Martyn makes some good points here...my php script covers only .com, .net and .org, whereas their's is going a bit further. But what interested me was the discussion on one of the OpenSRS lists about keeping domain name records. Right now, I'm not logging requests at all either. However, there are probably good defensive reasons (from a security perspective) for doing this. If someone unauthorized were attempting to crack my little webapp six ways to sunday, I probably ought to know who it was, and what they were doing. I can get the IP from the access logs, but as of yet, I'm not looking at how they're trying to break it. Tracking that means also logging the valid lookup requests. Obviously, people are convinced that this occurs now with malicious intent. The reason I haven't started logging yet is because of the privacy issue -- their lookup should not be accessible without a darn good reason. Rob Martin FULLdetails wrote: We have customised some existing script ideas and come up with http://www.virtualflirt.co.uk/whois/ which looks at all main systems & TLD's some don't appear to work like .cn (china) & .tv but it does work if you put ca (to look up a .ca) in the "other" box trying to drive traffic to our http://www.virtualflirt.co.uk game rather than encourage public whois look ups but it could also be used to send a data string to the next page for clients to register a domain if it appears available N.B. we do NOT keep any data on any of the domain names that are looked up using this script just in case your worried about us running a .php script / database regards martyn ----- Original Message ----- From: "Rob Martin" <[EMAIL PROTECTED]> To: "Newfield-Net-Host.com" <[EMAIL PROTECTED]> Cc: <[EMAIL PROTECTED]> Sent: Tuesday, October 24, 2000 6:57 PM Subject: Re: Checking an expired domain > > On my site I use a PHP script that calls fwhois and feeds the results back > to the user. > > <shameless plug> > You can check it out at http://www.2guyshosting.com/lookup.php and see if > you like it. > </shameless plug> > > If you like it, I'd be happy to share the source with you or the > list. However, keep a couple of things in mind -- one, fwhois is a > Unix/Linux command; this won't work without changes on an IIS server. Two, > this kind of an input (essentially being the argument to a console > command) can be pretty insecure. I've been relatively careful with it, but > your mileage may vary. > > Rob Martin > > On Tue, 24 Oct 2000, Newfield-Net-Host.com wrote: > > > Is there a way to automatically check for the availability of a > > domain name? A script or something, maybe even an > > email notification? > > tom > > > > > > -- > ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ > > Welcome to MS-Linux version 3.0. > Please enter your login name, or press escape to login as root. > login: > _ > > ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ > > -- ------------------------------------------------------------------------------ "Linus Torvalds, the honorary 'President' of the Linux movement has clearly stated the long term goal of Linux, world domination. Yes, one man who wants to dominate the world by means of his software. So Linux is no different to other major OS's."
