At 14/09/2009 07:46 PM, John R. Levine wrote:
I'm simply saying that if you are worried about preventing criminals from registering tons of domains as the article describes, then the policy discussion will have to be broader than what Danny's prescription allows.
Personally, I think that the registrar should send a verification code to the paper mailing address provided by the registrant, and not activate the domain until the registrant receives the code and shows (probably by web or email response) that he or she has received it.
I realize this would make the registration process considerably slower and somewhat more expensive, but I see no public interest reason why that's a bad thing.
R's, John
I would guess that this would only need to be done for new Registrar:Registrant relationships. Once such a trust relationship is established (perhaps periodically renewable) additional registrations would not need to go through the process, thereby significantly reducing the potential impact. However, it is unclear if this could be effectively implemented in parts of the world with inadequate paper-mail capabilities. Alan