

![]() |
| ![]() | |||||||
|
![]() |
| | LinkBack | Thread Tools | Display Modes |
| | #21 (permalink) |
| Platinum Lifetime Member Last Online: 08-03-2009 04:18 PM iTrader: (100) Join Date: Dec 2005
Posts: 541
DNF$: 933 Location: Subic Bay | Re: Warning: Domain stolen. Huge security flaw. eNom have verbally agreed to refund my Club Drop purchase price and eNom renewal for this domain. They do not admit to any security flaw but make some vague reference to investingating the issue. Now, I ask myself. Why would they make such an offer if they're not wrong? You make your own minds up.
__________________ Free Whois |
| | |
| Sponsored Ads |
| | #22 (permalink) | |
| Internet Real Estate
Country: | Re: Warning: Domain stolen. Huge security flaw. Quote:
__________________ PremiumDomains.biz BLOG | ColoradoSpringsApartments.com | Manhattan.mobi | California.biz | DETROIT.US | |
| | |
| | #23 (permalink) |
| 888-MRDELETED Name: Joseph Slabaugh Last Online: 05-01-2009 05:58 PM iTrader: (48) Join Date: Jul 2004
Posts: 2,947
DNF$: 124 Location: youtube.com/mrdeleted
Country: | Re: Warning: Domain stolen. Huge security flaw. http://www.7j.cc/files/enomaccess.JPG here is where the problem is...
__________________ ![]() Mr. Deleted, YouTube Partner ![]() http://www.dnforum.com/f283/omg-omkg...ml#post1542121 3 LLLL.coms |
| | |
| | #24 (permalink) |
| is out kiteboarding Last Online: 11-21-2009 05:55 AM iTrader: (15) Join Date: Nov 2005
Posts: 1,955
DNF$: 8,154 Location: San Francisco | Re: Warning: Domain stolen. Huge security flaw. kinda off topic but has anyone ever had problems with name theft at Godaddy? Sometiems i wory about them. |
| | |
| | #25 (permalink) | |
| 888-MRDELETED Name: Joseph Slabaugh Last Online: 05-01-2009 05:58 PM iTrader: (48) Join Date: Jul 2004
Posts: 2,947
DNF$: 124 Location: youtube.com/mrdeleted
Country: | Re: Warning: Domain stolen. Huge security flaw. Quote:
np. What I suggest is for all names you buy, that you change the password there to something you may remember. Wierd that they have this set up like that for clubdrop names though.
__________________ ![]() Mr. Deleted, YouTube Partner ![]() http://www.dnforum.com/f283/omg-omkg...ml#post1542121 3 LLLL.coms | |
| | |
| | #26 (permalink) |
| 888-MRDELETED Name: Joseph Slabaugh Last Online: 05-01-2009 05:58 PM iTrader: (48) Join Date: Jul 2004
Posts: 2,947
DNF$: 124 Location: youtube.com/mrdeleted
Country: | Re: Warning: Domain stolen. Huge security flaw. not personaly, but search dnf for MALL.com and see for yourself if you want to keep good names there.
__________________ ![]() Mr. Deleted, YouTube Partner ![]() http://www.dnforum.com/f283/omg-omkg...ml#post1542121 3 LLLL.coms |
| | |
| | #27 (permalink) |
| Platinum Lifetime Member Last Online: 08-03-2009 04:18 PM iTrader: (100) Join Date: Dec 2005
Posts: 541
DNF$: 933 Location: Subic Bay | Re: Warning: Domain stolen. Huge security flaw. Well it's not just Club Drop, but any push from eNom account to eNom account will do it. In their communications with me they called it a "feature" that they didn't change the password on a domain push. Eh? Then when I wasn't getting anywhere at all, I asked for an explanation how this domain was transferred away, and they blatently abmonished me for not changing the domain password after the push to my account. Eh, again? It's the other way around, Duh! Club Drop are negligent in passing me a domain with a domain password which was known by some third party. Gulp! And eNom are still refusing to TDRP the domain even tho I'm the rightful legal owner and it was stolen due to their negligence. If I'd bought it from a third party, then I could understand their position because I was dealing directly with the third party. However, I had nothing to do with the third party in this case. I bought it directly from eNom's Club Drop. My loss due to their negligence. It stinks.
__________________ Free Whois Last edited by stu; 08-25-2006 at 11:59 PM.. |
| | |
| | #28 (permalink) |
| Platinum Lifetime Member Last Online: 08-03-2009 04:18 PM iTrader: (100) Join Date: Dec 2005
Posts: 541
DNF$: 933 Location: Subic Bay | Re: Warning: Domain stolen. Huge security flaw. They also still haven't explained how the domain, which was locked, got transferred away. I have proof that the domain was still in my account, and locked, 1 day after it was transferred away. This means to me that it was still locked at the time of transfer. Food for thought.
__________________ Free Whois |
| | |
| | #29 (permalink) | |
| 888-MRDELETED Name: Joseph Slabaugh Last Online: 05-01-2009 05:58 PM iTrader: (48) Join Date: Jul 2004
Posts: 2,947
DNF$: 124 Location: youtube.com/mrdeleted
Country: | Re: Warning: Domain stolen. Huge security flaw. Quote:
I myself keep a password in most of mine so that I can log into it if needed, and it helped me recover a name once that a guy was holding for me and not responding to my messages. It was my name, but was in his account. I kept asking for a push, but he never repleyed, so I logged in, and put my contact in the whois and ordered a transfer. He was supprised, but did not notice it till few weeks later when he came on messenger, and I told him and explained what had happened. Apparently he was having problems with his family members (like someone ill) and was not online. But he was cool with it, and we still in good terms, but that can be a good thing to have... Just not in a clubdrop name or a name that was sold, can you imagine buying a xx,xxx name and after buying it, the seller pushed it, and you made a popular site, and then a year later, your top name was in his account again? So if you have a drop, change the pass. I would think they would do it, but apparently not.
__________________ ![]() Mr. Deleted, YouTube Partner ![]() http://www.dnforum.com/f283/omg-omkg...ml#post1542121 3 LLLL.coms | |
| | |
| | #30 (permalink) |
| WE BUY DOMAINS Last Online: Yesterday 08:01 PM iTrader: (55) Join Date: Dec 2005
Posts: 1,067
DNF$: 6,244 Location: New York, USA
Country: | Re: Warning: Domain stolen. Huge security flaw. There should be a way to bulk edit names to turn the feature OFF
__________________ Selling your generic domain name? Want CASH now? WeBuyThe.Com is ready to buy your names Send us your generic.com today with stats for consideration! Last edited by WeBuyThe.Com; 08-26-2006 at 07:17 AM.. |
| | |
| | #31 (permalink) |
| The Bishop Last Online: 09-16-2009 03:42 PM iTrader: (117) Join Date: Jan 2005
Posts: 3,954
DNF$: 2,515 Location: UK
Country: | Re: Warning: Domain stolen. Huge security flaw. Bad Idea Bulk editing all your domain names with the same password, for example if you sold one of those domains and pushed it into the other persons account the password would remain. I know a way that I could get access to that password, which would then give me access to everyone of your domains if I knew what they were. Obviously I am not going to post the bug here, but rest assured I will be making Enom aware of this flaw. I have tested in on 3 of our accounts and I have to say the flaw is real, and I managed to recover the password each time. I really would stress all users to remove the domain access password from their domains.. DO NOT attempt to global update your domains with the same password.
__________________ Parked.com - The Valet Domain Parking That Pays Last edited by namestrands; 08-26-2006 at 07:13 AM.. |
| | |
| | #32 (permalink) | |
| 888-MRDELETED Name: Joseph Slabaugh Last Online: 05-01-2009 05:58 PM iTrader: (48) Join Date: Jul 2004
Posts: 2,947
DNF$: 124 Location: youtube.com/mrdeleted
Country: | Re: Warning: Domain stolen. Huge security flaw. Quote:
__________________ ![]() Mr. Deleted, YouTube Partner ![]() http://www.dnforum.com/f283/omg-omkg...ml#post1542121 3 LLLL.coms | |
| | |
| | #33 (permalink) | |
| The Bishop Last Online: 09-16-2009 03:42 PM iTrader: (117) Join Date: Jan 2005
Posts: 3,954
DNF$: 2,515 Location: UK
Country: | Re: Warning: Domain stolen. Huge security flaw. Quote:
I suspect what has happened is the previous owner has pushed the domain back into their own account, it may not be a situation of theft per se. More likely ignorance by the previous owner who let it expire. I am sure enom can follow the paper trail (be it virtual). If you get no joy send me a PM and I will give you the details of a key contact at Enom whom I am sure will assist. The thing is to remain cool, calm and collected. Ignore the "Random" comments from preoccupy, as they serve no purpose whatsoever, this guys comments get more bizarre each time he posts. I have filed a complaint with my Account manager at Enom regarding the password being pushed during transfer, it clearly is not a feature but a flaw. If the person taking the domain has since transferred to another registrar then your only course of action is UDRP, however a simple C&D letter may scare them enough to transfer the domain back. Best of luck and let us know how you get on.. this would make an interesting case study.
__________________ Parked.com - The Valet Domain Parking That Pays | |
| | |
| | #34 (permalink) |
| The Bishop Last Online: 09-16-2009 03:42 PM iTrader: (117) Join Date: Jan 2005
Posts: 3,954
DNF$: 2,515 Location: UK
Country: | Re: Warning: Domain stolen. Huge security flaw. You have to request, as you can not do in manually, another "Feature". Have raised this issue also. May I request that all Enom Resellers and portfolio owners raise a ticket or contact your account manater to this effect, this is a serious flaw and should be addressed. The more that request the more likely Enom will take notice.
__________________ Parked.com - The Valet Domain Parking That Pays Last edited by namestrands; 08-26-2006 at 07:47 PM.. |
| | |
| | #35 (permalink) | |
| 888-MRDELETED Name: Joseph Slabaugh Last Online: 05-01-2009 05:58 PM iTrader: (48) Join Date: Jul 2004
Posts: 2,947
DNF$: 124 Location: youtube.com/mrdeleted
Country: | Re: Warning: Domain stolen. Huge security flaw. Quote:
But access.enom.com does not allow you to PUSH a name, it just allows you to access it to update the whois and name servers. Edit: I found what you are referring to as to how to get that password... that is serious.
__________________ ![]() Mr. Deleted, YouTube Partner ![]() http://www.dnforum.com/f283/omg-omkg...ml#post1542121 3 LLLL.coms Last edited by Mr. Deleted; 08-26-2006 at 08:07 PM.. | |
| | |
| | #36 (permalink) |
| The Bishop Last Online: 09-16-2009 03:42 PM iTrader: (117) Join Date: Jan 2005
Posts: 3,954
DNF$: 2,515 Location: UK
Country: | Re: Warning: Domain stolen. Huge security flaw. Their is a flaw that allows push, but will not post until enom have corrected the issue.
__________________ Parked.com - The Valet Domain Parking That Pays |
| | |
| | #37 (permalink) |
| Gold Lifetime Member Last Online: 06-13-2009 12:54 AM iTrader: (0) Join Date: Jul 2002
Posts: 26
DNF$: 238 Location: Tennessee | Re: Warning: Domain stolen. Huge security flaw. This is one of several reasons I moved all my domains to Moniker recently. I was a long time Enom customer but had enough. At Moniker, it requires corporate officer approval for any domain to be transferred outside the registrar. Monte contacted me himself when I was transferring a domain away, to let me know what was going on, if I knew about it, etc. Try calling Enom sometimes. Its russian roulete to get anyone to answer at all. Yet at Moniker, I have an account manager who is on reachable by AIM, email, or phone--and if he's not, someone at Support is. Another "feature" Enom had, and may still have, is if a domain accidentally runs a couple of days past renewal. Enom unlocks the domain!? EVEN after you renew the domain, enom doesn't go back and relock the domain. The ENOM system would report the domain is locked, but the central registry would say its unlocked. And you think, oh do a global edit? Nope, because the enom system thought the domain was locked, it would skip the domain, still leaving it unlocked. I reported this numerous times--never so much as a response. They may have finally fixed this, I don't know. |
| | |
| | #38 (permalink) |
| Platinum Lifetime Member Last Online: 08-03-2009 04:18 PM iTrader: (100) Join Date: Dec 2005
Posts: 541
DNF$: 933 Location: Subic Bay | Re: Warning: Domain stolen. Huge security flaw. Just to have some closure on this thread. Despite getting three director level persons involved in this problem/flaw, they never admitted any wrong-doing, would not rectify the situation, and refunded my money, even though it was against their stated policy to do so. They at no time ever told me the truth at any level, would not answer any question which might throw blame onto themselves or which might prove my case, or throw any light on the flaw, and deliberately obfuscated and lied at all times. they have been completely dishonest with me over this issue.
__________________ Free Whois |
| | |
| | #39 (permalink) |
| SoldWith.com Name: Riel Roussopoulos Last Online: 10-05-2009 01:44 AM iTrader: (2) Join Date: Apr 2006
Posts: 102
DNF$: 3,643 Location: Vancouver, BC
Country: | Re: Warning: Domain stolen. Huge security flaw. I'll avoid them
__________________ ![]() ------------------------------------------------- Integrated Blog, Ecommerce, CMS and CRM. |
| | |
| | #40 (permalink) |
| Bloody lovely Last Online: 11-21-2009 08:07 PM iTrader: (394) Join Date: Feb 2004
Posts: 23,903
DNF$: 4,071 Location: USA
Country: | Re: Warning: Domain stolen. Huge security flaw. Nice tomb-raiding, Rouss.
__________________ ![]() DomainGang.com - Domainers' Most Awesome News Source Acroplex - Web & Graphics Acro.net - My Blog |
| | |
![]() |
| Currently Active Users Viewing This Thread: 1 (0 members and 1 guests) | |
| Thread Tools | |
| Display Modes | |
| |
Similar Threads | ||||
| Thread | Thread Starter | Forum | Replies | Last Post |
| DomainResearchTool - PROFESSIONAL Domain Software - DNF Special Price - $129 + Bonus | jdk | Advertising and Related Offers | 7 | 08-15-2007 04:58 AM |
| $30 in free registrations when you order the Domain Research Tool for only $129 | Ashaw | Advertising and Related Offers | 1 | 05-28-2006 12:03 PM |
| Looking for forums advertising asap! | inetsource | Advertising and Related Offers | 2 | 04-08-2005 10:03 PM |
| PPC Domain Manager Script Now Available! | cyphix | Advertising and Related Offers | 3 | 12-03-2004 12:14 PM |