Re: [regext] Internationalized Email Addresses and EPP

Taras Heichenko <tasic@academ.kiev.ua> Mon, 23 November 2020 23:12 UTC

Return-Path: <tasic@academ.kiev.ua>
X-Original-To: regext@ietfa.amsl.com
Delivered-To: regext@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 375363A0E3D for <regext@ietfa.amsl.com>; Mon, 23 Nov 2020 15:12:44 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 0
X-Spam-Level:
X-Spam-Status: No, score=0 tagged_above=-999 required=5 tests=[SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id GLfKlGjrIuy9 for <regext@ietfa.amsl.com>; Mon, 23 Nov 2020 15:12:42 -0800 (PST)
Received: from academ.kiev.ua (academ.kiev.ua [194.143.145.237]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id DD49B3A0E3A for <regext@ietf.org>; Mon, 23 Nov 2020 15:12:41 -0800 (PST)
Received: from [10.0.3.72] by academ.kiev.ua with esmtpsa (TLS1.2) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (Exim 4.94 (FreeBSD)) (envelope-from <tasic@academ.kiev.ua>) id 1khL0b-000Jy5-N2; Tue, 24 Nov 2020 01:12:38 +0200
Content-Type: text/plain; charset=us-ascii
Mime-Version: 1.0 (Mac OS X Mail 14.0 \(3654.20.0.2.21\))
From: Taras Heichenko <tasic@academ.kiev.ua>
In-Reply-To: <83b02e81-b3e8-472c-a483-1e90f25ac8cb@www.fastmail.com>
Date: Tue, 24 Nov 2020 01:12:33 +0200
Cc: regext@ietf.org
Content-Transfer-Encoding: quoted-printable
Message-Id: <F43E92F0-E27D-4BB7-ABFE-9BA3BF436329@academ.kiev.ua>
References: <20201123205504.4A58627C7661@ary.qy> <a23d4ff1-9fd9-4a28-90fd-5a91585d846b@www.fastmail.com> <5DC2CF4B-CDF5-4641-80D0-9D2D1DDAB11F@academ.kiev.ua> <83b02e81-b3e8-472c-a483-1e90f25ac8cb@www.fastmail.com>
To: Patrick Mevzek <pm@dotandco.com>
X-Mailer: Apple Mail (2.3654.20.0.2.21)
X-Spam-Score_int: [academ.kiev.ua] -28
Archived-At: <https://mailarchive.ietf.org/arch/msg/regext/IUpGqdJ159pXX7PT_uldEfZryJg>
Subject: Re: [regext] Internationalized Email Addresses and EPP
X-BeenThere: regext@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Registration Protocols Extensions <regext.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/regext>, <mailto:regext-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/regext/>
List-Post: <mailto:regext@ietf.org>
List-Help: <mailto:regext-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/regext>, <mailto:regext-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 23 Nov 2020 23:12:44 -0000


> On 23 Nov 2020, at 23:55, Patrick Mevzek <pm@dotandco.com> wrote:
> 
> 
> 
> On Mon, Nov 23, 2020, at 16:50, Taras Heichenko wrote:
>> Just a question: How can a registrar accept the transfer of a domain by 
>> a user if it does
>> not check that this domain is owned by this user?
> 
> You may want to look at <domain:authInfo> ...
> 
> This is completely orthogonal to anything related to email addresses.
> Long gone are the days when only an email sent was enough to trigger a transfer,
> and for good reasons.

I said nothing about only an email address but complete contact information. Most
of our registrars were checking an entire Contact object to identify the user requesting
a transfer to avoid court. From their point of view, the only password for a domain does
not provide enough protection to a domain transfer. I know that there are other ways of
transfer. You may want to look at different registrar's agreements...

> 
> -- 
>  Patrick Mevzek
>  pm@dotandco.com
> 
> _______________________________________________
> regext mailing list
> regext@ietf.org
> https://www.ietf.org/mailman/listinfo/regext

--
Taras Heichenko
tasic@academ.kiev.ua