Domain registrars (was Re: signing + mailing lists)

John A. Martin jam@jamux.com
Sat Sep 22 01:43:01 2001 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


>>>>> "MHW" == Michael H Warfield

>>>>> "Re: Domain registrars (was Re: signing + mailing lists)"

>>>>>  Thu, 20 Sep 2001 17:54:13 -0400


    MHW> On Thu, Sep 20, 2001 at 01:19:38PM -0700, Rich Burroughs
    MHW> wrote:

    >> > In my experience the only significant mail based process that
    >> > has been persistently unable to handle PGP signed mail was
    >> > the domain registration services at NAI but that problem was
    >> > easily solved when
    MHW>                                  ^^^^^^
    MHW> 	Huh?  John, do you mean NSI? 

Right, of course.

    MHW> They implimented the PGP guardian object which I immediately
    MHW> took advantage of and never had a single hickup or miss fire
    MHW> even though I've manged several dozen domains and been, at
    MHW> times, technical contact for over a hundred.

PGP Guardian worked well for me at first but not with GPG keys even
after they claimed to be using a version of PGP with which I was
inter-operating in the hands of others.  Two of their help desk
supervisors strongly suggested not to use PGP in any version.  I'm
afraid I cannot recall when this was but the troubles persisted for me
during several months when my GPG produced signatures were being
verified by other PGP users.

    MHW> 	I've never had them be "persistently unable to handle
    MHW> PGP signed mail" and have had it work every time.  Well,
    MHW> every time I used it properly...  :-)

Interesting.

    >> Any other registrars that use PGP/GnuPG? The others I've seen
    >> all do web forms, and some don't even use SSL...

I found a registrar with a simple web site using SSL and from which I
have since received excellent service.  I do not believe this is the
place to discuss the pros and cons of the Domain Registrars other than
perhaps to mention that <http://www.domainbuyersguide.com> lists legal
issues which lead me straight to the registrar that I choose.

    MHW> 	And I really DON'T like the web interfaces, SSL or
    MHW> not.  Tough as hell to script and automate.

Compared to what?  I don't like web interfaces either but given a
choice between NSI's "Mail-From" or "Crypt-PW" and SSL it was easy for
me.  Could an expect script civilize the web interfaces?

	jam

-----BEGIN PGP SIGNATURE-----
Comment: OpenPGP encrypted mail preferred.  See <http://www.gnupg.org/>

iEYEARECAAYFAjurj1QACgkQUEvv1b/iXy8vLgCeLPxQ6ubGnIKfV5ftEOILn1na
Nr8AnR5984DRw/4UnBfvtZ3XXr0S42BZ
=1Un9
-----END PGP SIGNATURE-----