Member of Anonymous claims responsibility

As reported by a number of sources and experienced by ourselves, Go Daddy appears to be experiencing a Denial of Service Attack on their nameservers, taking down customers websites as well. TechCrunch reported on the issue and Anonymous Own3r has claimed responsibility. Go Daddy has acknowledged that they know that there is a problem and that they are working on it.

The operator for the German .DE ccTLD announced that it has entered into a strategic partnership with Swedish based Netnod, adding Netnods 35+ worldwide DNS locations to their own network.

“We have chosen Netnod for their outstanding technical expertise and fully trust their competence to meet the high level demands associated with the operation of our supplementary name service for .de, which is by far the biggest ccTLD worldwide. Also, both Netnod and DENIC are not-for-profit, neutral, and independent basic infrastructure-providing organisations and share similar strategic positions and views. Therefore, this partnership ideally matches with DENIC’s commitment to provide services of utmost reliability, on a self-regulatory basis,” said Dr. Jörg Schweiger, Member of the Board and CTO of DENIC.

See the full press release after the jump.

(more…)

We’d like to welcome Mark Jeftovic as a guest author. In the domaining world he’s known for stirring up some controversy in the past. Mark lives in Toronto, Canada with his wife and daughter, he’s the founder and president of easyDNS.com – the DNS hosting provider & domain name registrar, a libertarian and former Director to the Canadian Internet Registration Authority (CIRA).

When one looks at the track record of introducing new Top Level Domains it is perplexing to see where all the enthusiasm around unlimited new TLDs comes from. So far every attempt to roll one out owes it’s sustenance to purely defensive registrations (.biz, .info) or else it’s degraded into an utter fracas (.jobs) or just plain flopped (.pro)

The latest TLD that isn’t a country code tarting itself up as a pseudo-generic is probably a good indicator of what to expect going forward: .xxx – reviled by the industry it extorts , err, purports to serve and first new TLD that we are seriously considering making a conscious decision not to “grab our name before somebody else does!”. I’m certain it won’t be the last. I believe one of the first things we will see as all this unfolds is a buyers strike in defensive regs. Once that happens everything will go sideways.

So despite the near frenzied hype around these things, I have already gone on record to predict failure for the vast majority of them.

The forthcoming onslaught of TLDs can be divided into roughly three categories:

1. Generics: these are where “the next .com”‘ TLDs will position themselves. Most will fail because there will be a buyers strike in defensive registrations and the speculators will get crushed. None of them will ever become “bigger than .com”, and I’ll be surprised if one ever catches up with .net.

2. Specifics: these are TLDs which exist for a reason (which I’ve been calling for), but that reason is just a thin premise based on naming. .jobs is a great example of this, because quite frankly, the premise was dumb. That companies would go out and register the .jobs version of their names to post job openings, as opposed to just adding /jobs onto their URL was weak from the outset. There are a lot of these in the pipe: .music, .eco, .money whatever – the ostensible reason for the existence of the TLD is to be the apex of some category vertical. What
I’ve found over the years in this business is that people tend to not order themselves into the categories you set up for them. Once again, the only thing that will hold these TLDs up are defensive registrations and speculators (who will get crushed).

3. Brands: this is where some entity with deep pockets sets its own TLD up to prove that “they’re serious” about their brand. So if Paul McCartney created .beatles and the only 4 domains under it were john, paul, george and ringo, it would be an example of a brand TLD. It would also provide zero value to the brand and probably even fail as call-to-action URLs as people habitually keep adding “.com” onto the end of everything when they type it into a browser location bar.

Still, we cannot stand in the way of .progress, this evolution is inevitable, and I think necessary. This is who I think the big winners and bigger losers will be…because as per usual, the consensus projections for where this is all going are the outcomes that are likely precluded from occurring.

See the losers and winners of the new TLDs after the jump.

Let’s start with THE LOSERS

Business Owners: people who run businesses on the web, or businesses with a web presence will be expected to pony up for non-refundable sunrise claims and landrush pre-orders, at jacked up prices and inflated
minimum terms, all to defend their names. This may work when it happens once a year or so, but anybody who expects to keep working when brand owners get hit with this 10, 20 or 100 times a year better rethink that
calculus. Because I don’t think it will. What is more likely to happen is they decide to just start suing the squatters as they surface, and it will probably culminate in some legal action against the registries themselves, possibly in the form of class actions.

Brand Owners: This hoopla around .brand is stupid. You probably don’t give a crap about your breakfast cereal’s twitter feed. You think it needs it’s own TLD? There are very few brands that make any sense as a
TLD. Something like .Mac comes to mind, but they are an exception. Whatever brand you own, probably isn’t. Don’t waste your money.

Investors: As I’ve posited, most new TLDs will fail. Once the defensive-name buyers’ strike kicks in, most of the new TLDs will not even make it past that initial cashgrab phase which makes them look so lucrative. Couple that with an abysmal renewal cycle as the speculators realize that nobody wants to pony up xxx,xxx for “business.business”, and you have a recipe for epic value destruction. (Memo to VC’s: you can use this as a filter: anything you are pitched that contains a slide that says “and then we get our own TLD”, you can just move onto the
next prospect.)

Programmers / Network Engineers / Operators: Will find their jobs become ever more vexing once it becomes impossible to encapsulate the known universe of top-level namespaces and their syntax rules in a usable
format. Think about the present-day intractable problem of trying to create a bulletproof regex for a valid email address and amp up the complexity from there. This will cause all kinds of bugs and usability issues, but hey, that’s why those guys get paid the big bucks.

But it won’t be all bad news, these losers will have their gizards eaten by…

The New TLD WINNERS:

TLD & Registry Providers: When there’s a gold rush on, the people selling picks and shovels make out like bandits. Companies that enable and provide infrastructure to Top Level Domain operators will probably
have an initial wave of success.

DNS Providers: At the end of the day, it’s all just names-to-numbers and for that you need DNS. To run a TLD you would need at least a modicum of global redundancy, preferably anycast deployed and able to withstand DOS attacks. Enter the DNS providers, because they’re the ones who have those capabilities. (Do I have to disclose that I run one at this point? I don’t expect a flood of new TLD applicants to be banging down my door to handle their rootzone DNS).

Dispute Resolution Providers: will enjoy a booming business. As the buyers strike gathers steam, companies will find it is cheaper to “take out” an offending name in an unfashionable TLD than trying to defend
their name in all of them at exorbitant sunrise rates.

Domain Litigation Lawyers: Not only will there be an endless selection of second-level squatters to sue, they can form class actions and snuff out entire registries deemed to have egregious disregard for the IP
rights of others. For them it will be a Golden Age of prosperity.

and finally, the single biggest, winningest winner of them all…..

ICANN: They run the golden goose, they collect the $185,000 per successful application, they get to keep the non-refundable portion of the application fee from all the losers and then the $25,000 in annual
fees per TLD, Nice work if you can get it.

Conclusion:
Beyond that, everything I’ve been saying about the new TLDs hinges around this concept: that the days of “register your name under .etc, before somebody else does” are over. I expect out of the first 100 or so TLDs, maybe 1 or 2 will initially do something outside-the-box, something that will change the game and actually add value at the root level.

I don’t know what that is yet, but those are the new TLDs that will succeed, while the rest crap out. Off the top of my head, something different, like maybe .gps, where domains under .gps actually represent GPS coordinates and thus real world locations; or .rfid where domains under that root would carry meta-data about RFID tagged items such as location or status. Who knows. But it will go far beyond that “yourname.bs”.

Those new TLDs will be the signal, everything else will be noise.

According to TLD Source and The Register large parts of the .DE zone file went missing today from 1:30 pm to roughly 2:50 pm. The error shut down potentially over 13 million domains names tied to websites and email addresses using the German domain name extension.

Speculation to the cause of the outage centers around the theory that the zone files may have been uploaded with no data.  TLD Source also speculates on their site that the DENIC infrastructure may be outdated .

DENIC acknowledged the problem on their site (German) and will be providing more details.  In a statement on another mailing list found cited by The Register, DENIC stated :  “Several of the authoritative nameservers for the DE top level domain returned NXDOMAIN responses for a yet to be determined number of DE domains that existed in our registration database,” the post reads. “At [13:45 UTC], all affected servers had either been disabled or fed with an earlier version of the DE zone. Regular operations were eventually resumed at 15:00 UTC.”

Last October, a similar problem occurred when a typo shut down the .SE ccTLD  for roughly 20 minutes.

Earlier this month the same group (the “Iranian Cyber Army” that had modified Twitter’s DNS, also modified the DNS for the Chinese search engine Baidu.com. Baidu.com has now filed suit against Register.com (according to AFP) seeking damages for the interruption of the service. The group had managed to get access to the domain management account at the registrar and modified the nameserver entries for Baidu.com. Baidu stated that the DNS “was unlawfully and maliciously altered” as a result of the “gross negligence” of Register.com. After the attack, the company’s CTO, Li Yinan, resigned for personal reasons.

A number of registrars, such as Moniker and Fabulous.com are offering additional locks that can be used to prevent any changes to a domain name. Even Verisign as a registry operator has recently proposed two factor security features (approved by ICANN as a voluntary offering) based on other Verisign products and a different type of domain lock (registry-lock services, approved by ICANN) to protect the domain. However not all of these locks will protect companies from potential changes to their nameserver-entries.

Screenshot Of Twitter DNS Hack by tenz1225 on Flickr

As per a tweet from Twitter’s Biz Stone last night followed by a blog post it appears that Twitter’s DNS servers have been compromised yesterday. The cracker redirected the DNS so it displayed a message from “The Iranian Cyber Army”. As far as we can tell with the NameServer History tool at DomainTools, it appears that the change would have been made directly in the DNS entries. This is confirmed by the statement from Biz Stone that the API had not been affected by the attack, so most likely that DNS entry was not change.

Monday night the ccTLD .SE disappeared from the Internet – none of the Swedish Domain Names were reachable for a period of 20 minutes as of 10pm local time.According to people located in Sweden and several local publications any domain name under the .SE TLD did not resolve properly. Some of the articles say that the domain name was appended to itself and some of them say that an additional .se was appended, which could point to a wrongly placed “.” or additional “.se” in the registry’s zonefiles during a planned maintenance window. According to president Danny Aerts, the registry operator, the Internet Infrastructure Foundation, is investigating the cause of the issue which may have lasted longer for some users due to DNS information being cached. The .SE zone contains close to 905,000 domains.

[Updated] Find the original notification of the registry to its registrars after the jump. (more…)

According to the company website and other reports on the web, registrar Network Solutions experienced a distributed denial of service (DDOS) attack today that brought down it’s DNS services.  Any website using DNS services or hosting from NSI could have been down as a result of the attack.  The official post on the NSI blog stated :

There may be some latency on Network Solutions DNS Severs and some queries may be timing out.  This may include instances when someone types a domain name into a browser and the website will temporarily not resolve.

According to Circle ID the attack occured over the last 48 hours.  Company spokesperson Shashi Bellamkonda posted that the company was working to mitigate the attack and speedup DNS queries.

Michael Geist recently reported that Rogers, an internet service provider, has changed its approach for failed DNS lookups, which happens when an internet user types in a domain name that does not resolve. Now, instead of reaching a standard error page, Rogers’ customers are being redirected to a sponsored page that contains links to Rogers’ content, paid search results, and additional Yahoo! search results. (more…)

TechCrunch recently reported that Network Solutions, has been hijacking unassigned sub-domains and using them for link-filled landing pages to increase their revenue.

Win Betteridge, the webmaster for GotGame.com, was the first to find out what was going on. (more…)