Unstoppable Domains โ€” Expired Auctions

How to properly safeguard a valuable domain

Spaceship Spaceship
Watch
I

ichudov

New Member
โ˜† 10 โ˜†
Impact
1
I have a few domains, none really valuable, except one, which is worth perhaps $3-4k or so.

I have been reading about socially engineered domain thefts and I am now thinking, how to properly secure my domain names, so that my registrations would be secure even if someone decides to "game the system" and try to steal my domains.

To that end, I have come up with the following approach.

1. Register a gmail account that will be used only for domain management.
2. Secure said gmail account with two factor authentication and a unique password.
3. Change admin and tech contacts on all registrations to point to that gmail address.
4. Change all registrations to "private" in order not to expose that email address.
5. Set up a whois watch, that would "notice" any changes in registrations and alert me.

The reason why I want to go through the trouble of having a separate gmail address for domains, is to hide from thieves the email address used on registrations. The obvious drawback of this, is that a separate and unused email address will make it more challenging to check messages on a regular basis.

Any thinking on this? Thanks!
 
Reply
0
0 Like
0 Thanks
•••
The views expressed on this page by users and staff are their own, not those of NamePros.
GoDaddyGoDaddy
Sort by date Sort by points
Yeah, that would help prevent theft... But, if real hackers really wanted to take domain names there would be little we could do about it.... They rather rip off banks, steal identities, etc... Not enough money in it for them to waste time taking domains....

That should be enough to safeguard against wannabe hackers though....
 
Reply
0
0 Like
0 Thanks
•••
How do you do #5?
 
Reply
0
0 Like
0 Thanks
•••
stub said:
How do you do #5?
Click to expand...

I am a computer programmer. I use Linux. I have a script that I wrote that watches output of a given command, and alerts me via email when the output changes.
 
Reply
1
1 Like
0 Thanks
•••
Moniker doesn't give a crap about #4. They will release info in a "good" email sent to them if the respondent (you) do not reply in 5 days (even then, would they care about you if it's sent from a lawyer representing a firm?).

That's why I chose Moniker for 1 of my domains ("privacy" is in their name), but they undid protection and all hell broke loose.

Good info to follow, but if someone wants those names, they'll find a way to get them. Then it's a battle you're going to have to fight.

As far as #5, there's little to do when the whois information doesn't update because the hacker didn't remove whois privacy protection (not alerting you of changes). Not fail safe unless you try to login to the accounts and find out that you can't anymore.
 
Reply
0
0 Like
0 Thanks
•••
godaddy monitorin
stub said:
How do you do #5?
Click to expand...
godaddy monitoring is a free easy way, issue is by the time you get the notice the damage is done, its better than nothing but the key is not to be a fool in the first place

also make sure ur computer is always free of viruses, keyloggers etc
 
Reply
0
0 Like
0 Thanks
•••
Your logic is a bit flawed... the gmail two factor authentication seems a good idea... but you are overlooking the fact that:
1) if whois privacy (don't get privacy and security mixed up) wasn't active on your domain until recently, the old record could possibly be stored (you know, one of the hundreds of DNS records and whois services that you can go back many years) .. so changing your email before setting privacy might be pointless, and as stated the privacy services aren't always all they are cracked up to be;
2) You talk about domain thefts... but in your solution you didn't mention about locking the domain (where applicable) which is of vital importance; and
3) You make no mention about your domain registrar user account... if someone gets in and changes your password... there is a problem right there...

Just to recap, your email address on whois is just a correspondence address and should not be the email associated with any domain or hosting accounts. Everyone knows how to do a whois search these days, literally everyone.

Whois privacy is about buying time by adding a barrier.. it wont shield you long term. Whether its nominet opt-out for UK domains or a privacy service for other domains... its not particular difficult for someone to persuade either a disclosure or removal of a service (i.e. if its a registrar's service)

$3-4k domain is NOT that valuable, its too much to be stolen of course but its not very valuable.
 
Reply
0
0 Like
0 Thanks
•••
the email address that you use to access your registrar account should NOT be used for whois - even behind privacy
 
Reply
0
0 Like
0 Thanks
•••
Log in or sign up to reply here.
Dynadot โ€” .com TransferDynadot โ€” .com Transfer

Similar threads

S
Which Email To Use?
15 replies
948 views
sashas
S
floatingworld
How to use gmail with your domain name(s)
2
23 replies
886 views
floatingworld
floatingworld
A
question 2-step-verification and how it works
12 replies
1K views
AniMeshorer
A
News
advice Using Google+ to Identify a Prospective Buyer
0 replies
555 views
News
News
Avabelle
How to properly change email on GoDaddy?
5 replies
1K views
bigdomainer
bigdomainer

We're social

Escrow.com

New posts โž”

Spaceship

Auction activity โž”

Domain Recover

How do you think a potential buyer first checks if your domain is for sale?

Polls of interest โž”

CryptoExchange.com

Hot this week โž”

Catchy

Community favorite โž”

Hot this month โž”

NameMaxi - Your Domain Has Buyers

Blog favorites

DomDB

  1. MasaChain.com

    • Show Price

  2. Cryptotunist.com

    • Make Offer

  3. patriotix.com

    • Make Offer

  4. Astrophysics.org

    • Make Offer

  5. UpGlance.com

    • Buy Now
    • $1,506

  6. fxplumbing.com

    • Make Offer

  7. EmiratesVenture.com

    • Inquire

  8. Frictionless.app

    • Make Offer

  9. secretpole.com

    • Show Price

  10. yqo.xyz

    • Make Offer
  • The sidebar remains visible by scrolling at a speed relative to the pageโ€™s height.
Back