Re: ICANN opens up Pandora's Box of new TLDs

• From: Stephane Bortzmeyer
• Date: Sun Jun 29 15:58:33 2008

• List-archive: <http://mailman.nanog.org/pipermail/nanog>
• List-help: <mailto:[email protected]?subject=help>
• List-id: North American Network Operators Group <nanog.nanog.org>
• List-post: <mailto:[email protected]>
• List-subscribe: <http://mailman.nanog.org/mailman/listinfo/nanog>, <mailto:[email protected]?subject=subscribe>
• List-unsubscribe: <http://mailman.nanog.org/mailman/listinfo/nanog>, <mailto:[email protected]?subject=unsubscribe>

On Fri, Jun 27, 2008 at 01:32:05PM -0700,
 Roger Marquis <[email protected]> wrote 
 a message of 22 lines which said:

> Security-aware programmers will now be unable to apply even cursory
> tests for domain name validity.

I am very curious of what tests a "security-aware programmer" can do,
based on the domain name, which will not be possible tomorrow, should
ICANN allow a few more TLDs.

If you test that the TLD exists... it will still work.

If you test that the name matches (com|net|org|[a-z]{2}), then you are
not what I would call a "security-aware programmer". 

> requiring valid domain contacts.

ICANN does require valid contacts. And it requires them to be
published and sold. So, people lie to protect their privacy. In the
world of security, stupid ideas often backfire.

> I have to conclude that ICANN has failed, simply failed, and should be
> returned to the US government.

It never leaved it.

• Follow-Ups:
  • Re: ICANN opens up Pandora's Box of new TLDs Tony Finch

• References:
  • Re: ICANN opens up Pandora's Box of new TLDs Roger Marquis

• Prev by Date: Re: ICANN opens up Pandora's Box of new TLDs
• Next by Date: Re: what problem are we solving? (was Re: ICANN opens up Pandora's Box of new TLDs)
• Date Index
• Thread Index
• Author Index
• Historical