Recent Posts
- ICANN is starting to auto-renew new gTLD contracts
- Freenom hit by FIFTH ICANN action after litany of screw-ups
- Second DNSSEC screw-up takes down Aussie web sites
- Nominet adds handcuffs clause to proposed new Articles
- Single/plural gTLD combos to be UNBANNED
- ICANN rejects a whole bunch of new gTLD policy stuff
- Volkswagen ditches its dot-brand
- Radix looking for a back-end
- Is this why WhatsApp hates some TLDs but not others?
- Blockchain domain firm raises $2.5 million
- Verisign: 1.7 million domain industry growth in Q2
- Namecheap has given away 500,000 free .me domains
- Epik had another terrible month in May
- Blockchain startup gets $5 million to apply for gTLDs
- Buckridge to replace Shears on ICANN board
- CentralNic rebrands as Team Internet
- .ai sells 100,000 domains in a year
- Google to launch two fun new gTLDs next month
- Domainers not welcome as .music readies September launch
- Another six dot-brands self-terminate (two are very strange)
- Four more years for Identity Digital in Oz
- ICANN might be a director light after election stalemate
- ICANN turns down money from blockchain alt-root
- CentralNic chief calls on industry to tackle climate change
- London Domain Summit starts tomorrow
- Closed generics ban likely to remain after another policy group failure
- Ukrainian domains slide as war becomes the new normal
- Epik had worst month ever in April
- Go.Compare now redirecting to the .com
- Huge telco dumps gTLDs after rebrand
- Rejected former director threatens to sue Nominet
- April 2026 is the date for the next new gTLD round
- Doria leaving ICANN board a loss for new gTLD program
- A second new gTLD has FAILED and will be sold off
- .web hit by second ICANN complaint
- Registrar linked to defunct social network terminated
- Three candidates stand for Nominet board
- Next round of gTLDs could come much sooner than expected
- Registering .cv domains might become easier
- Musk prematurely announces Twitter is now X
- Nominet admits membership fees mistake
- Government to regulate UK-related domain names
- Domainer objects to Epik’s acquisition over Masterbucks collapse
- Freenom is losing another ccTLD after collecting military emails
- DENIC kicks out NCC as ICANN’s sole escrow agent
- ICANN takes over country’s ccTLD after Hall of Famer’s death
- ICANN Ombudsman quits
- ICA baffled by plan to outlaw domaining in India
- No $8 million discount for dot-brands, says ICANN
- Epik lost 125,000 domains in Q1
- Buckingham leaves Nominet’s board early
- Epik is off the ICANN naughty step
- Identity Digital is gobbling up Verisign’s back-end business
- o.com auction likely a damp squib after Overstock rebrand
- ICANN actually CHANGES Verisign’s .net contract after public comments
- GoDaddy takes over .health
- The looooong road to urgently hiring ICANN’s next CEO
- Rwanda picked for ICANN meeting
- Governments call for ban on gTLD auctions
- Red Cross gets takedown powers over .org domains
- Domain universe grew 1% in Q1
- Closed generics and IDNs debates are big drag on new gTLDs
- New gTLD registry gets second ICANN breach notice
- Epik lost another 22,000 domains to transfers in February
- Mystery buyer rescues Epik at end of crazy week
- Millions of domains to be deleted as Freenom loses its first TLD
- Everyone hates Verisign’s new .net deal
- UAE boasts rapid domain growth in 2022
- ICANN just put a date on the next new gTLD round
- Three more straggler new gTLDs coming soon
- Three more dot-brands realize the futility of existence
- woke.com among domains in NamesCon auction
- Domainer asks court to block Epik sell-off
- .web delay likely after Verisign rival files ICANN appeal
- CentralNic starts returning cash to shareholders as revenue grows
- Newly launched .zip already looks dodgy
- Progress made on next new gTLD round rules
- Brands ask for cheaper ICANN fees
- ICANN salary porn: 2022 edition
- Tucows and GoDaddy see weakness in big-ticket aftermarket sales
- Another registrar seemingly vanishes
- Verisign “pleased” at ICANN’s .web call
- .hiphop returns to GoDaddy after Uniregistry snub
- Danish national registry changes its name. Don’t laugh.
- ICANN signs Whois’ death warrant in new contracts
- Verisign WILL get .web, ICANN rules
- Verisign narrows domain growth guidance
- Epik exodus topped 100,000 domains in January
- Nominet looking for another director
- CentralNic expects revenue up 24% in Q1
- Epik CEO tries to wriggle out of $327,000 refund lawsuit
- Travel gTLD registry dumps three strings — NOT dot-brands
- Worried about governments seizing .com domains? Too late
- Epik’s meltdown is a ticking time-bomb for ICANN
- Epik customer exodus started when Monster quit
- ICANN wants more newbies on its board
- AcornDomains bought by conference organizer
- Uniregistry successor makes big pricing changes on two TLDs
- ICANN to crowd-source CEO search
- Verisign’s .net contract up for public comment
- About 6,000 .au domains remain contested
- New gTLDs — implementation talks to start next month
- Epik sued over financial meltdown
- ChatGPT maker files UDRP on .com match
- Costerton drops rap album to attract Gen Z to ICANN
- .food registry to dump four dot-brand gTLDs
- Google to drop EIGHT new gTLDs
- .org back-end contract up for grabs
- The end of “do-nothing” ICANN?
- Governments backtracking on closed generics ban
- Radix sold almost $8 million of premiums last year
- .com was a drag on the industry in Q4
- Identity Digital hit by failure of Silicon Valley Bank
- .art links DNS and alt-root ENS
- Brands want new gTLD fast track
- Facebook sues free domains registry for cybersquatting
- Whois disclosure system coming this year?
- Euro registrars merge to form Your.Online
- This is why ICANN is worried about new gTLDs right now
- Identity Digital to launch .watches this month
- Typo .com on sale for $94 million
- First two proper registrars join Web3 Domain Alliance
- IDNs — small and shrinking
- “Everyone thinks you’re a spammer” if you buy keyword domains, says Googler
- New gTLDs report came in under budget
101domain throttles its business in Russia
101domain has become the latest registrar to say it is limiting its business in Russia in response to the invasion of Ukraine.
The company, owned by Altanovo Domains, said today it is suspending all new accounts, orders and inbound domain transfers for customers located in Russia.
It will also no longer sell or accept transfers for domains in Russian-linked TLDs .ru (including third-level names), .рф (.xn--p1ai), .МОСКВА (.xn--80adxhks), .рус (.xn--p1acf), .дети (.xn--d1acj3b), .su, and .tatar.
“We will continue to process renewals of existing services for the time being, however this may change at any time and without notice,” the company said.
101domain follows fellow registrars Namecheap, IONOS, and GoDaddy in announcing what effectively amount to commercial sanctions against Russia.
Industry bodies CENTR and ICANN, along with ccTLD registry Nominet, have also committed to concrete actions to sanction Russia and/or support Ukraine.
Soviet Union “no longer considered eligible for a ccTLD”, ICANN chair confirms
The former Soviet Union’s .su domain could soon embark along the years-long path to getting kicked off the internet, ICANN’s chair has indicated.
The .su ccTLD, which survived the death of the USSR thirty years ago “is no longer considered eligible for a ccTLD”, Martin Botterman said in response to a question by yours truly at the ICANN 73 Public Forum yesterday.
It seems ICANN will no longer turn a blind eye to .su’s continued existence, and that the policy enabling ccTLDs to be “retired” could be invoked in this case, after it is finalized.
The question I asked, per the transcript, was:
While it is generally accepted that ICANN is not in the business of deciding what is or is not a country, do you agree that the Soviet Union does not meet the objective criteria for ccTLD eligibility? And would you support dot SU entering the ccTLD retirement process as and when that process is approved?
I went into a lot of the background of .su in a post a couple weeks ago, and I’m not going to rehash it all here.
I wasn’t expecting much of a response from ICANN yesterday. Arguments over contested ccTLDs, which usually involve governments, are one of the things ICANN is almost always pretty secretive about.
So I was pleasantly surprised that Botterman, while he may have dodged a direct answer to the second part of the question, answered the first part with pretty much no equivocation. He said, per the recording:
It is correct that the Soviet Union is no longer assigned in the ISO 3166-1 standard and therefore is no longer considered eligible for a ccTLD.
ICANN Org has actually held discussions with the managers of the .su domain in the past to arrange an orderly retirement of the domain, and the ccNSO asked ICANN Org starting in 2010 and reiterated in 2017 to pause its efforts to retire the domain so that the Policy Development Process could be conducted. And that is a request we have honored.
So we’re glad to report that the ccNSO recently concluded that Policy Development Process and sent its policy recommendations to the ICANN board.
We will soon evaluate the ccNSO policy recommendations, and we will do so in line with the bylaws process.
It looked and sounded very much like he was reading these words from his screen, rather than riffing off-the-cuff, suggesting the answer had been prepared in advance.
I wasn’t able to attend the forum live, and I’d submitted the question via email to the ICANN session moderator a few hours in advance, giving plenty of time for Botterman or somebody else at ICANN to prepare a response.
The ccNSO policy referred to (pdf), which has yet to be approved by the ICANN board, creates a process for the removal of a ccTLD from the DNS root in scenarios such as the associated country ceasing to exist.
It’s creatively ambiguous — deliberately so, in my view — when it comes to .su’s unique circumstances, presenting at least two hurdles to its retirement.
First, the Soviet Union stopped being an officially recognized country in the early 1990s, long before this policy, and even ICANN itself, existed.
Second, the .su manager, ROSNIIROS, is not a member of the ccNSO and its debatable whether ICANN policies even apply to it.
In both of these policy stress tests, the ccNSO deferred to ICANN, arguably giving it substantial leeway on whether and how to apply the policy to .su.
I think it would be a damn shame if the Org didn’t at least try.
While it’s widely accepted that ICANN made the correct call by declining to remove Russia’s .ru from the root, allowing .su to continue to exist when it is acknowledged to no longer be eligible for ccTLD status, and the policy tools exist to remove it, could increasingly look like an embarrassing endorsement in light of Russian hostilities in former Soviet states.
Now Sedo pulls the plug on Russians
Secondary market player Sedo has become the latest domain name company to stop dealing with Russians and Russian domains.
The company sent an email to its customers today saying that it has “suspended trading and parking” for .ru domains and domains in Belarus’ .by ccTLD.
It said it can no longer serve customers in Russia or Belarus and has “temporarily deactivated” their accounts.
It’s not clear whether the move is motivated by Sedo taking a principled stance against the war in Ukraine, or necessitated by the company’s inability to process cross-border payments due to international sanctions.
“Sedo disapproves of any kind of hate and violence, as well as anything that radically contradicts our corporate values,” the company said. “Therefore, for the sake of the civilians involved, we hope for an early resolution of this conflict.”
Sedo is part of the United-Internet group. Its sister company, IONOS, announced it was working on kicking out Russian customers last week.
ICANN says NO to Ukraine’s Big Ask
“ICANN has been built to ensure that the Internet works, not for its coordination role to be used to stop it from working.”
That’s ICANN’s response to Ukraine, which earlier this week asked for Russia to lose its top-level domains and IP addresses, to help prevent propaganda supporting its invasion of the country.
The request was arguably based on a misunderstanding of the extent of ICANN’s powers, and CEO Göran Marby says as much in his response last night (pdf) to Ukraine’s deputy prime minister Mykhailo Fedorov:
In our role as the technical coordinator of unique identifiers for the Internet, we take actions to ensure that the workings of the Internet are not politicized, and we have no sanction-levying authority
He goes on to warn about the “devastating and permanent effects” of ICANN suddenly deciding to take unilateral action against .ru, .рф and .su:
For country-code top-level domains, our work predominantly involves validating requests that come from authorized parties within the respective country or territory. The globally agreed policies do not provide for ICANN to take unilateral action to disconnect these domains as you request. You can understand why such a system cannot operate based on requests from one territory or country concerning internal operations within another territory or country. Such a change in the process would have devastating and permanent effects on the trust and utility of this global system.
He concludes:
Within our mission, we maintain neutrality and act in support of the global Internet. Our mission does not extend to taking punitive actions, issuing sanctions, or restricting access against segments of the Internet — regardless of the provocations. ICANN applies its policies consistently and in alignment with documented processes. To make unilateral changes would erode trust in the multistakeholder model and the policies designed to sustain global Internet interoperability.
The response is expected, and I believe broadly, if not unanimously, supported in the ICANN community.
In a line I wish I’d written, the Internet Society’s CEO Andrew Sullivan put it pretty succinctly in a blog post yesterday:
The idea of unplugging a country is as wrong when people want to do it to another country as it is when governments want to do it to their own.
And Sébastien Bachollet, chair of ICANN stakeholder group EURALO, insisted (pdf) that “the Internet must remain intact”.
RIPE NCC, which had been asked to revoke IP addresses supplied to Russian organizations, wrote that it “believes that the means to communicate should not be affected by domestic political disputes, international conflicts or war.”
ICANN may take a short-term PR hit in the wider world, which includes people who have a misunderstanding of how powerful ICANN is and how tenuous its grasp on the powers it does have.
While .ru appears to be safe, there’s nothing I read in Marby’s letter that would preclude it from initiating retirement proceedings against .su, when the proper policies have been approved.
CENTR kicks out Russia
CENTR, the association of European domain registries, has kicked out the Russian ccTLD operator due to the war in Ukraine.
In a brief statement today, the organization said:
The CENTR Board is following Russian military actions in Ukraine with concern and strongly condemns the violation of international law and Ukraine’s territorial integrity. Ukraine’s national TLD registry is a member of CENTR and we stand with Ukrainians in their efforts to resist Russia’s invasion. We hope for a swift and peaceful resolution of the conflict, and will continue to offer support and help to our Ukrainian colleagues.
Knowledge and information sharing are key to CENTR’s mission, and the CENTR Board needs to safeguard trust within the CENTR community. The Board has therefore decided to suspend the membership of the Coordination Center for TLD RU/РФ, effective immediately. The Board would like to underline that this is in no way targeted at our Russian colleagues. This suspension will be assessed by the CENTR General Assembly at their meeting in March.
I’m not sure the move will have much of an impact on the Coordination Center, but it’s a strong gesture of solidarity with the people of Ukraine, and the latest response from the domain industry to Russia’s insane war.
Ukraine asks ICANN to turn off Russia’s internet, but it’s a bad idea
Ukraine has asked ICANN to take down Russia’s top-level domains.
Andrii Nabok, the Ukrainian official on ICANN’s Governmental Advisory Committee made the request, asking the Org to “Revoke, permanently or temporarily, the domains .ru, .рф and .su” in a widely circulated email last night.
He also asked for DNS root servers in Moscow and St Petersburg to be shut down, and said he’s written to RIPE NCC to request IP addresses issued to Russian organizations to be withdrawn.
The request came on the fifth day of the Russian invasion, amid widespread, swingeing international sanctions targeting the Russian economy and high net worth individuals.
Accusing Russia of “war crimes”, Nabok wrote:
These atrocious crimes have been made possible mainly due to the Russian propaganda machinery using websites continuously spreading disinformation, hate speech, promoting violence and hiding the truth regarding the war in Ukraine. Ukrainian IT infrastructure has undergone numerous attacks from the Russian side impeding citizens’ and government’s ability to communicate.
Moreover, it’s becoming clear that this aggression could spread much further around the globe as the Russian Federation puts the nuclear deterrent on “special alert” and threatens both Sweden and Finland with “military and political consequences” if these states join NATO. Such developments are unacceptable in the civilized, peaceful world, in the XXI century.
Reaction in the community has been more mixed than I would have expected, but I think on balance more people are saying that turning off .ru et al would be a terrible idea, and I’m basically with that majority.
While there’s no doubt that Russia is spreading a lot of misinformation, I’m not sure there’s a direct, clear, demonstrable causal link between propaganda published on .ru domains and the missiles currently raining down on Kyiv that could be remedied by deleting a few lines from a database.
I’ve no doubt ICANN now has a painful decision to make, but I don’t think ICANN is the place to achieve this kind of goal and I think ICANN agrees with me.
We don’t want those clowns deciding what can and can’t be published on the internet, trust me.
Not even in the extraordinary circumstances we find ourselves in today.
ICANN is not competent enough, smart enough, or ethical enough to have that kind of power.
It is smart enough to accept its own limitations, however, and it has a strong enough sense of self-preservation to know that to accept Ukraine’s demands would be to sign its own death warrant.
ICANN only has power, and its execs only pull in the big salaries, because it has the consensus support of the internet community.
For 20 years outsiders, such as the ITU and more lately blockchain projects, have sought to chip away at that consensus and replace the multistakeholder model with multilateralism or crypto-based wish-thinking.
Turning off a nation’s TLD would play exactly into the narrative that DNS oversight is dangerously centralized, dangerously Americanized, and ripe for replacement.
That could not only lead to the death of ICANN but also the death of the open, interoperable, international internet.
As much as I support sanctions against Russia, and have nothing but respect and admiration for the people of Ukraine, I fear this is an ask too far.
Maybe now’s the time for ICANN to start dismantling the Soviet Union
Like I’m sure a great many of you, I spent much of yesterday listening to the news and doom-scrolling social media in despair, anger and helplessness.
War has returned to Europe, with Vladimir Putin’s Russia yesterday invading Ukraine on a flimsy pretext, in an apparent effort to begin to recreate the former Soviet Union.
I watched r/ukraine on Reddit, as its number of subscribers increased by tens of thousands in a matter of hours, with people from all over the world wondering what they could do to help, from volunteering to literally take up arms to hollow if well-meaning virtue-signalling.
Can I volunteer for the Ukrainian army? I live in Japan and can’t speak the language, does that matter?
If any Ukrainians can make it to Ottawa, I have a spare couch for as long as you need it!
Here’s a guide to how I survived the snipers in Sarajevo!
Here’s a yellow-and-blue banner I made that you can use on your Twitter!
Slava Ukraini!
It got me thinking: is there anything the domain industry or ICANN community can do? Is there anything I can do?
The only thing I could think of was to run this idea up the flagpole and see if anyone sets fire to it:
Maybe now’s the time for ICANN to start dismantling the Soviet Union.
It may sound ludicrous. The Soviet Union hasn’t existed outside Putin’s fantasies since 1991.
But it’s alive and well in the DNS, where the top-level domain .su has somehow managed to survive the death of its nation, evade any efforts to have it removed, and stick around in the root for over 30 years.
It currently has over 100,000 registered domains.
I’m not suggesting for a second that all of these domains were registered by people who support the return of the USSR, or are even aware of the connection, but it is the ccTLD of choice for sites like this gung-ho propaganda rag, and the Donetsk People’s Republic, the breakaway Ukrainian region.
Whenever I’ve asked people with better in-depth knowledge of ccTLD policy than me for an explanation of why .su continues to exist, despite not having a nation to represent, I generally get a lot of hand-waving and mumbling about a “lack of political will”.
Maybe there’s a political will now, if not at ICANN Org then perhaps in the ICANN community.
My understanding, based on a deep-dive through the public record, is that it might be possible to have .su deleted — the word ICANN uses is “retired” — but the rules are arguably open to interpretation.
A bit of background first
ICANN’s rules concerning ccTLDs are a bit like the UK constitution — they’re not written down in any one document, but have rather evolved over the years through a combination of habit, convention, case law and pure making-it-up-on-the-spot.
ICANN, and IANA before it, “is not in the business of deciding what is and what is not a country”. It has always deferred to the International Organization for Standardization, which maintains a list of names and corresponding country-codes called ISO 3166-1.
If a country or territory appears on the 3166-1 list, its corresponding “alpha-2” code is eligible to become a ccTLD.
SU was listed on 3166-1, the same as any other country, until September 1992, when it was broken up into 15 names and codes corresponding to the 15 former Soviet nations. Russia got RU and Ukraine got UA, for examples, and their ccTLDs are .ru and .ua.
SU was then given a “transitionally reserved” status by the ISO, which basically means it’s due to be phased off the list altogether (albeit not for 50 years) and organizations are discouraged from using it.
In corresponding ccTLDs, every string on the “transitionally reserved” list has either transitioned to a new ccTLD (such as East Timor’s .tp becoming Timor-Leste’s .tl) or split into a collection of new ccTLDs (such as the break-up of the Netherlands Antilles).
Since ICANN took over the root, these and other transitions typically happen with the consent of the local government and the local registry. But the Soviet Union dissolved long before ICANN existed, it doesn’t have a government, and the registry is in no hurry to give up its asset, which is a bit of a money maker.
ICANN stated its intention to retire .su as early as 2003, and the earliest archived IANA record, from 2006, said it was “being phased out”.
It launched a brief consultation on the retirement of ccTLDs in 2006, which prompted a flood of comments from outraged .su supporters.
The following year, there were face-to-face talks between ICANN and the two Moscow companies running .su at the time — the Foundation for Internet Development (FID) and Russian Institute for Public Networks (RIPN).
IANA’s Kim Davies, who now heads the division as an ICANN VP, blogged in 2007, partly in response to these comments, that .su had a chance to remain delegated:
To retain .SU, under current policy they would need to successfully apply for the code to be re-instated into the ISO 3166-1 standard, either as a regular two-letter country code, or as an “exceptionally reserved” code like UK and EU.
The “exceptionally reserved” list is another subdivision of ISO 3166-1. It currently includes four codes that are also ccTLDs — .ac for Ascension Island, a UK territory, .uk itself, and the European Union’s .eu.
The fourth is .su, because FID somehow managed to persuade the ISO 3166 Maintenance Agency to get SU on the list, reversing its 50-year sentence on the transitional list, in 2008. It appears to be the only example of a private, non-governmental, non-UN entity requesting and obtaining a special listing.
There’s been very little public discussion about .su’s fate since then. My suspicion is that it fell off the radar when ICANN CEO Paul Twomey, who made ccTLD relations a cornerstone of his administration, left the Org in 2009.
Or it could be that that the “exceptionally reserved” status was enough to satisfy IANA’s eligibility criteria. But there are several reasons why that might not be the case.
In Davies’ 2007 blog, post he said: “There are other issues that will need to be addressed for .SU to be a viable ccTLD designation, but recognition by the appropriate standard is a prerequisite.”
IANA currently has a web page in which it lays out seven ways a TLD can get into the root. This is what it says about exceptionally reserved strings:
Eligible under ICANN Board Resolution 00.74. This resolution provides for eligibility for domains that are not on the ISO 3166-1 standard, but that the Maintenance Agency deems exceptionally reserved, and requires that the Agency “has issued a reservation of the code that covers any application of ISO 3166-1 that needs a coded representation in the name of the country, territory, or area involved”. There is currently (as of June 2013) only one code eligible under these requirements, “EU” for the European Union.
The cited ICANN board resolution, now incorporated into IANA precedential law, dates from September 2000. It’s the resolution that hacked historical IANA practice in order to set the groundwork for eventually levering .eu into the root.
But the relevant part here is where IANA explicitly rules out any exceptionally reserved string other than EU meeting the requirements to be a ccTLD as of 2013. SU’s ISO 3166-1 status has not changed since 2008.
RIPN and FID explicitly acknowledged this in a joint letter (pdf) to ICANN then-CEO Paul Twomey in 2007. In it, they wrote:
we understand that should ISO-3166/MA add the two letter code “SU” to the exceptionally reserved or indeterminately reserved ISO3166-1 list will not be sufficient to clarify the status of .SU as current ICANN/IANA policies require a venue in which legality of actions can be determined.
To paraphrase: being on the list ain’t no good if you got no country.
They said that if ICANN went ahead and retired .su anyway, they would like 10 to 15 years to transition their registrants to alternative TLDs.
Which handily brings me to now
There has never been a formal community-agreed ICANN policy on retiring ccTLDs, until now.
By happy coincidence, the ccTLD Name Supporting Organization recently finished work on such a policy. It came out of public comment a few weeks ago and will next (I was going to write “soon”, but you know?) come before the ICANN board of directors for consideration.
The proposed policy (pdf) conspicuously avoids mentioning .su by name and seems to go out of its way to kick the can on .su’s potential retirement.
The silence is deafening, and the ambiguity is claustrophobic.
It defines ccTLDs as:
- 2-letter ccTLDs corresponding to an ISO 3166-1 Alpha-2 Code Element (the majority of ccTLDs).
- 2-letter Latin ccTLDs not corresponding to an ISO 3166-1 Alpha-2 Code Element
- IDN ccTLDs as approved by ICANN
The second bullet point is accompanied by a footnote that explains it’s referring to the “exceptionally reserved” codes UK, AC and EU, three of the four ccTLDs on the ISO’s exceptional list.
The ccTLDs .uk and .ac which refer to exceptionally reserved codes UK and AC are grandfathered as ccTLDs and .eu, which corresponds to the exceptionally reserved code EU, was delegated under the relevant ICANN Board resolution from September 2000
There’s no mention of SU, the fourth.
Under the proposed policy, the ball would start rolling on a possible retirement whenever a “triggering event” happens. The relevant trigger for .su (and .uk, .eu and .ac) is the ISO making a change — seemingly any change — to its 3166-1 listing.
IANA, referred to in the policy as the IANA Functions Operator or IFO, would then have to decide whether the change warranted initiating the retirement process, which would take at least five years.
As is so often the case in ICANN policy-making, the difficult decisions seem to have been punted.
Only one ccTLD operator filed a public comment on this proposed policy — it was RIPN, operator of .su. While generally supportive, it worried aloud that triggering events prior to the approval of the policy should not count. Its triggering events were in 2008 and the 1990s, after all.
The policy’s creators again ambiguously kicked the can:
The [Working Group] believes the applicability of the Policy to existing situations or those emerging before the proposed Policy becomes effective is out of scope of its mandate. For situations prior to this Policy coming into force, responsibility lies with the IFO to create a suitable procedure. The WG suggests that such a procedure could be based on and anticipates the proposed Policy.
So… does ICANN get to apply the policy retroactively or not?
My overall sense is that the .su situation, which the record shows was certainly on the minds of the ccNSO during the early stages of the policy-development process, was considered too difficult to address, so they took the ostrich approach of pretending it doesn’t exist.
The .su registry seems to think it’s safe from enforced retirement, but it doesn’t seem to be absolutely sure.
In conclusion
I think the record shows that .su doesn’t really deserve to exist in the DNS, and that there’s an opportunity to get rid of it. ccTLDs are for countries and territories that exist and the Soviet Union hasn’t existed for three decades.
IANA rules don’t seem to support its existence, and upcoming policy changes seem to give enough wiggle room for the retirement process to be kicked off, if the will is there to do so.
It would take years, sure.
Would it help stop innocent Ukrainians getting gunned down in the street this week? No.
Would it be more than simple virtue signalling? I think so.
And if not, why not just do it anyway?
In a world where an organization like UEFA considers Russia too toxic for poxy football match, what would it say about an organization that allows the actual Soviet Union’s domain to continue to exist online?
SpamHaus ranks most-botted TLDs and registrars
Namecheap and Uniregistry have emerged as two of the most-abused domain name companies, using statistics on botnet command and control centers released by SpamHaus this week.
SpamHaus data shows that over a quarter of all botnet C&Cs found during the year were using NameCheap as their registrar.
It also shows that almost 1% of domains registered in Uniregistry’s .click are used as C&Cs.
The spam-fighting outfit said it discovered “almost 50,000” domains in 2017 that were registered for the purpose of controlling botnets.
Comparable data for 2016 was not published a year ago, but if you go back a few years, SpamHaus reported that there were just 3,793 such domains in 2014.
Neither number includes compromised domains or free subdomains.
The TLD with the most botnet abuse was of course .com, with 14,218 domains used as C&C servers. It was followed by Directi’s .pw (8,587) and Afilias’ .info (3,707).
When taking into account the relative size of the TLDs, SpamHaus fingered Russian ccTLD .ru as the “most heavily abused” TLD, but its numbers don’t ring true to me.
With 1,370 botnet controllers and about five and a half million domains, .ru’s abused domains would be around 0.03%.
But if you look at .click, with 1,256 botnet C&Cs and 131,000 domains (as of September), that number is very close to 1%. When it comes to botnets, that’s a high number.
In fact, using SpamHaus numbers and September registry reports of total domains under management, it seems that .work, .space, .website, .top, .pro, .biz, .info, .xyz, .bid and .online all have higher levels of botnet abuse than .ru, though in absolute numbers some have fewer abused domains.
In terms of registrars, Namecheap was the runaway loser, with a whopping 11,878 domains used to control botnets. 
While SpamHaus acknowledges that the size of the registrar has a bearing on abuse levels, it’s worth noting that GoDaddy — by far the biggest registrar, but well-staffed with over-zealous abuse guys — does not even feature on the top 20 list here.
SpamHaus wrote:
While the total numbers of botnet domains at the registrar might appear large, the registrar does not necessarily support cybercriminals. Registrars simply can’t detect all fraudulent registrations or registrations of domains for criminal use before those domains go live. The “life span” of criminal domains on legitimate, well-run, registrars tends to be quite short.
However, other much smaller registrars that you might never have heard of (like Shinjiru or WebNic) appear on this same list. Several of these registrars have an extremely high proportion of cybercrime domains registered through them. Like ISPs with high numbers of botnet controllers, these registrars usually have no or limited abuse staff, poor abuse detection processes, and some either do not or cannot accept takedown requests except by a legal order from the local government or a local court.
The SpamHaus report, which you can read here, concludes with a call for registries and registrars to take more action to shut down repeat offenders, saying it is “embarrassing” that some registrars allow perpetrators to register domains for abuse over and over and over again.
Amid Ukraine crisis, Russia scared ICANN might switch off its domains
Russia is reportedly worried that the current wave of Western sanctions against it may wind up including ICANN turning off its domain names.
According to a report in the local Vedomosti newspaper, the nation’s Security Council is to meet Monday to discuss contingency plans for the possibility of being hit by internet-based sanctions.
Part of the discussion is expected to relate to what would happen if the US government forced ICANN to remove the local ccTLDs — .ru, .рф, and the discontinued .su — from the DNS root, according to Vedomosti’s source.
The paper reports, citing a source, that “officials want to control the entire distribution system of domain names in RUnet entirely”. RUnet is an informal term for the Russian-language web.
The report goes on to explain that the government’s goal is not to isolate the Russian internet, but to ensure it remains functioning within the country if its ccTLDs are cut off in the rest of the world.
Russia has been hit by sanctions from the US and Europe in recent months due to its involvement in the Ukraine crisis, but so far these have been of the regular economic kind.
Frankly, I find the possibility of the US government asking ICANN to intervene in this way — and ICANN complying — unlikely in the extreme. It would go dead against the current US policy of removing itself almost entirely from the little influence it already has over the root system.
Almost five million Russian domains registered
Coordination Center for TLD RU broke through the four-million-domain milestone for the Russian ccTLD .ru on Monday, according to a press release.
Including internationalized domain names under .РФ, of which there are 800,000, ccTLD.ru is managing closer to five million domains.
It took 11 months to grow from 3.5 million domains, according to the registry.
The .ru zone is the fifth-largest ccTLD, after .de, .tk, .uk, and .nl, according to Verisign’s last Domain Name Industry Brief.
Recent Comments