Domain Privacy Services Abuse

This story from The Security Fix examines how spammers use domain privacy services to hide the identities of the operators. One of the highlights of the blog is the information that anti-spam organization KnujOn has found that some 15,000 sites that major beneficiaries of spam advertising are registered through privacyprotect.org

The blog (and the responses) contain some good links to stories about our old buddy, Spam King Scott Richter's current activities. The TalkBack section is exceptionally interesting because at around the 18th response is a reply from Stacy Burnette of ICANN in which she (sort of) clarifies ICANN's position on Kreb's allegations. It's 11:15 pm here, so maybe my reading comprehension is suffering, but my reading of the response is that under Section 3.7.7.3 of ICANN's registrar's agreement, they won't force the disclosure of the owners of anonymous domains unless someone presents evidence of "actionable damages" due to misuse of a domain name.

She also says that starting in July, Whois accuracy complaints will be more actively investigated, but there's still that Section 3.7.7.3 that would seem to make that a bit meaningless in many cases. She also points out that "ICANN does not have contractual authority to address spam matters." and have a nice day, eh?