Domain protection is easy
On Habré, they have more than once touched upon the topic of domain elimination, for example, here or here . There was even a video tutorial where the mechanism is described in detail and in detail. This can be countered.
There are several ways to steal domains, but for the most part they are based on the negligence and forgetfulness of administrators (for example, the mailbox was not used for a long time and it was deleted).
Thus, the problem has already been described more than once, the reason why it exists, but no one has suggested a mechanism for dealing with it. This was a good reason for our team to develop a protective mechanism aimed at protecting the domains of bona fide owners.
')
It has been 2 weeks since we watched a video, clearly telling about the method of domain theft (which actually was the impetus to start developing a method of protection) and successfully implemented a mechanism to protect the domains of our clients.
Protection is provided free of charge and only on those domains that are located at the registrar of Netfox.
How does the Domain Name Protection service work at Habrakhabrosud:
You can enable the service with just one click of the mouse in the Personal Cabinet of the Netfox Registrar, but to disconnect you will need to make some efforts and this is just the main protection mechanism - you must submit an application to the company's office to disconnect the service, or send a certified application to the notary by mail. The application must be directly from the domain administrator with copies of the necessary documents.
Including the service, you protect the domain from interception and block actions:
- changes to the domain ns servers;
- changes in domain contact information;
- domain administrator changes;
- domain transfer to another registrar.
If an unauthorized change of information is attempted to an administrator, a notification is generated by mail.
All partners use the API to access the Registrar's domain name registration system. Protection is set at 2 levels throughout the system:
1. at the API level
Requests to change domain / administrator data are blocked instantly when protection is turned on; a notification to the administrator is generated.
2. at the Registrar level
any actions of the Registrar's employees in the system are also monitored by this service - upon any written request from the administrator, our employees will also not be able to make changes if the service is activated. Only the responsible officer who processes written applications for disabling protection can remove the protection.
Information on the included protection for each domain is displayed in the user's Personal Account, if it has a direct contract with the registrar.
Partners are gradually drawn to the provision of such a service for their clients - it is enough to add a simple function to call protection and display status on their site.
The protection status for all domains is also displayed in the state registrar Whois service:
... PROTECTED - means that the domain is protected.
... NOT PROTECTED - means that the domain is not protected by the service.
From the very first day of introducing the service, it has been used by customers.
What is the advantage for organizations:
- the company administrator will not be able to accidentally or intentionally bring down your site (changing the ns-server);
- the administrator will also not be able to change the contact numbers or e-mail domain.
And the general advantage for everyone is that if a password is lost, the attacker, having gained access to the Personal Account, cannot do anything with the domain - all operations are simply blocked.
Perhaps this service will be popular with other registrars and the Coordination Center together with the Technical Center will make the status global, that is, it will be displayed in the main registry. But so far in this direction, one registrar of 25 has made a step.
More information about the Service can be found at:
http://www.netfox.ru/domains/protected/
We invite all interested domain owners to test the service, it is possible to find flaws and express their opinion in the comments.
Of course, the proposed measures are not the solution to all problems. Therefore, to be continued!
There are several ways to steal domains, but for the most part they are based on the negligence and forgetfulness of administrators (for example, the mailbox was not used for a long time and it was deleted).
Thus, the problem has already been described more than once, the reason why it exists, but no one has suggested a mechanism for dealing with it. This was a good reason for our team to develop a protective mechanism aimed at protecting the domains of bona fide owners.
')
It has been 2 weeks since we watched a video, clearly telling about the method of domain theft (which actually was the impetus to start developing a method of protection) and successfully implemented a mechanism to protect the domains of our clients.
Protection is provided free of charge and only on those domains that are located at the registrar of Netfox.
Principle of operation
How does the Domain Name Protection service work at Habrakhabrosud:
You can enable the service with just one click of the mouse in the Personal Cabinet of the Netfox Registrar, but to disconnect you will need to make some efforts and this is just the main protection mechanism - you must submit an application to the company's office to disconnect the service, or send a certified application to the notary by mail. The application must be directly from the domain administrator with copies of the necessary documents.
Including the service, you protect the domain from interception and block actions:
- changes to the domain ns servers;
- changes in domain contact information;
- domain administrator changes;
- domain transfer to another registrar.
If an unauthorized change of information is attempted to an administrator, a notification is generated by mail.
Technical implementation
All partners use the API to access the Registrar's domain name registration system. Protection is set at 2 levels throughout the system:
1. at the API level
Requests to change domain / administrator data are blocked instantly when protection is turned on; a notification to the administrator is generated.
2. at the Registrar level
any actions of the Registrar's employees in the system are also monitored by this service - upon any written request from the administrator, our employees will also not be able to make changes if the service is activated. Only the responsible officer who processes written applications for disabling protection can remove the protection.
Information on the included protection for each domain is displayed in the user's Personal Account, if it has a direct contract with the registrar.
Partners are gradually drawn to the provision of such a service for their clients - it is enough to add a simple function to call protection and display status on their site.
The protection status for all domains is also displayed in the state registrar Whois service:
... PROTECTED - means that the domain is protected.
... NOT PROTECTED - means that the domain is not protected by the service.
results
From the very first day of introducing the service, it has been used by customers.
What is the advantage for organizations:
- the company administrator will not be able to accidentally or intentionally bring down your site (changing the ns-server);
- the administrator will also not be able to change the contact numbers or e-mail domain.
And the general advantage for everyone is that if a password is lost, the attacker, having gained access to the Personal Account, cannot do anything with the domain - all operations are simply blocked.
Perhaps this service will be popular with other registrars and the Coordination Center together with the Technical Center will make the status global, that is, it will be displayed in the main registry. But so far in this direction, one registrar of 25 has made a step.
More information about the Service can be found at:
http://www.netfox.ru/domains/protected/
We invite all interested domain owners to test the service, it is possible to find flaws and express their opinion in the comments.
Of course, the proposed measures are not the solution to all problems. Therefore, to be continued!
Source: https://habr.com/ru/post/99689/
All Articles