[dns-operations] The strange case of fox.com

Rubens Kuhl rubensk at nic.br
Wed Mar 2 02:02:05 UTC 2016

> That sounds like a strawman.  Sane businesses will do what banks
> do these days and have words saying "We will never send you a link"
> or similar.
> "You have 28 days to correct this or your domain name will be removed.
> Please login into you account and fix it.
> $REGISTRAR will never ask you to click on a link via email."
> so their customers can detect when they are being phished.  Yes
> phishing is a threat but one which all businesses should be aware
> of and should be taking steps to see that their customers are not
> exposed by their correspondence.
> If the registry was to do send the messages it would be something like
> ... Please contact $REGISTRAR to update your records.

The problem here is that the registry doesn't know where the point of sale was actually $REGISTRAR, $RESELLER or $RESELLERof$RESELLER. 
Referring generically to "point of sale" is what I'm trying in compliance notices, with varying effectiveness. 


More information about the dns-operations mailing list