Alright, here's the idea.
There's a lot of fingers pointing in all directions regarding someone spying (selling, hacking, stealing) whois search queries. These rumors spread faster than you can say "domibot". Let's put an end to it, shall we?
Step 1: Assemble a group of 10-20 trusted fellow domainers. Say, DNOA members.
Step 2: Pick 5 available domains from different categories. One brandable, one keyword-rich, one typo, etc. DO NOT publicize the test queries for the purity of the experiment.
Step 3: Pick a guinea pig (registrar or whois service).
Step 4: Pick a date and hit their whois with these 5 queries. This will create an illusion of a hype - multiple identical queries spread over 24 hours originating from different IP's all over the world.
Step 5: See what happens. If all 5 domains get snatched, we'll know who sells logs to whom.
Rinse and repeat Steps 2-5 with different domains and different registrar.
Eventually we'll have a list of whois services to avoid.
I offer my own Whois and More script for pre-testing the queries. It works directly with the registries and DOES NOT record/collect/log any user input.
"WhoIs" in?
There's a lot of fingers pointing in all directions regarding someone spying (selling, hacking, stealing) whois search queries. These rumors spread faster than you can say "domibot". Let's put an end to it, shall we?
Step 1: Assemble a group of 10-20 trusted fellow domainers. Say, DNOA members.
Step 2: Pick 5 available domains from different categories. One brandable, one keyword-rich, one typo, etc. DO NOT publicize the test queries for the purity of the experiment.
Step 3: Pick a guinea pig (registrar or whois service).
Step 4: Pick a date and hit their whois with these 5 queries. This will create an illusion of a hype - multiple identical queries spread over 24 hours originating from different IP's all over the world.
Step 5: See what happens. If all 5 domains get snatched, we'll know who sells logs to whom.
Rinse and repeat Steps 2-5 with different domains and different registrar.
Eventually we'll have a list of whois services to avoid.
I offer my own Whois and More script for pre-testing the queries. It works directly with the registries and DOES NOT record/collect/log any user input.
"WhoIs" in?
Last edited:
