----- Original Message ----- From: "Ross Wm. Rader" <[EMAIL PROTECTED]> To: "Dave Warren" <[EMAIL PROTECTED]> Cc: <[EMAIL PROTECTED]>; "Gordon Hudson" <[EMAIL PROTECTED]>; "Neil Anderson Saunders" <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]> Sent: Thursday, July 29, 2004 12:13 PM Subject: Re: Domain Registry Services
> -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > On 29/07/2004 6:42 AM Dave Warren noted that; > > | Articles of incorporation are fine and dandy, but very simple to forge > | if you know the recipient isn't going to make any effort to validate or > | verify them. The process of faxing or photocopying can cover up the > | traces the paperwork was documented. > > The assumption is that a) the Registrant always trumpts the admin > contact, b) articles of incorp. are fine to ident the Registrant in some > cases and c) unauth'ed transfers resulting from fraud will be swiftly > dealt with by the enforcement process. We have to do this sort of admin for .uk domains and some others where we are the registrar of record. I look at some of these faxes and think "I could have forged that". Ultimately there is no way of valisating someones real identity. Letterheads are useless. Certificates of incorporation or VAT certificates are easily forgeable. However, the more we ask registrants to do to make these changes the more chance there is of puttin off casual fraudsters. Our most common (and I guess Tucowsas well) problem is a domain registered by a company where the person sends in personal ID proving their identity not that they are acting for the company. It doesnt seem to matter how clear you make it, they still don't read the instructions. Regards Gordon Hudson Hostroute.com Ltd www.hostroute.net ------------------------------------------------
