Is it secure enough to use Google App own domain email service for whois?

[owntype]

I have read some article regarding the security issue in Gmail. Then how about Google App own domain email service? is it secure?

Any of you using it for your whois info?

Thanks

 

[DJZ]

I wouldn't recommend putting a @gmail.com address in the WHOIS. Not because there is a current security flaw, but if one were to crop up in the future it would put your domain in harms way because hackers could seek out domains having gmail WHOIS contacts.

Gmail does have excellent capabilities for handling forwarded emails and checking POP3 accounts, so you can still use the GMail with a different email address.

 

[Morgan]

...edit...

 

[weblord]

web-based email like this gmail and yahoo and other huge web-based email are not secure to use since they're most for public consumption and no one's to blame. in case of any problem they will just close down your account and never bothered to look

if you're just experimenting just create another email account with them and do the tests.

I have read some article regarding the security issue in Gmail. Then how about Google App own domain email service? is it secure?

Any of you using it for your whois info?

Thanks

 

[snoop]

Personally I wouldn't trust it for a whois contact email, I think it is better than an actual gmail address though.

 

[-REECE-]

You could use it for the whois and have it forward all emails to a domain which is ISP-based or housed with a more secure email provider (eg. avoid all keylogger problems).

I like DNS Made Easy myself, however I use an ISP-based email for my better names. Email security is definitely not something one wants to go light or take shortcuts with and I wouldn't really want to use gmail or anything Google-related for domains I couldn't afford to lose.

 

[snoop]

You could use it for the whois and have it forward all emails to a domain which is ISP-based or housed with a more secure email provider (eg. avoid all keylogger problems).

Personally I wouldn't use that method. I guess it gets around the issue of logging into gmail but it is adding in an extra point of attack for a thief. The fewer links in the chain the better. I would definately not trust ISP based email, staff that work for those companies are generally not very security aware and thus prone to social engineering.

 

[-REECE-]

ISP-based email gets around many of the insecurities of web-based emails (brute forcing passwords, many phishing techniques). In the end, they all have their weaknesses. There are actually guides out there on how to use social engineering to get into most web-based email accounts.

The best precaution really is to be aware of what hacking techniques are available out there and do your best to protect from them as best you can, using additional security features your registrar may offer for your more valuable domains, domain name monitoring software, and regularly logging in to your domain accounts.

This Iranian hacker has hacked enough people now, I'd be very hesitant to suggest there is such a thing as being "safe".

Personally I wouldn't use that method. I guess it gets around the issue of logging into gmail but it is adding in an extra point of attack for a thief. The fewer links in the chain the better. I would definately not trust ISP based email, staff that work for those companies are generally not very security aware and thus prone to social engineering.