One thing that can be done is this.... Anytime a contact needs to be updated like this in the RWI there can be a form that the RSP needs to fill out saying, "Yeah, we know that a change is coming in via FAX to you within the next 7 days." This way, when faxes come in, all OpenSRS folk have to do is verify against this "admin contact change" list to see if this change was expected and that the RSP manning the front lines KNOWS about it... I think then at this point that OpenSRS should be absolved of any checking beyond making sure that the RSP used the RWI to "pre-authorize" OpenSRS to make the change.
In fact, to make it even better, the incoming FAX has to have a tracking number on it. Tom. ----- Original Message ----- From: "David Denney" <[EMAIL PROTECTED]> To: "Charles Daminato" <[EMAIL PROTECTED]> Cc: "Dave Warren" <[EMAIL PROTECTED]>; "opensrs discuss" <[EMAIL PROTECTED]> Sent: Tuesday, March 19, 2002 12:52 PM Subject: Re: hijacking, AGAIN > I would still like to know why the ORIGINAL admin contact > is never notified when a FAX is used to change the admin > information? I dont see it as our job to make sure you are > not handing our customers domains over to third parties. > > (They send the RSP notice when they are changing info based on > a fax, but we have no way of knowing if that fax was real or > not, so it seems like we must follow up on every one of those > just because opensrs does NOT notify the original admin contact > when an over-ride occurs. LAME LAME LAME LAME LAME.) > > Good thing my customer was only 'parking' that domain you > gave away, and not actively using it. > > Can we somehow get the domain LOCKED so the thief christian singer > doesnt steal it, YET AGAIN? (He stole it once before it was with > opensrs, while NetSlo still had their monopoly.) > > On Tue, Mar 19, 2002 at 01:30:27PM -0500, Charles Daminato wrote: > > Well, this has been resolved to our understanding and satisfaction. I > > cannot divuldge details since it would be plainly imprudent, but we have > > done extensive research into this contacting several parties from both sides > > of the coin (including the previous registrar) and feel that the action we > > are taking is within our bounds and the appropriate thing to do. > > > > All parties that are involved are being contacted accordingly. > > > > Charles Daminato > > OpenSRS Product Manager > > Tucows Inc. - [EMAIL PROTECTED] > > -- > David Denney | D i m e n s i o n a l C o m m u n i c a t i o n s | > [EMAIL PROTECTED] | DSL * Wireless * ISDN * Frame * ATM * PtP * Co-Lo | > 303-285-INET voice | http://www.dimensional.com/ [EMAIL PROTECTED] | > 888-3-DIMCOM tollfree | Based in Denver, serving the Front-Range and beyond | > > ...they can have my ssh when they pry the keyboard out of my cold, dead hands! >
