Home / Blogs

It's "Verisign vs. Users"

Thomas Roessler

From an anonymous comment in response to the ALAC's statement on SiteFinder:

In a recent Cnet article, Verisign is quoted as saying, "We're fully compliant with every RFC". ... If that's true, it just kills the argument against Verisign as it then becomes "geeks v. users" with Verisign on the side of the users.

That's a dangerous misconception, in several ways.

The technical part is being discussed in the IAB's commentary on the matter. The IAB explains in detail that, while wildcards have been part of the DNS specification for twenty years, their use is dangerous and can break technology. From the technology side, the problems with SiteFinder don't come from breaking some specific RFC. They come from using RFC-specified features in a way that breaks design assumptions made throughout the net.

But even if the collateral damage is left out of the picture, the very idea behind SiteFinder is user-unfriendly, and that's the second half of the ALAC's note: SiteFinder is, ultimately, about short-cutting other error handling methods, and redirecting any users that enter non-existing domain names into a web browser to Verisign's own service, for commercial purposes. SiteFinder is designed so it becomes difficult to deploy superior error handling services that would compete with it — because errors aren't flagged.

From the point of view of software developers, SiteFinder is designed to replace a market that's open for competition by a monopoly.

From the point of view of users, it is not a superior offer that empowers them, and that they can accept (or decline) as they want: Instead, it's a service that is designed to deprive them of a choice they used to have.

It's a "service" that's being forced down users' throats.

Just like spam.

By Thomas Roessler, Mathematician
Follow CircleID on
Related topics: DNS, Domain Names, Registry Services, Spam
SHARE THIS POST

If you are pressed for time ...

... this is for you. More and more professionals are choosing to publish critical posts on CircleID from all corners of the Internet industry. If you find it hard to keep up daily, consider subscribing to our weekly digest. We will provide you a convenient summary report once a week sent directly to your inbox. It's a quick and easy read.

I make a point of reading CircleID. There is no getting around the utility of knowing what thoughtful people are thinking and saying about our industry.

Vinton Cerf, Co-designer of the TCP/IP Protocols & the Architecture of the Internet

Share your comments

Re: It's "Verisign vs. Users" Jim  –  Sep 23, 2003 1:15 PM PDT

What IP adresses can be entered into a software firewall such as ZoneAlarm to prevent access to Verisign and it's minions? How do you id the spy cookie to delete?

Re: It's "Verisign vs. Users" BackupBob  –  Sep 30, 2003 6:51 PM PDT

When you reach the SiteFinder site you will find a set of terms and conditions (T&C) and a privacy statement.

Verisign assumes that since you have reached this site that you will abide by their T&C. 

I do not wish to abide by their T&C.  I would like to make VeriSign aware of this but their Web page offers no means of contacting them to tell them so.

I wrote to several VeriSign departments using links I found on theiw Website but they have not bothered to reply. 

To post comments, please login or create an account.

Related

Topics

New TLDs

Sponsored byAfilias

Cybersecurity

Sponsored byVerisign

Whois

Sponsored byWhoisXML API

DNS Security

Sponsored byAfilias

Domain Names

Sponsored byVerisign

IP Addressing

Sponsored byAvenue4 LLC