Argentine version of Google falls into “wrong” hands

Argentine version of Google falls into “wrong” hands(en.mercopress.com)

308 points by pedro-guimaraes 5 years ago | 161 comments

Forbo 5 years ago |

> >According to the Open Data Córdoba group (which is dedicated to tracking expired Argentine domains) Google's domain had not expired and, in fact, the expiration date was in July. But the group too was unable to explain what had happened or why.

Ouch. I think someone's going to have some explaining to do in the post-mortem.

packetslave 5 years ago | |

Yeah, MarkMonitor is not going to have a good time on this one (they're the company Google, and a bunch of other high-profile companies) use for domain management and tracking. They're supposed to prevent this kind of thing from happening.

emmelaich 5 years ago | | |

It's not known whether Google or the AR NIC made the mistake.

kccqzy 5 years ago | | |

MarkMonitor has been purchased by OpSecSecurity: https://www.opsecsecurity.com/resource/press-release/opsec-s...

I wonder if this has anything to do.

throwaway_kufu 5 years ago |

I recently sold cryptocomicbook.com and decided to list some additional domains for sale, at the exact time I listed them a handful of ua.(TLDs) got listed for sale including ua.com and whoever listed them must have done it in bulk and given them all the same price ($76).

So I bought the ua.com for $76, at that point the seller must have realized what happened and immediately changed the sales price of all the other TLDs from $76 (example ua.co went from $76 to a min of $48,000), the marketplace confirmed the seller was verified as the owner or had authority to sell ua.com. Of course after the fact the marketplace reversed the transaction, they oddly reconfirmed the seller was verified/legit (I thought they would say the seller got past their verification but wasn’t legit), and they have refused to confirm why if the seller was legit that they reversed the sale transaction.

codezero 5 years ago | |

They reversed it because it was an honest mistake and most people like to know that if they make the same mistake it can be undone.

masswerk 5 years ago | | |

It may be worth noting that in most countries a contract essentially is established by the consensus of wills by the parties involved. An error in objecto ("I didn't mean the thing I accidentally said or listed") is a legitimate excuse and nullifies a contract. (The consensus didn't exist and thus the contract had never been established in the first place).

(This is also a reason why marketplaces, where things "just happen", are, let's say, complicated, as they do not adhere to this legal tradition.)

GordonS 5 years ago | | |

I have to agree - although I'm surprised the registrant actually used common sense here, it was the fair thing to do.

throwaway_kufu 5 years ago | | |

Maybe...I tested your theory and asked them to reverse my recent sale of cryptocomicbook.com on the same basis and my request was declined.

In either case there is both contract law and state federal law (unfair trade practices) that would support my claim in the courts if I were so inclined.

dehrmann 5 years ago | | |

It's not a blockchain domain registry.

clukic 5 years ago | |

As I read this I literally had a config file open in another window with references to ua.com. it's owned by UnderArmour and serves endpoints to their Fitness API.

This would have been one of the more interesting answers to the most common support question at my company: "Why wont my runs sync?"

stainforth 5 years ago | |

Why should I believe in markets when transactions can just be reversed like this?

cj 5 years ago | | |

If you walked into a car dealership and saw a price tag of $100 on a car that normally sells for $250,000, would you also lose faith in the dealership when they return your $100 and tell you the car was not meant to be priced at $100?

If anything, the example should boost your confidence in the marketplace. Marketplaces exist to provide a fair experience to both the buyer and the seller. Not just the buyer.

yosito 5 years ago |

Meanwhile, I can't even figure out how to buy domains with my name in them from people who just buy them and sit on them.

freddyym 5 years ago |

The domain google.gi is still for sale, because it can only be purchased by people who live in Gibraltar.

momothereal 5 years ago | |

They own https://www.google.com.gi/ though.

GordonS 5 years ago | |

If they really wanted it, presumably they could setup a shell company in Gibraltar using a local agent?

oauea 5 years ago | |

Wouldn't someone from Gibraltar be able to buy and lease it to Google?

kortilla 5 years ago | | |

Yeah, but Google wouldn’t want any part of that type of arrangement. Better to let it go un-associated with the country than to depend on some other party that can extort at renewal time.

csomar 5 years ago | | |

There are 30k people in Gibraltar and probably most of them use the .com or .uk domain.

utopcell 5 years ago | |

google.ar is also parked.

iso8859-1 5 years ago |

Google has also failed to buy their Soviet domain name: http://google.su/

And they even forgot about http://google.xn--vermgensberatung-pwb/

SllX 5 years ago | |

Can you even buy .su domains anymore? I was under the impression that Russia was just sitting on it.

EDIT: answered my own question. It is apparently actively used.

Scoundreller 5 years ago | |

for the longest time, i thought .su meant sudan.

worldofmatthew 5 years ago | |

There are many more TLD that Google have not got.

cyberlab 5 years ago |

If you're looking for domains potentially getting 'dropped' by Google, look no further: https://infogalactic.com/info/List_of_Google_domains

HowardStark 5 years ago | |

Took a quick glance and noticed that this article is claiming "duck.com" is owned by Google, even though it redirects to DuckDuckGo.

That domain has Namecheap's Whois Guard enabled, so there's no registrant information. However, I'm still inclined to think that it isn't Google's domain since the NS records for "duck.com" point to "nsXX.quack-dns.com"...

celestialcheese 5 years ago | | |

duck.com was owned by google from an acquisition in 2010.

It was sold to DDG in 2018 https://www.theverge.com/2018/12/12/18137369/duckduckgo-duck...

jordanmoconnor 5 years ago | | |

Wouldn't it be funny if DDG was actually Google.

gtirloni 5 years ago | | |

In December 2018, it was reported that Google transferred ownership of the domain name Duck.com to DuckDuckGo. It is not known what price, if any, DuckDuckGo paid for the domain name

https://en.wikipedia.org/wiki/DuckDuckGo

Sephr 5 years ago | | |

iirc this was originally owned by Google and then given to DDG.

gtirloni 5 years ago | |

Does anyone know what cobrasearch.com was?

FredPret 5 years ago | | |

It’s like Find My iPhone but much scarier

batch12 5 years ago |

I wonder how long it would have taken to be noticed if he replicated DNS and sat on it for a while. Better yet, how long if he had redirected or cloned the site.

throwaway3699 5 years ago | |

Google gets enough DNS traffic that I doubt you could just sit on it for very long. Not without an expensive bill.

101008 5 years ago | | |

But what if you just point to original Google DNS servers?

kuroguro 5 years ago | | |

Wouldn't most of it get cached downstream tho?

Rebelgecko 5 years ago |

How was he able to register the domain months before it was supposed to expire? Did he hack the registrar itself?

judge2020 5 years ago | |

Either the registrar or the registry - the registry seems more likely as there are no requirements to running a country code TLD’s registry on account of ICANN not wanting to anger any government or seem like they have power over ‘government property’.

jfrunyon 5 years ago | | |

There are also very little requirements to running a registrar...

_acco 5 years ago |

Among other exploits, you could generate an SSL cert and harvest cookies. All visitors would have to do is load your site in their browser. Right?

cube00 5 years ago | |

Google is pretty good about pinning their certificates so it's unlikely this would work, especially in Chrome where it's locked down even further.

paxys 5 years ago | | |

Certificate pinning has already been deprecated as a standard, and no browser supports it anymore. Google may be doing something else for their own properties on Chrome, but that is unlikely and definitely not widely known.

Edit: After a few minutes of internet searching it turns out that while HPKP is deprecated Google does statically pin a set of certs into the Chrome build itself, their own sites presumably included.

goodcjw2 5 years ago |

Actually, it turns out http://google.ar/ might still be owned by someone else?

yreg 5 years ago | |

The article talks about google.com.ar, not google.ar. Secondary .ar domains are generaly not available.

Franciscouzo 5 years ago | | |

.ar domains have been available to the public since last year.

schappim 5 years ago |

I love this line from the article "but when everyone suspected that the server had crashed, as is often the case..."

That must be a pretty big server!

FridayoLeary 5 years ago |

somebody actually posted it as an 'ask hn' last night! I'm actually physically hurting right now. I wonder how much google will pay to get their precious domain back.

whitehouse3 5 years ago | |

Can't they forcefully take it? [0]

[0]: https://www.icann.org/resources/pages/cybersquatting-2013-05...

devrand 5 years ago | | |

ccTLDs are special as they are entirely delegated to the countries that they're assigned to. WIPO offers UDRP servicing for ccTLDs, but they need to opt-in to it [1].

Notably .ar (and .su as the other responder to your comment notes) is not part of that. Therefore the process is going to depend upon the specific country/agency overseeing the ccTLD.

[1]: https://www.wipo.int/amc/en/domains/cctld/

FridayoLeary 5 years ago | | |

what is this then? https://news.ycombinator.com/item?id=26907303

mderazon 5 years ago |

How did Google reclaim it ? What is the mechanism in DNS that allows someone to take ownership of someone else's domain and so quickly ?

Is it just because it's Google ? or is there something that allows anyone who previously owned a domain to claim it back ?

why_Mr_Anderson 5 years ago |

This is still happening? It used to be very annoying decade or so ago, but I thought it was already solved/fixed/improved.

Are there really no option to make a domain registration without expiration?

devrand 5 years ago | |

There's lot of different TLDs each with their own rules, fees, and registrars. It's hard to unify that landscape, particularly when a bunch of ccTLDs have very little infrastructure behind them.

The closest you can really get is hiring a mark protection firm like MarkMonitor which themselves are registrars for a handful of TLDs (namely .com) and can basically indefinitely extend registrations for everything they have contracts for.

QUFB 5 years ago |

It's not quite google.ar, but I'm still trying to figure out what to do with https://gnu.gl/

jshmrsn 5 years ago | |

If GNU Project ever wanted to run a free Google alternative, GNUgl at gnu.gl would be a great fit.

QUFB 5 years ago | | |

Once they become a community project, rather than the rms fan club, I'll talk to them.

livre 5 years ago | |

Until a year or two ago (can't remember exactly) it wasn't possible to register a "naked" .ar domain and they were reserved for very special cases (government mostly). It had to be a .com.ar or .org.ar etc.

1vuio0pswjnm7 5 years ago |

Out of curiosity, I queried about 100 DoH servers (open resolvers) for "google.com.ar". Every A record returned contained an IP address registered to Google.

asimpletune 5 years ago |

Once I told my friend ja.red was available for $9, and after he bought it they told him it was a mistake and reversed the transaction.

guytpearson1 5 years ago |

Fun article, but they will get it back with relative ease. Happens all the time. Trademark domain.

amelius 5 years ago | |

Is it still a trademark violation if they use the domain to sell something completely unrelated, e.g. shoes?

guytpearson1 5 years ago | | |

The problem with this is that Google isn't some generic term for something else. A lot of case law around this kind of stuff. Will get transferred back to Google in a heartbeat.

FridayoLeary 5 years ago | |

Just like that? A court order $4 dollar refund and have a nice day? That's a bit anticlimatic.

techrat 5 years ago | | |

Not everything ends up turning into a Michael Bay movie when being resolved.

sbassi 5 years ago |

It was wrong, not so wrong, since it could have been worse, like a scammer who could had setup a fake page. Instead, the person didn't even park the DNS, just left it without resolution. This helped everybody realize there was a problem.

sixothree 5 years ago |

> The technical term for this type of manoeuvre is called “Cybersquatting” in English.

0xdba 5 years ago | |

No, that's buying a domain in the hopes someone will want it in the future. This was "domain sniping".

canada_dry 5 years ago | |

Yah. This gives him some bragging rights at most. If he hacked something, it'll be a different story though.

y-c-o-m-b 5 years ago |

I see this kind of stuff happening all the time; some of them being high-profile sites too (e.g. "Keep America Great" got taken from Trump). Is there some website that monitors domain expiration and sends out alerts or is this mostly lone-actors? I'm always surprised by how quickly they move in on the domain

folli 5 years ago | |

It's called Domain drop catching or Domain sniping. There are tools available that do just that.

https://en.wikipedia.org/wiki/Domain_drop_catching

wrs 5 years ago | |

There are many such services, which will not only alert you but automatically try to buy the domain for you. Search for “domain backorders”.

y-c-o-m-b 5 years ago | | |

Oh wow even GoDaddy provides the service. Interesting. Thanks!

eli 5 years ago | |

yeah but all the good ones are automatically reregistered way faster than you could click the Buy button.

yuchi 5 years ago |

I once bought .org.it after some newspapaer misspelled our .it domain name as .org.it (which is a non-existant TLD) and I tried to regain the exposure.

They didn’t let me through though… :(

ThisWasTaken 5 years ago |

I'd just make it redirect to duck.com or remake the site (Google.com) and change all the icons / buttons to ones drawn with paint.

neonate 5 years ago |

https://archive.is/7nkiR

gonational 5 years ago |

Wait, didn't our version of Google also fall into the wrong hands?

ro_bit 5 years ago |

How much does Google pay MarkMonitor for this to happen?

wlonkly 5 years ago | |

MarkMonitor is surprisingly affordable (at scale). Their minimum buy is not cheap, but within that individual domains are, well, not retail price, but not far off either.

They "make it up in volume" by giving you an incentive to keep your entire domain portfolio together, even when you really only care about MarkMonitor levels of care for a subset of them.

Advanced features like registry lock and local presence are also affordable-but-not-cheap.

(A lot of their more proactive brand and trademark management has been spun off to other divisions of Clarivate who acquired them some years ago.)

CydeWeys 5 years ago | |

It sounds like it might be a screw up at the registry end. Hard to say from the limited info available.

FridayoLeary 5 years ago |

check this out https://news.ycombinator.com/item?id=26907303

SirSourdough 5 years ago | |

Sounds like a little-used TLD that ICANN has been trying to phase out for decades. Google has individual sites for most of countries that would have initially been under the umbrella of the .su (USSR) TLD, and .su apparently has 2% of the usage of .ru where Google already has a site.

Maybe they'll try to snap it up now that it's attracting a little attention but they probably just don't really care about it...

FridayoLeary 5 years ago | | |

he's running a website under the name of google. You can play it down, but that's pretty cool.

Rohpakle 5 years ago |

However, minutes later after the manoeuvre, it was confirmed that Google has already recovered the domain.

I'm confused. It seems to me that this article just through some lines in it without further explanation.

solids 5 years ago | |

Nobody knows what happened. Last night someone posted on twitter that google.com.ar was not working, then another one posted a screenshot from the Argentinean domain provider highlighting that the domain was registered by a random guy. Few hours later google.com.ar started working again, probably a single phone call from Google resolved the issue.

Trias11 5 years ago |

Google probably threatened to abuse poor guy with legal action.

Similar to what MSFT did to the guy who totally legally registered mikerowesoft.com

dannyphantom 5 years ago | |

> In the end, Microsoft and Mike Rowe came to an agreement. In exchange for transferring control of his domain name, the software maker has promised to help Rowe set up a new Web site; pay for a Microsoft certification course and subscription to the Microsoft Developer Network Web site; and pay for his family to visit Microsoft Research Tech Fest in Redmond, Wash., in March. To top it all off, he will get an Xbox with some games.

From cnet: https://www.cnet.com/news/mikerowesoft-settles-for-an-xbox/

He did an AMA on reddit 11 years ago; he's apparently a full time poker player now. https://www.reddit.com/r/IAmA/comments/ajsih/i_am_the_guy_wh...

utopcell 5 years ago | |

That is not how Google works.

ThothIV 5 years ago |

Google will sell you domains that it doesn't own. I've purchased .MX and .CO.UK domains from them just recently. I've purchased Thoth.zone, Thoth.mx and Thoth.pw from them. From networkingsolutions.com I've bought thoth.domains. It's a crazy turf war situation right now, given the broad international legal overlaps and so on and so forth.