<html><head></head><body style="word-wrap: break-word; -webkit-nbsp-mode: space; line-break: after-white-space; color: rgb(0, 0, 0); font-size: 14px; font-family: Calibri, sans-serif;"><div>Chuck,</div><div><br></div><div>Am I to understand that the issue of what Registrars actually make available is NOT a subject of this WG? I thought that much of the previous threads were about the issue of GDPR restrictions vs restrictions that are self-imposed by Registrars.</div><div><br></div><div>I am not trying to beat up upon GD here. I have been clear in making my concerns known that many members who largely are registrar reps have taken a very broad approach to what is and is not prohibited by the GDPR and I have continuously tried to counterbalance those comments.</div><div><br></div><div>Respectfully,</div><div><br></div><div>Paul</div><div><br></div><span id="OLK_SRC_BODY_SECTION"><div style="font-family:Calibri; font-size:11pt; text-align:left; color:black; BORDER-BOTTOM: medium none; BORDER-LEFT: medium none; PADDING-BOTTOM: 0in; PADDING-LEFT: 0in; PADDING-RIGHT: 0in; BORDER-TOP: #b5c4df 1pt solid; BORDER-RIGHT: medium none; PADDING-TOP: 3pt"><span style="font-weight:bold">From: </span> <<a href="mailto:consult@cgomes.com">consult@cgomes.com</a>> on behalf of <<a href="mailto:consult@cgomes.com">consult@cgomes.com</a>><br><span style="font-weight:bold">Date: </span> Tuesday, February 20, 2018 at 12:34 PM<br><span style="font-weight:bold">To: </span> Paul Keating <<a href="mailto:paul@law.es">paul@law.es</a>>, <<a href="mailto:pkngrds@klos.net">pkngrds@klos.net</a>><br><span style="font-weight:bold">Cc: </span> 'RDS-Leaders-List' <<a href="mailto:gnso-next-gen-rds-lead@icann.org">gnso-next-gen-rds-lead@icann.org</a>>, <<a href="mailto:gnso-rds-pdp-wg@icann.org">gnso-rds-pdp-wg@icann.org</a>><br><span style="font-weight:bold">Subject: </span> RE: [gnso-rds-pdp-wg] Krebs On Security article RE whois and GDRP<br></div><div><br></div><blockquote id="MAC_OUTLOOK_ATTRIBUTION_BLOCKQUOTE" style="BORDER-LEFT: #b5c4df 5 solid; PADDING:0 0 0 5; MARGIN:0 0 0 5;"><div xmlns:v="urn:schemas-microsoft-com:vml" xmlns:o="urn:schemas-microsoft-com:office:office" xmlns:w="urn:schemas-microsoft-com:office:word" xmlns:m="http://schemas.microsoft.com/office/2004/12/omml" xmlns="http://www.w3.org/TR/REC-html40"><meta http-equiv="Content-Type" content="text/html; charset=us-ascii"><meta name="Generator" content="Microsoft Word 15 (filtered medium)"><style><!--
/* Font Definitions */
@font-face
{font-family:"Cambria Math";
panose-1:2 4 5 3 5 4 6 3 2 4;}
@font-face
{font-family:Calibri;
panose-1:2 15 5 2 2 2 4 3 2 4;}
@font-face
{font-family:"GD Boing";}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0in;
margin-bottom:.0001pt;
font-size:11.0pt;
font-family:"Calibri",sans-serif;
color:black;}
a:link, span.MsoHyperlink
{mso-style-priority:99;
color:blue;
text-decoration:underline;}
a:visited, span.MsoHyperlinkFollowed
{mso-style-priority:99;
color:purple;
text-decoration:underline;}
p.msonormal0, li.msonormal0, div.msonormal0
{mso-style-name:msonormal;
mso-margin-top-alt:auto;
margin-right:0in;
mso-margin-bottom-alt:auto;
margin-left:0in;
font-size:11.0pt;
font-family:"Calibri",sans-serif;
color:black;}
span.im
{mso-style-name:im;}
span.EmailStyle19
{mso-style-type:personal;
font-family:"Calibri",sans-serif;
color:windowtext;}
span.s2
{mso-style-name:s2;}
span.EmailStyle21
{mso-style-type:personal;
font-family:"Calibri",sans-serif;
color:windowtext;}
span.EmailStyle22
{mso-style-type:personal;
font-family:"Calibri",sans-serif;
color:windowtext;}
span.EmailStyle23
{mso-style-type:personal;
font-family:"Calibri",sans-serif;
color:windowtext;}
span.EmailStyle25
{mso-style-type:personal-reply;
font-family:"Calibri",sans-serif;
color:windowtext;}
.MsoChpDefault
{mso-style-type:export-only;
font-size:10.0pt;}
@page WordSection1
{size:8.5in 11.0in;
margin:1.0in 1.0in 1.0in 1.0in;}
div.WordSection1
{page:WordSection1;}
--></style><!--[if gte mso 9]><xml>
<o:shapedefaults v:ext="edit" spidmax="1026" />
</xml><![endif]--><!--[if gte mso 9]><xml>
<o:shapelayout v:ext="edit">
<o:idmap v:ext="edit" data="1" />
</o:shapelayout></xml><![endif]--><div lang="EN-US" link="blue" vlink="purple"><div class="WordSection1"><p class="MsoNormal"><span style="color:windowtext">All,<o:p></o:p></span></p><p class="MsoNormal"><span style="color:windowtext"><o:p> </o:p></span></p><p class="MsoNormal"><span style="color:windowtext">This is an issue involving a third party and its customers. It is NOT a topic that should be discussed on this WG list, so please end this thread.<o:p></o:p></span></p><p class="MsoNormal"><span style="color:windowtext"><o:p> </o:p></span></p><p class="MsoNormal"><span style="color:windowtext">Chuck<o:p></o:p></span></p><p class="MsoNormal"><span style="color:windowtext"><o:p> </o:p></span></p><div><div style="border:none;border-top:solid #E1E1E1 1.0pt;padding:3.0pt 0in 0in 0in"><p class="MsoNormal"><b><span style="color:windowtext">From:</span></b><span style="color:windowtext"> Paul Keating [<a href="mailto:Paul@law.es">mailto:Paul@law.es</a>] <br><b>Sent:</b> Tuesday, February 20, 2018 3:29 AM<br><b>To:</b> Sara Bockey <<a href="mailto:sbockey@godaddy.com">sbockey@godaddy.com</a>>; <a href="mailto:pkngrds@klos.net">pkngrds@klos.net</a>; <a href="mailto:consult@cgomes.com">consult@cgomes.com</a><br><b>Cc:</b> RDS-Leaders-List <<a href="mailto:gnso-next-gen-rds-lead@icann.org">gnso-next-gen-rds-lead@icann.org</a>>; <a href="mailto:gnso-rds-pdp-wg@icann.org">gnso-rds-pdp-wg@icann.org</a><br><b>Subject:</b> Re: [gnso-rds-pdp-wg] Krebs On Security article RE whois and GDRP<o:p></o:p></span></p></div></div><p class="MsoNormal"><o:p> </o:p></p><div><p class="MsoNormal"><span style="font-size:10.5pt">Sara,<o:p></o:p></span></p></div><div><p class="MsoNormal"><span style="font-size:10.5pt"><o:p> </o:p></span></p></div><div><p class="MsoNormal"><span style="font-size:10.5pt">You say:<o:p></o:p></span></p></div><div><p class="MsoNormal"><span style="font-size:10.5pt"><o:p> </o:p></span></p></div><div><p class="MsoNormal"><span style="font-size:10.5pt">"</span> This is impossible in an environment where Port 43 access is unregulated, and we can’t distinguish legitimate users from bad guys. Therefore, we encourage folks to contact us about getting their IPs added to our whitelist." <span style="font-size:10.5pt"><o:p></o:p></span></p></div><div><p class="MsoNormal"><span style="font-size:10.5pt"><o:p> </o:p></span></p></div><div><p class="MsoNormal"><span style="font-size:10.5pt"><o:p> </o:p></span></p></div><div><p class="MsoNormal"><span style="font-size:10.5pt">I find this difficult to swallow. With a white list program you can easily see the source of the traffic.<o:p></o:p></span></p></div><div><p class="MsoNormal"><span style="font-size:10.5pt"><o:p> </o:p></span></p></div><div><p class="MsoNormal"><span style="font-size:10.5pt">As for the white list project – the nature of the continued limitations show that there is no real intent to allow even the good guys to have access.<o:p></o:p></span></p></div><div><p class="MsoNormal"><span style="font-size:10.5pt"><o:p> </o:p></span></p></div><div><p class="MsoNormal"><span style="font-size:10.5pt">Why are the Whitelist limitations so low?<o:p></o:p></span></p></div><div><p class="MsoNormal"><span style="font-size:10.5pt"><o:p> </o:p></span></p></div><div><p class="MsoNormal"><span style="font-size:10.5pt">You are very clearly detracting from the ability of the security industry to do its work. I see no real reason for GD doing so other than (a) spite, or (b) wanting to create scarcity for economic reasons.<o:p></o:p></span></p></div><div><p class="MsoNormal"><span style="font-size:10.5pt"><o:p> </o:p></span></p></div><div><p class="MsoNormal"><span style="font-size:10.5pt">Paul<o:p></o:p></span></p></div><div><p class="MsoNormal"><span style="font-size:10.5pt"><o:p> </o:p></span></p></div><div style="border:none;border-top:solid #B5C4DF 1.0pt;padding:3.0pt 0in 0in 0in"><p class="MsoNormal"><b>From: </b>gnso-rds-pdp-wg <<a href="mailto:gnso-rds-pdp-wg-bounces@icann.org">gnso-rds-pdp-wg-bounces@icann.org</a>> on behalf of Sara Bockey <<a href="mailto:sbockey@godaddy.com">sbockey@godaddy.com</a>><br><b>Date: </b>Monday, February 19, 2018 at 9:03 PM<br><b>To: </b>"<a href="mailto:pkngrds@klos.net">pkngrds@klos.net</a>" <<a href="mailto:pkngrds@klos.net">pkngrds@klos.net</a>>, "<a href="mailto:consult@cgomes.com">consult@cgomes.com</a>" <<a href="mailto:consult@cgomes.com">consult@cgomes.com</a>><br><b>Cc: </b>RDS-Leaders-List <<a href="mailto:gnso-next-gen-rds-lead@icann.org">gnso-next-gen-rds-lead@icann.org</a>>, "<a href="mailto:gnso-rds-pdp-wg@icann.org">gnso-rds-pdp-wg@icann.org</a>" <<a href="mailto:gnso-rds-pdp-wg@icann.org">gnso-rds-pdp-wg@icann.org</a>><br><b>Subject: </b>Re: [gnso-rds-pdp-wg] Krebs On Security article RE whois and GDRP<o:p></o:p></p></div><div><p class="MsoNormal"><span style="font-size:10.5pt"><o:p> </o:p></span></p></div><blockquote style="border:none;border-left:solid #B5C4DF 4.5pt;padding:0in 0in 0in 4.0pt;margin-left:3.75pt;margin-right:0in" id="MAC_OUTLOOK_ATTRIBUTION_BLOCKQUOTE"><div><div><p class="MsoNormal">Patrick and WG members:<br><br>It is indeed true that our Port43 service is being attacked and our customer data is being harvested and abused. This is corroborated by numerous industry news reports and stories shared by our customers. Our first responsibility is to our customers, and to safeguard their personal information. This is impossible in an environment where Port 43 access is unregulated, and we can’t distinguish legitimate users from bad guys. Therefore, we encourage folks to contact us about getting their IPs added to our whitelist. <o:p></o:p></p><p class="MsoNormal"> <o:p></o:p></p><p class="MsoNormal">Our position on this has been clear and consistent. This will be my last communication on this topic since it does not further our work in this PDP.<o:p></o:p></p><p class="MsoNormal"><span style="color:windowtext"> </span><o:p></o:p></p><p class="MsoNormal"><span style="color:windowtext">Sara</span><o:p></o:p></p><p class="MsoNormal"><span style="color:windowtext"> </span><o:p></o:p></p><div><p class="MsoNormal" style="margin-bottom:1.0pt"><b><span style="font-size:9.0pt;font-family:"GD Boing";color:#02C54C">sara bockey</span></b><o:p></o:p></p><p class="MsoNormal" style="margin-bottom:1.0pt"><b><span style="font-size:9.0pt;font-family:"GD Boing";color:#111111">sr. policy manager | </span></b><b><span style="font-size:9.0pt;font-family:"GD Boing";color:#02C54C">Go</span></b><b><span style="font-size:9.0pt;font-family:"GD Boing"">Daddy<sup>™</sup></span></b><o:p></o:p></p><p class="MsoNormal" style="margin-bottom:1.0pt"><b><span style="font-size:9.0pt;font-family:"GD Boing";color:#111111"><a href="mailto:sbockey@godaddy.com"><span style="color:#954F72">sbockey@godaddy.com</span></a> 480-366-3616</span></b><o:p></o:p></p><p class="MsoNormal"><b><span style="font-size:9.0pt;font-family:"GD Boing";color:#111111">skype: sbockey</span></b><o:p></o:p></p><p class="MsoNormal"><i><span style="font-size:10.0pt;background:white"> </span></i><o:p></o:p></p><p class="MsoNormal"><i><span style="font-size:10.0pt;background:white">This email message and any attachments hereto is intended for use only by the addressee(s) named herein and may contain confidential information. If you have received this email in error, please immediately notify the sender and permanently delete the original and any copy of this message and its attachments.</span></i><o:p></o:p></p><p class="MsoNormal"><span style="color:windowtext"> </span><o:p></o:p></p></div><p class="MsoNormal"><span style="color:windowtext"> </span><o:p></o:p></p><div style="border:none;border-top:solid #B5C4DF 1.0pt;padding:3.0pt 0in 0in 0in"><p class="MsoNormal"><b><span style="font-size:12.0pt">From: </span></b><span style="font-size:12.0pt">gnso-rds-pdp-wg <<a href="mailto:gnso-rds-pdp-wg-bounces@icann.org">gnso-rds-pdp-wg-bounces@icann.org</a>> on behalf of "<a href="mailto:pkngrds@klos.net">pkngrds@klos.net</a>" <<a href="mailto:pkngrds@klos.net">pkngrds@klos.net</a>><br><b>Date: </b>Sunday, February 18, 2018 at 8:09 AM<br><b>To: </b>"<a href="mailto:consult@cgomes.com">consult@cgomes.com</a>" <<a href="mailto:consult@cgomes.com">consult@cgomes.com</a>>, "<a href="mailto:pkngrds@klos.net">pkngrds@klos.net</a>" <<a href="mailto:pkngrds@klos.net">pkngrds@klos.net</a>><br><b>Cc: </b>RDS-Leaders-List <<a href="mailto:gnso-next-gen-rds-lead@icann.org">gnso-next-gen-rds-lead@icann.org</a>>, "<a href="mailto:gnso-rds-pdp-wg@icann.org">gnso-rds-pdp-wg@icann.org</a>" <<a href="mailto:gnso-rds-pdp-wg@icann.org">gnso-rds-pdp-wg@icann.org</a>><br><b>Subject: </b>Re: [gnso-rds-pdp-wg] Krebs On Security article RE whois and GDRP</span><o:p></o:p></p></div><div><p class="MsoNormal"><span style="color:windowtext"> </span><o:p></o:p></p></div><div><p class="MsoNormal"><a name="_MailOriginalBody">On 2/18/2018 9:14 AM, </a><a href="mailto:consult@cgomes.com"><span style="mso-bookmark:_MailOriginalBody">consult@cgomes.com</span><span style="mso-bookmark:_MailOriginalBody"></span></a><span style="mso-bookmark:_MailOriginalBody"> wrote:<o:p></o:p></span></p></div><blockquote style="margin-top:5.0pt;margin-bottom:5.0pt"><p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"><span style="color:windowtext"> </span><o:p></o:p></span></p><p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"><span style="color:windowtext">Patrick,</span><o:p></o:p></span></p><p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"><span style="color:windowtext"> </span><o:p></o:p></span></p><p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"><span style="color:windowtext">Let me first call attention to the fact that I cc’d the leadership team so that they can judge whether my suggestion was ridiculous or not.</span><o:p></o:p></span></p></blockquote><p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"><span style="color:windowtext"><br>Let me call attention to the fact that I cc'd the entire list so the community can be involved in the conversation as well. (as you say "we all have to work collaboratively in this WG")<br><br><br><br></span><o:p></o:p></span></p><blockquote style="margin-top:5.0pt;margin-bottom:5.0pt"><p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"><span style="color:windowtext">I am not in a position to determine what the truth is in this situation, </span><o:p></o:p></span></p></blockquote><p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"><span style="color:windowtext"><br>Well, I AM in such a position because IT HAPPENED TO ME. <br><br><br><br></span><o:p></o:p></span></p><blockquote style="margin-top:5.0pt;margin-bottom:5.0pt"><p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"><span style="color:windowtext">but, even if you are correct in your assessment, giving Sara a chance to respond to your strong accusation privately </span><o:p></o:p></span></p></blockquote><p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"><span style="color:windowtext"><br>Big companies like GoDaddy will not respond privately - it's beneath them. Believe me, I've tried.<br><br>If Sara was interested in responding to my claims, she has had every opportunity to do so, either privately or publicly. I have not heard a peep from her.<br><br><br><br></span><o:p></o:p></span></p><blockquote style="margin-top:5.0pt;margin-bottom:5.0pt"><p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"><span style="color:windowtext">would be much more respectful than making your accusation publicly. </span><o:p></o:p></span></p></blockquote><p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"><span style="color:windowtext"><br>It's not an accusation - it's a statement of facts. I welcome Sara and/or GoDaddy to present any evidence to the contrary.<br><br><br><br></span><o:p></o:p></span></p><blockquote style="margin-top:5.0pt;margin-bottom:5.0pt"><p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"><span style="color:windowtext">Email communications are very easily misunderstood and/or poorly expressed. I do not know whether that is the case here or not; I am sure you do not believe that is the case, but giving her the benefit of the doubt and asking her to explain further privately would have been a much better approach in my opinion. </span><o:p></o:p></span></p></blockquote><p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"><span style="color:windowtext"><br>As I said, I have no reason to believe she would respond to a private discussion of this matter. I have tried several time to discuss GoDaddy's port 43 restrictions with them and they would not respond to me. GoDaddy is too big to care about the opinions of a single anti-phishing anti-spam anti-abuse advocate that disagrees with GoDaddy's illegal restrictions on port 43 WHOIS.<br><br><br><br></span><o:p></o:p></span></p><blockquote style="margin-top:5.0pt;margin-bottom:5.0pt"><p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"><span style="color:windowtext">The fact is that we all have to work collaboratively in this WG.</span><o:p></o:p></span></p></blockquote><p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"><span style="color:windowtext"><br>Which is why this should be discussed on the list as well. I know I'm not the only person on the list that feels this way.<br><br>Patrick Klos<br>Phishcop Admin<br><br><br><br></span><o:p></o:p></span></p><blockquote style="margin-top:5.0pt;margin-bottom:5.0pt"><p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"><span style="color:windowtext">Chuck</span><o:p></o:p></span></p><p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"><span style="color:windowtext"> </span><o:p></o:p></span></p><p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"><span style="color:windowtext"> </span><o:p></o:p></span></p><div><div style="border:none;border-top:solid #E1E1E1 1.0pt;padding:3.0pt 0in 0in 0in"><p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"><b><span style="color:windowtext">From:</span></b></span><a href="mailto:pkngrds@klos.net"><span style="mso-bookmark:_MailOriginalBody">pkngrds@klos.net</span><span style="mso-bookmark:_MailOriginalBody"></span></a><span style="mso-bookmark:_MailOriginalBody"><span style="color:windowtext"> [</span></span><a href="mailto:pkngrds@klos.net"><span style="mso-bookmark:_MailOriginalBody">mailto:pkngrds@klos.net</span><span style="mso-bookmark:_MailOriginalBody"></span></a><span style="mso-bookmark:_MailOriginalBody"><span style="color:windowtext">] <br><b>Sent:</b> Saturday, February 17, 2018 1:20 PM<br><b>To:</b> </span></span><a href="mailto:consult@cgomes.com"><span style="mso-bookmark:_MailOriginalBody">consult@cgomes.com</span><span style="mso-bookmark:_MailOriginalBody"></span></a><span style="mso-bookmark:_MailOriginalBody"><span style="color:windowtext"><br><b>Subject:</b> Re: [gnso-rds-pdp-wg] Krebs On Security article RE whois and GDRP</span><o:p></o:p></span></p></div></div><p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"> <o:p></o:p></span></p><div><p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody">On 2/17/2018 2:11 PM, </span><a href="mailto:consult@cgomes.com"><span style="mso-bookmark:_MailOriginalBody">consult@cgomes.com</span><span style="mso-bookmark:_MailOriginalBody"></span></a><span style="mso-bookmark:_MailOriginalBody"> wrote:<o:p></o:p></span></p></div><blockquote style="margin-top:5.0pt;margin-bottom:5.0pt"><p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"><span style="color:windowtext">Patrick,</span><o:p></o:p></span></p><p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"><span style="color:windowtext"> </span><o:p></o:p></span></p><p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"><span style="color:windowtext">If you are going to specifically criticize a company by name, please do that directly with that company and not on this list.</span><o:p></o:p></span></p><p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"><span style="color:windowtext"> </span><o:p></o:p></span></p><p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"><span style="color:windowtext">Chuck</span><o:p></o:p></span></p></blockquote><p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"><br>That's ridiculous. <br><br>Sara Bockey, representing GoDaddy, made statements on the list that do not reflect the truth. It is my obligation to refute her claims publicly on the same forum her original statements were made.<br><br>Patrick Klos<br>Klos Technologies, Inc. and Phishcop Admin<br><br><br><br><br><o:p></o:p></span></p><blockquote style="margin-top:5.0pt;margin-bottom:5.0pt"><p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"><span style="color:windowtext"> </span><o:p></o:p></span></p><div><div style="border:none;border-top:solid #E1E1E1 1.0pt;padding:3.0pt 0in 0in 0in"><p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"><b><span style="color:windowtext">From:</span></b></span><span style="mso-bookmark:_MailOriginalBody"><span style="color:windowtext"> gnso-rds-pdp-wg [</span></span><a href="mailto:gnso-rds-pdp-wg-bounces@icann.org"><span style="mso-bookmark:_MailOriginalBody">mailto:gnso-rds-pdp-wg-bounces@icann.org</span><span style="mso-bookmark:_MailOriginalBody"></span></a><span style="mso-bookmark:_MailOriginalBody"><span style="color:windowtext">] <b>On Behalf Of </b></span></span><a href="mailto:pkngrds@klos.net"><span style="mso-bookmark:_MailOriginalBody">pkngrds@klos.net</span><span style="mso-bookmark:_MailOriginalBody"></span></a><span style="mso-bookmark:_MailOriginalBody"><span style="color:windowtext"><br><b>Sent:</b> Friday, February 16, 2018 3:35 PM<br><b>To:</b> </span></span><a href="mailto:gnso-rds-pdp-wg@icann.org"><span style="mso-bookmark:_MailOriginalBody">gnso-rds-pdp-wg@icann.org</span><span style="mso-bookmark:_MailOriginalBody"></span></a><span style="mso-bookmark:_MailOriginalBody"><span style="color:windowtext"><br><b>Subject:</b> Re: [gnso-rds-pdp-wg] Krebs On Security article RE whois and GDRP</span><o:p></o:p></span></p></div></div><p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"> <o:p></o:p></span></p><div><p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody">On 2/16/2018 5:22 PM, Sara Bockey wrote:<o:p></o:p></span></p></div><blockquote style="margin-top:5.0pt;margin-bottom:5.0pt"><p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"><span class="s2">Not only is our decision to mask customer information in Port43 completely unrelated to GDPR, but it results directly from attacks by third parties who harvest and sell our customers’ personal information. </span><o:p></o:p></span></p></blockquote><p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"><br>I don't know what precipitated this conversation, but I will jump in here based on my actual experience.<br><br>To say "<span class="s2">it results directly from attacks by third parties who harvest and sell our customers’ personal information" is a complete lie!<br><br>GoDaddy has blocked MANY IP addresses I've attempted to use port 43 WHOIS on with absolutely no due process! And I can say with absolute certainty that I and my IP addresses were not involved in any form of "attack(s) by third parties".<br><br>But if I wanted to continue fighting phishing, spammers and other abuses without being forced to use GoDaddy's cumbersome web interface (with their stupid "I'm not a robot" and "Choose all the pictures that have a goldfish in them" games) to process each WHOIS request, I would have to give in to GoDaddy's illegal blocking (restricted WHOIS output) and sign their "whitelist request" to get myself back to business!!!<br><br><br><br><br><br></span><o:p></o:p></span></p><blockquote style="margin-top:5.0pt;margin-bottom:5.0pt"><p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"><span class="s2">Given the onslaught of spam and robo-calls our customers have been receiving – often within minutes of registering a domain name—we felt that action was required, if not overdue. </span><o:p></o:p></span></p></blockquote><p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"><br>I'm not sure I can see how port 43 WHOIS requests can be used to determine new domain registrations in the way you imply? Maybe you can share how that works??<br><br><br><br><br><br><o:p></o:p></span></p><blockquote style="margin-top:5.0pt;margin-bottom:5.0pt"><p style="margin:0in;margin-bottom:.0001pt;line-height:16.2pt"><span style="mso-bookmark:_MailOriginalBody"><span class="s2"><span style="font-size:10.5pt;color:black">WHOIS information is still very much available for any & all domain names via our web-based WHOIS tool, </span></span></span><span style="mso-bookmark:_MailOriginalBody"><span style="font-size:10.5pt;color:black"><o:p></o:p></span></span></p></blockquote><p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"><br>It may be available, but it's quite cumbersome and a waste of good peoples' time!!<br><br><br><br><br><br><o:p></o:p></span></p><blockquote style="margin-top:5.0pt;margin-bottom:5.0pt"><p style="margin:0in;margin-bottom:.0001pt;line-height:16.2pt"><span style="mso-bookmark:_MailOriginalBody"><span class="s2"><span style="font-size:10.5pt;color:black">However, bulk access by anonymous users is no longer supported.</span></span></span><span style="mso-bookmark:_MailOriginalBody"><span style="font-size:10.5pt;color:black"><o:p></o:p></span></span></p></blockquote><p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"><br>I didn't know "bulk access by anonymous users" was ever a thing?!? If you were intent on blocking "bulk access", why should that have impacted port 43 WHOIS requests for single domains???<br><br><br><br><br><br><o:p></o:p></span></p><blockquote style="margin-top:5.0pt;margin-bottom:5.0pt"><p style="margin:0in;margin-bottom:.0001pt;line-height:16.2pt"><span style="mso-bookmark:_MailOriginalBody"><span class="s2"><span style="font-size:10.5pt;color:black">I also note that during this entire process, we have kept ICANN informed of both the attacks on our Port43 systems</span></span></span><span style="mso-bookmark:_MailOriginalBody"><span style="font-size:10.5pt;color:black"><o:p></o:p></span></span></p></blockquote><p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"><br>Please provide the evidence of my "attacks" that you've provided to ICANN to justify your restricting WHOIS data to any of my IP addresses.<br><br><br><br><br><br><o:p></o:p></span></p><blockquote style="margin-top:5.0pt;margin-bottom:5.0pt"><p style="margin:0in;margin-bottom:.0001pt;line-height:16.2pt"><span style="mso-bookmark:_MailOriginalBody"><span class="s2"><span style="font-size:10.5pt;color:black">as well as our efforts to mitigate them. Our actions are justified and to imply otherwise is not only inaccurate but does nothing to move this PDP forward.</span></span></span><span style="mso-bookmark:_MailOriginalBody"><span style="font-size:10.5pt;color:black"><o:p></o:p></span></span></p></blockquote><p class="MsoNormal" style="margin-bottom:12.0pt"><span style="mso-bookmark:_MailOriginalBody"><br>Your actions were unilateral and (in my opinion) violated your registrar agreement(s) with ICANN. You're allowed to block ABUSIVE behavior, but you blocked many many requests with absolutely no evidence of abuse! How can you justify that???<br><br><span class="s2">Patrick Klos<br>Phishcop Admin</span><o:p></o:p></span></p></blockquote><p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"> <o:p></o:p></span></p></blockquote><p class="MsoNormal"><span style="mso-bookmark:_MailOriginalBody"><span style="color:windowtext"><br><br><br></span></span><o:p></o:p></p></div></div><p class="MsoNormal"><span style="font-size:10.5pt">_______________________________________________ gnso-rds-pdp-wg mailing list <a href="mailto:gnso-rds-pdp-wg@icann.org">gnso-rds-pdp-wg@icann.org</a> <a href="https://mm.icann.org/mailman/listinfo/gnso-rds-pdp-wg">https://mm.icann.org/mailman/listinfo/gnso-rds-pdp-wg</a><o:p></o:p></span></p></blockquote></div></div></div></blockquote></span></body></html>