�j"1LAnZuoQdcKCkpDBKQMCgziGMoPC4VQUckM)<div class="post"><div class="quoteheader"><a href="https://bitcointalk.org/index.php?topic=1790.msg26244#msg26244">Quote from: kiba on December 02, 2010, 06:06:53 PM</a></div><div class="quote"><div class="quoteheader"><a href="https://bitcointalk.org/index.php?topic=1790.msg26242#msg26242">Quote from: RHorning on December 02, 2010, 06:05:53 PM</a></div><div class="quote"><br/>What do you need explained?<br/></div><br/>Why is it so easy? How is it done?<br/></div><br/>It depends on the domain registrar and a few other factors. Back when ICANN ran domain registrations directly, all you needed to do was to simply spoof the e-mail address of the person who made the registration and change the contact information... hoping that the reply from ICANN would get lost in the junk mail with spam and other garbage. Once you switched the contact information, switching almost everything else was incredibly trivial and a piece of cake.<br/><br/>It is a bit harder now and the domain registrars do require a bit more identifying information, but nothing that a good private investigator would be unable to provide. Really, the current domain registration is incredibly insecure and there are even "legal" means to "steal domains" that merely need a pretty competent attorney to cover your back if you want to do it through the judicial system. That is how nissan.com was taken from a small business in southern California in spite of the fact that the last name of the guy really was "Nissan" running a used car business with the name "Nissan Motors" and registered the domain well before the perhaps more famous automobile company got the domain changed.<br/><br/>On top of that, the DNS system itself is very much open to attack as long as you can somehow get trusted as a "peer" by one of the main root servers. There are various kinds of attacks upon DNS records themselves which can be done, some easier than others and some of them requiring better knowledge about computer networking than others, although there are some "kiddie scripts" and "hackerwarez" that you can get to do all of this is you really want to. I'd strongly suggest staying away from those program mainly because they are trojan and virus sources if you try to just Google for them. In other words a good way to get your system rooted and part of a bot net not under your control if that is your goal. If you want to go the hacker route, learning about the protocol itself and sticking to discussion groups is a much better route to go.<br/><br/>None of this is new to somebody who is familiar with the DNS system, and it really is just a house of cards much flimsier than what anybody can possibly believe if you aren't familiar with how it was all set up in the first place.<br/><br/>My point is that using a simple sort of cryptographic storage for the registration of the information is vastly more secure in terms of making sure the information doesn't get tampered with or manipulated that the current system. Even DNSSEC, the supposed "savior" of the DNS system to keep spoofing from happening (and largely unimplemented by most ISPs unfortunately even for that level of security) is only as good as the domain registrar's security. Social hacking can still happen.<br/><br/>It is for this reason that I think a bitcoin-related system would work much better and be insanely simple to operate. On top of that, there would be no gatekeeper in terms of who gets authority to decide if you get the registration. You simply apply, throw in the fees for processing the application, and the domain registration gets put into the system.<br/><br/>In terms of the "leasing" option, the only advantage of doing that which I can see is to make sure that the domain itself remains in the "public domain" at some point. Domain registration is a public service and unfortuantely there are people who have taken domain registrations as a sort of "land grab" where the earliest get the best stuff first. By putting a leasing ability into the standard (and the "lease" is from all of mankind, not any individual), it forces those who grabbed the domains early on to do some "work" or at least pay up to maintain those leases. Presumably if maintaining those domains is expensive, they'll simply let them expire rather than having to constantly renew the domains. It also provides a source of revenue for those who are mining blocks as well so it also maintains the integrity of the database... in other words the chain of blocks being used to keep track of all of this information.</div> text/html
https://whatsonchain.com/tx/aacc56bae44d8f2a86fdb2fb55c55c5f0dee8d13a4de553d607559db4af6e44f