ICANN-accredited registries and domain registrars have approved the corporation's proposed changes to the rules to combat the domain abuse, Domain Name Wire reports. Existing rules have been criticized for a long time: while recognizing the need to combat the abuse, they, in fact, were limited to the most general and vague formulations. The changes bring sufficient specificity to the rules.
First of all, the definition of DNS Abuse is based on criteria generally accepted today - the distribution of malware, use for botnets, phishing and pharming (hidden redirection of visitors to false IP addresses). It also includes their use for spam mailings, but only if the spam messages serve as a channel for one of the illegal actions listed above. However, any website content not related to these actions cannot be considered an illegal use of the DNS system.
The actions of registrars and registries are also specified. Thus, registrar companies are required to have a web form or email address to receive information about the abuse and promptly confirm receipt of this information, as well as provide contacts for law enforcement agencies in their jurisdiction. The same requirements apply to registries. As for direct actions to combat the domain abuse, there is expectedly less specificity in this part. Of course, we can also talk about temporary or permanent blocking of domain names, however, each case may require an individual approach. So, for example, if a site has been hacked and is spreading malware without the knowledge of its rightful owner, the registrar can contact the owner and demand that the threat be removed. The same applies to situations where second- and third-level domains are used by different parties, and completely blocking a second-level domain name can cause harm to bona fide users.
In addition, registries are given the right to delegate the authority to take specific actions to the same registrar companies or hosting providers. Decisive action is required from the registries themselves, mainly in situations where the abuse in the domain zones they manage is widespread. Changes to the rules must be approved by the ICANN org board before being included in contracts with registrars and registries.