True. Should be as quick as a phone call or fax to the contact info on the whois. If it's more complicated then that, (they've lost the phone number, fax number, AND email address), then you have to consider your options.Keep in mind the RWI can be used to renew a domain without the passwordI'm fully aware that the transaction can be manually done in the RWI -
if needed, so in an emergency you can get the domain renewed.
however without going through the ownership verification process, this is
just as bad as letting someone who does not own a domain renew one through
an automated client interface - only now I have to supply manual labor for
the process to be completed.
In the event they put falsified information, they've violated the user agreement, and frankly, it's their own problem.
The whole idea here is to let the user manage their domain without myI'd use it as a customer service opportunity, a chance to jump in, go above and beyond and "save the day" after the customer a) failed to keep track of their passwords, b) failed to notice the renewal was due prior to the renewal date, c) failed to notify you of a phone number, fax number and email address change.
involvement - and particularly not my involvement during a "crisis" when
their domain is offline.
I just don't see the value in requiring someone to know the domain'sWe went through that with a dialup ISP account and mailbox at one point, I was the rep that took at least one of their calls, and it turned into a huge hassle. We didn't go as far as verifying passwords in all cases, but at a minimum going forward we required the credit card name match the account name, OR the password or some other ID on the account.
username and password before they can renew a domain. Can they then tell me
since they renewed it, they now own it? Well they can try, but I don't buy
that argument either.
From a court's point of view, whoever paid for the account will usually end up being treated as the owner, or if not, you may be ordered to provide a refund.
Compared to the relatively minimal time required to verify a user's identify after they lost the password, I wouldn't take the chance, especially if all it takes is a return phone call to the number on the WHOIS.
Another alternative is to consider billing for your time in the event the user loses their password -- Keep in mind, this isn't a situation that just happens, the client has to not only lose the password, but they have to lose access to their mailbox as well.
-- Dave Warren, Email Address: [EMAIL PROTECTED] Cell: (403) 371-3470 Fax: (403) 371-3471 Toll free: (888) 371-3470 Vonage: (817) 886-0860 ICQ: 17848192 AIM: devilspgd Yahoo!: devilspgd MSN/PASSPORT: [EMAIL PROTECTED]
