Verisign's Wildcard Stupidity

A few weeks back, Verisign implemented a wildcard in the .com and .net top level domains, which they are responsible for managing. What this means is that non-existant names, rather than getting an error returned from the TLD servers saying they don't exist, resolve to a Verisign server, which provides search services, and presumably tracks what folks are mistyping. This is a fairly common practice amongst some of the smaller TLD providers, but it has caused quite a stink in this case because of the size of these TLD's, and the unanticipated (by Verisign at least) side-effects. ICANN - the folks who dole out TLD registries amongst other responsibilities - tried asking nicely and were rebuffed. On Friday they put their foot down. This will get interesting and should serve as a bellwether for commercial control over Internet operations.

Given the magnitude of the issues that have been raised, and their potential impact on the security and stability of the Internet, the DNS and the .com and .net top level domains, VeriSign must suspend the changes to the .com and .net top-level domains introduced on 15 September 2003 by 6:00 PM PDT on 4 October 2003. Failure to comply with this demand by that time will leave ICANN with no choice but to seek promptly to enforce VeriSign's contractual obligations.

A good summary of ICANN's investigation is here. Related blogosphere commentary is here).