I've just been doing some playing with the API (specifically, my rewrite of
the scripts into PHP, but it will apply to everyone).
For fun, I turned off the check_domain_syntax() call when doing a lookup of
domain names. I wanted to see if the server did all it's own checking as
well.
It seems to, in that domains with bad characters and invalid TLDs are
rejected.
Although the rejection messages are a bit cryptic:
"Unexpected response received from the Registry: [701] [Couldn't
extract a TLD or TLD not serviced by OpenSRS [foo.x]]"
That one makes sense. But here's one for the domain "foo_bar.com":
"Unexpected response received from the Registry: [505] [Invalid
attribute value syntax]"
Also, the server doesn't seem to reject domain names based on length. For
example, the domain
"abcdefghijklmnopqrstuvwxyzabcdefghijklmnopqrstuvwxyzabcdefghijklmnopqrstuvw
xyz.com" is available (that's 82 characters in total). And so is
"abcde....stu.com" (with 260 characters). Shouldn't the server do a check
for length as well?
I can understand why this functionality is built into the client code: it
prevents people asking your server for the information, reducing network
traffic, etc. But I hope that there is some error checking in place, just
in case people like me decide to turn off the functionality.
After all, the API specifies how to send you data, not what checks to run on
it first. :)
Just another friendly $0.02 to pass on to the developers.
--
Colin Viebrock
Co-Founder, easyDNS Technologies Inc.
http://www.easyDNS.com/
