jun 30, 2010 3:08 am PDT — by Garth Bruen
  Paul, I’m sorry, but nothing you’ve said here changes the facts, actually I think you may have inadvertently confirmed our contentions. The section you said I did not read actually states "Registrar's obligations under Subsection 3.3.6 shall remain in effect…

• Comment posted Jun 29, 2010 7:54 pm PDT — by Garth Bruen
  Michele, I remember your comment to this effect in the session and don't disagree with you on principle, but it's a red-herring here. I find many Registrars controlling these problems with CAPTCHA on the web WHOIS and limits on the…

KnujOn Releases Internet "Doomsday Book"

• Comment posted Jun 23, 2010 4:23 pm PDT — by Garth Bruen
  John and I had a nice chat

• Comment posted Jun 23, 2010 8:09 am PDT — by Garth Bruen
  eNom (Demand Media) has issued a weak and irrelevant response to the KnujOn Registrar Audit. This response is actually the first time eNom has responded to any of our concerns about illicit pharmacy domains they sponsor, and they were initially…

• Comment posted Jun 22, 2010 10:37 pm PDT — by Garth Bruen
  It's factually accurate and true they were in delinquency. It's factually accurate and true that they are now current. It's factually accurate and true they have a business registration in Florida but their outward facing ICANN location is FLORIDA (see…

• Comment posted Jun 21, 2010 11:34 pm PDT — by Garth Bruen
  I simply went to the Kansas Secretary of State website to check a factual assertion in your report, and found that your report was not true in relation to that fact. I'm glad they complied. Would they have were it…

• Comment posted Jun 21, 2010 11:05 pm PDT — by Garth Bruen
  Oh John, they're in Kansas, they're in California, they're in Minnesota, they're in Florida...Who can keep track!?!? What a joke of obfuscation. This is but one point of the report. When you've run out of sexual innuendo I suppose you…

Who is Blocking WHOIS?

• Comment posted Jun 15, 2010 2:09 am PDT — by Garth Bruen
  We received an email from GMO Internet with the correct Port 43 address. Thanks!

Registrar Abacus America is in Corporate Delinquency

• Comment posted Jun 02, 2010 6:24 pm PDT — by Garth Bruen
  Is this really representative of the diligence of your work? No, it would be a misrepresentation on your part. We know Abacus also has an incorporation in California and that they also claim location in Florida. None of this changes…

The Sad State of WHOIS, and Why Criminals Love It

• Comment posted May 15, 2010 4:42 pm PDT — by Garth Bruen
  and knows not to tar them all with the same brush. You keep saying this but don't provide any proof that I'm doing such a thing. I'm not really sure what I've done to offend you so much, but your…

• Comment posted May 15, 2010 4:34 pm PDT — by Garth Bruen
  It was not anticipated that every man and his dog would have his own domain name. It was not anticipated that criminals and other bad faith actors would be significant players Speak for yourself, I knew exactly what was going…

• Comment posted May 14, 2010 1:27 pm PDT — by Garth Bruen
  The original intent of WHOIS is to provide contact information for domains, it's not optional.

When Registrars Look the Other Way, Drug-Dealers Get Paid

• Comment posted May 13, 2010 5:21 pm PDT — by Garth Bruen
  haha Garth. Go back and read what the choices were, they were clearly: Haha George. Remember we've already talked about your putting conditions on my speech. Furthermore, everything is legal until you get caught. Now you're trying say that something…

• Comment posted May 13, 2010 4:14 pm PDT — by Garth Bruen
  George, A thing can be both A and B, just as something illegal is also illicit and something clearly illicit may also be illegal upon inspection. This is the inspection, not the trial. As you say there's a very natural…

• Comment posted May 13, 2010 3:33 pm PDT — by Garth Bruen
  George, I suggest you start with the following release from ICANN: "Worst Spam Offenders" Notified by ICANN As your son seems focused on one line in the RAA, namely "“Registrar SHALL abide by applicable laws and governmental regulations.” why don't…

• Comment posted May 13, 2010 2:42 pm PDT — by Garth Bruen
  Are we back in Junior High School already? Pathetic.

The Sad State of WHOIS, and Why Criminals Love It

• Comment posted May 13, 2010 2:02 pm PDT — by Garth Bruen
  Bravo!

When Registrars Look the Other Way, Drug-Dealers Get Paid

• Comment posted May 13, 2010 1:58 pm PDT — by Garth Bruen
  Tom, As George suggests, take a minute to read the ICANN RAA to understand what Registrars MUST do. I did read it, maybe you should re-read it. As for George, he was unaware of the usage of “sponsor” in the…

• Comment posted May 12, 2010 7:48 pm PDT — by Garth Bruen
  sequel re: prostitution Did that last year, got some online prostitution rings shut down. But I give you marks for effort.

• Comment posted May 12, 2010 7:29 pm PDT — by Garth Bruen
  Feel free to respond *after* you terminate a registrar Oh, George, there you go placing conditions on my speech again. Tisk-tisk. Now you've trapped yourself. I know. I'm very clever, because I've gotten you to introduce the next series of…

• Comment posted May 12, 2010 6:49 pm PDT — by Garth Bruen
  George, You haven't refuted a single fact. Each time I refute one of your statements you go back to ad hominem. Your "reasoning" consists of the following: "If you're not with us, then you're against us." Or alternatively, "If you're…

• Comment posted May 12, 2010 1:41 pm PDT — by Garth Bruen
  I get it. You don't want me to talk about this. You don't seem to "get it." Just because they're a registrar doesn't mean they "support" something. When they get evidence and documentation and don't act, at that point they…

DEFCON 1 Status at ICANN

• Comment posted May 11, 2010 3:34 pm PDT — by Garth Bruen
  Michael, All of my interactions with Doug were pleasant and honest. It was actually he who temporarily changed my opinion of ICANN, which is now reversing. This is a tragic loss to the organization and I don't think they get…

When Registrars Look the Other Way, Drug-Dealers Get Paid

• Comment posted May 11, 2010 2:40 pm PDT — by Garth Bruen
  Whoever drafted the RAA should consult a dictionary, as the lay definition of "sponsor" means something totally different than what they're trying to suggest in the contract. Actually the lay definition fits, from Webster's: "1. Someone who takes the responsibility…

• Comment posted May 11, 2010 2:28 pm PDT — by Garth Bruen
  Registrars can keep accepting payments from drug dealers, but I can't have banner ads. Once again, attacking me, not discussing the issue.

• Comment posted May 11, 2010 2:24 pm PDT — by Garth Bruen
  The article and report clearly drew a line between Registrars who did the right thing and ones that continued riding the gravy train. Read again. How much honey I am supposed to offer a Registrar before they stop supporting the…

• Comment posted May 11, 2010 2:01 pm PDT — by Garth Bruen
  Who appointed you the judge, jury and executioner? - George Kirikos, PhD Or is that simply to overblow this tirade - Suresh, my favorite critic Garth: I can't help feeling that on this issue you're essentially an uninvited guest (busy-body)…

• Comment posted May 11, 2010 1:55 pm PDT — by Garth Bruen
  When Microsoft wanted to kill a botnet, did they post a whining letter on their blog? No, they went to a federal judge and got a court order. Learn from Microsoft. Good advice. As soon as I have a billion…

• Comment posted May 06, 2010 12:27 am PDT — by Garth Bruen
  Repeatedly calling registrars "sponsors" is a total misuse of the word "sponsor." From the ICANN RAA 2009 (http://www.icann.org/en/registrars/ra-agreement-21may09-en.htm) 1.16 A Registered Name is "sponsored" by the registrar… 3.12.2...sponsoring registrar or provide a means for identifying the sponsoring registrar… 3.12.3 Reseller…

• Comment posted May 05, 2010 10:44 pm PDT — by Garth Bruen
  Thomas, As a Registrar yourself you should know that many of these issues are matter of contract between you and ICANN. The illegality of certain activities falls under obligations of the Registrar as well as law enforcement. In studying the…

• Comment posted May 05, 2010 10:28 pm PDT — by Garth Bruen
  Where from did the plural come in there - "registrars"? Good Question! UK2Group, Moniker, CentroHost and Realtime Register are also sponsors of EvaPharmacy domains. eNom (DemandMedia) had the most sites and did the least to address the problem. Or is…

• Comment posted May 05, 2010 10:22 pm PDT — by Garth Bruen
  Were customers of EvaPharmacy receiving absolutely nothing for their money? Were they receiving candy manufactured to closely resemble pharmaceutical pills? Are you a customer? How do you know the medicines are so safe? Too often our establishment reaction is to…

MIT 2010 Spam Conference Starts Tomorrow...

• Comment posted Mar 28, 2010 3:17 am PDT — by Garth Bruen
  Are trying to start some kind of east coast-west coast rivalry?

• Comment posted Mar 25, 2010 5:16 pm PDT — by Garth Bruen
  On Friday we are honored to have Cisco Fellow, Patrick Peterson (http://blogs.cisco.com/authors/bio/372) giving the first keynote followed by author of The Dot Crime Manifesto (http://www.amazon.com/dotCrime-Manifesto-Stop-Internet-Crime/dp/0321503589/ref=sr_1_1?ie=UTF8&s=books&qid=1269455924), Phillip Hallem-Baker. A paper from Cloudfare’s Matthew Prince will educate us on the insights from…

Should a Domain Name Registrar Run from a PO Box?

• Comment posted Feb 01, 2010 4:14 pm PST — by Garth Bruen
  John, I'm aware of the Cayman's postal policy which is why I explained it. The issue here is one of transparency. Posting the real street address erases doubt that the company actually exists in that location. You also fail to…

• Comment posted Jan 31, 2010 10:07 pm PST — by Garth Bruen
  We will be issuing a formal request, RE: OnlineNIC and providing information on how anyone may support or otherwise comment on the issue to ICANN.

MIT Spam Conference: 2010 Call for Papers and Participation

• Comment posted Jan 22, 2010 5:32 pm PST — by Garth Bruen
  Conference will be held in Building 34, the EG&G;Education Center, 50 Vassar Street, near the Stata.

The World's Most Dangerous Country Code Top-Level Domains

• Comment posted Jan 06, 2010 3:44 pm PST — by Garth Bruen
  This is an important discussion some are hoping to avoid. In our own recent report on problem ccTLDs we prefaced it with this quote from the U.S. House Subcommittee on Courts, the Internet, and Intellectual Property: “Websites operating from the…

Last Decade in Spam

• Comment posted Jan 06, 2010 2:53 am PST — by Garth Bruen
  Great summary

What's Driving Spam and Domain Fraud? Illicit Drug Traffic

• Comment posted Nov 23, 2009 4:28 am PST — by Garth Bruen
  My point is that registrars do not have the knowledge or ability to determine what is a "crime" and should not have the ability to go around shutting down domains for whatever reason they want. The guidelines are quite clear.…

• Comment posted Nov 23, 2009 3:37 am PST — by Garth Bruen
  You make a number of statements about "organized crime" "felonies" "subverted the entire DNS" and "raking in billions" that you would have extreme difficulty proving in a court. I suppose cybercrime is a myth and the Registrars have no responsibility…

• Comment posted Nov 20, 2009 9:45 pm PST — by Garth Bruen
  the finding if some operation is a rogue pharmacy is usually reserved to courts of law and similar institutions Nope, the licensing is done at the local level by board certification what happens if a registry establishes a no-rouge-pharmacy policy…

• Comment posted Nov 20, 2009 2:55 pm PST — by Garth Bruen
  Yes, we want to make pill traffic yesterday's problem so we can tackle fake rolexes tomorrow. Thanks for making that point.

Most Spam Sites Linked to Just About 10 Domain Name Registrars

• Comment posted May 22, 2008 7:06 pm PDT — by Garth Bruen
  Consider the Spam Balloon: Knowing that a minority of companies control most of the sites advertised in spam helps put the junk email problem into better perspective. To illustrate this consider a typical spam campaign. The emails are generated by…