Re: domain name stolen and retrieved the whole story (GoDaddy security mechanism has serious loopholes)
experienced the theft of this domain name, I have gained many experiences, lessons and insights. Everyone will encounter various kinds of hardships, frustrations or natural disasters in his life, just as fate is doomed to hide. In peacetime, we should try to be as low as possible as possible, adhere to the principle of not doing evil, and do not do anything that hurts the reason, and try to be good and good, and help those who are more hardship than themselves. If you feel unhappy, think of people who are more hardened than themselves, such as cleaner, small vendors, and so on, they are the bottom of the society. In this way, even if we are in prison for a day and face a dangerous situation, we will finally be able to fight against danger and escape danger. This time I could get through it safely, although I did make a great effort, but I did not rule out a certain unknowns that was driving it, which made the 180 degree turn, and I would do more in philanthropy in the future and help others as much as possible.
it took me a few days to finish this post. In order to record the experience and mood of my time, one day I would come back to other natural disasters, and think about it, I have come back, and what else has been calculated. Second, I think that now or in the future there will be someone stolen domain name, when they see this post, maybe they can give them some help or encouragement, hope they can also get back their domain name smoothly. When my domain name is stolen, it is also a full network to find solutions, but fortunately, I found the "love of emperor island" course, only let me understand the general appeals process, I can get back to benefit from other people's help, so now I also write my experience, hope to help others.
finally, I would like to write some suggestions on domain name protection, which can be said to be my experience and lessons.
(1) security mechanisms such as GoDaddy are very vulnerable to the protection of domain names. Once the domain name management accounts are stolen or the domain name registrant's mailbox is stolen, the domain name will lose any protection. I think at least one additional password verification should be added to important operations, such as domain mail, transfer, transfer, and modification of DNS, and this password should not be the same as the login password of the domain name management account. After the important operation, two verification emails should be sent to the mailbox of the secret mailbox or the registrant of the domain name, which can be validated before it can be modified, but not after the modification. However, these security measures can not completely prevent the theft of domain names. Once the mailbox is stolen, these measures will lose their functions. So the most effective measure may be to bind to the mobile phone. Before each important operation, the system sends the authentication code to the bound cell phone, only to enter the verification code to continue operation. In this way, domain names will be much safer. After all, hackers rarely steal another email or account and steal another cell phone. Foreign domain name registrars don't seem to have heard of which family can bind Chinese mobile phones, and the name I now use can bind to mobile phones at home, and transfer operations all need cell phone verification, so I think that from the point of view of preventing domain name theft, it is safer than abroad.
(2) name of the registrant of the domain name and the registered person mailbox is an important basis for the ownership of the domain name, it is best to fill in the real information, if the false information is filled, once the domain name is stolen, it will be difficult to get it back. Many people worry about leaking information and fill in false information. If so, it is better to use a most intimate name, so that even if the theft is stolen, you can get a real document to appeal back to the domain name.
(3) many people's domain name registrant mailbox is to use the domain name itself mail address, and then the domain name does not create mail server, so that the other party will never get the domain name registrant mailbox, so that the domain name can not be transferred out. In fact, once the domain name management account is stolen, all the information of the domain name can be changed. At that time, it is difficult to return the domain name because it can not use the domain name registration mailbox to make a complaint. And because the domain name does not create a mail server, no notification can be received when the domain name or account information is modified. There is also a mailbox address with another domain name of its own, such as the a.com domain name registration mailbox is admin@b.com, and then the b.com domain name registration mailbox is admin@a.com, so once one of the domain names is stolen, the other domain name will also be stolen together.
(4) based on the above, I think it is better to use third party mailboxes, but the mailbox must bind the mobile phone, open the receipt of the notification function, the registration information of the mailbox is the best, so that once the mailbox is stolen, you can take the mailbox back first through the certificate.
(5) opening domain name information protection function can let hackers do not know the registrant's mailbox, but can not guarantee that the domain name is not stolen. Zhibo8 is a living example. Their domain name information has been protected since 2010, but it was eventually stolen and then transferred out of the Registrar. I guess that's probably because of the theft of the domain name management account. After the protection is opened, the whois history can not be obtained in case of theft, so as to prove that the information before the stolen domain is its own, so it has advantages and disadvantages.
(6) periodically check the domain name management account and domain name information. The password of the domain name management account should be changed frequently, and it can not be the same as other passwords. It is said that the name of the domain name can be changed as long as the address of the domain name is changed every 2 months. In fact, it is not, in fact, the address of the domain name registrant will change, and it will not trigger the 60 day prohibition of the transfer of the rule, and the name of the registrant or the registered person's mailbox must be changed. Second, even if it can't be transferred within 60 days, the hacker can still transfer within the Registrar, and the control of the domain name depends on the domain name management account on the Registrar's website.
(7) records of successful registration, transfer and renewal of domain names must be kept well. In case of any future accidents, these are powerful evidences.
(8) because now ICANN has no clear policy for domain name trading, if it is going to be a station, it is safer to consider it in the long run or to register its own domain. If you must buy a domain name, you must sign the contract with the other party and retain the identity card and other information of the other person. If
(9) has conditions, it can register a most relevant trademark for its domain name. If it is really stolen, it can be retrieved through domain name arbitration.
(10) there is no absolute security on the Internet. Do not relax at any time. Be sure to believe that there is a person who has always wanted to beat your idea. He stares at you in secret and collects your information everywhere, and once he has a chance he will take away your domain name.