Just and FYI to everyone who didn't know this....

GoDaddy restricts domain transfers for 60 days anytime a change is made to any contact on a domain. Even something as simple as an e-mail address. They do this as thier own internal policy, outside of the ICANN official policy.

I personally think this policy is very restrictive and the only purpose it serves is to 'handcuff' domain owners to GoDaddy service whether they want to be thier or not.

I actually had never had a bad experience with GoDaddy until I discovered this today and I'll never use them for any service again.

If you think this policy sucks like I do, e-mail president@godaddy.com.

This was discussed here 100s of times already. This Godaddy requirement directly contradicts ICANN's interr-registrar transfer policy.

My thoughts about this: http://domaindiary.net/2006/03/09/beware-of-godaddy/

I think it's basically only when the admin contact is changed.

I think it's basically only when the admin contact is changed.

I think ANY contact change starts GD 60-days countdown.

Stan is correct,

Any change sets it off according to phone support @ GoDaddy.

I don't think so. I'm sure I've corresponded with GoDaddy about this. I'll see if I can find it.

I don't think so. I'm sure I've corresponded with GoDaddy about this. I'll see if I can find it.

That would be nice. Thanks!

Eh? What happened to my post? WHT must have done a backup or something. OK, I try again...

I'm still looking for my correspondence, but this is what GoDaddy's Transfer Agreement ToS says:-

2. Failed or Rejected Transfer Requests
Go Daddy may elect to accept or reject your domain name transfer application for any reason at its sole discretion. Rejections may include, but are not limited to: The current Registrar rejected the transfer. The original registration took place less than sixty (60) days prior to the transfer request. The domain name has been placed in a locked status by either the Registry or by the losing registrar. The domain was transferred to Go Daddy less than sixty (60) days prior to the transfer request. The domain name expired but was not renewed. The domain name expired and was renewed during the forty-five (45) day grace period, and the forty-five (45) day grace period has not yet passed. The Domain Name Registrant was changed less than sixty (60) days prior to the transfer request. Any pending bankruptcy of the current domain name holder. Any dispute over the identity of the domain name holder. Any situation described in the Dispute Policy. Transfer orders over thirty (30) days old.

They only mention the Domain Name Registrant here. I've asked GoDaddy for their interpretation of this rule, but since it's the weekend, I don't expect to get an answer until early next week.

Eh? What happened to my post? WHT must have done a backup or something.

I also have noticed that WHT was doing weekend's laundering yesterday. My post count magically decreased by 1x... Probably some posts or even the whole threads were deleted.

Ok. I've had a definitive reply from GoDaddy. Straight from the Transfer Concierge's mouth (via my contact at GoDaddy). It's only if the Registrant Info changes that a domain goes into the 60 day hold at GoDaddy. Even wiggling the registrant's toes (like changing the phone number) will cause it to go into 60 day hold.

There does appear to be some confusion at the regular support at GoDaddy, who initially said it was both the the registrant and admin contact change. So, support might tell you that, but it's not the case.

As already pointed out, Their ToS only refers to the Domain Name Registrant only, and this is confirmed by GoDaddy's Transfer Concierge (nice title, uh?).

Stan, you did see this, yes?

OT:
After much soul searching, I've decided to select eNom as my preferred registrar and become an ETP. I'll complete transferring my domains over the next 2 years (I've got a transfer deal at MyDomain which I can't resist, $6 flat).

Last time I called Godaddy technical support they stated the 60 day hold was to reduce fraudulent transactions. I do not see it as a bad thing

Heck, maybe they shouldn't allow you to transfer away at all. Then there'd be no fraudulent transactions :)

Last time I called Godaddy technical support they stated the 60 day hold was to reduce fraudulent transactions. I do not see it as a bad thing

Can you please explain HOW their 60 days registrant-change policy will reduce fraudulent transactions?

Can you please explain HOW their 60 days registrant-change policy will reduce fraudulent transactions?

Simple: if someone reports to Go Daddy the domain name was allegedly pushed to
another account within their systems without their knowledge and consent, that'll
allow them time to act.

Of course, this depends on how many reports of this exact nature was generated
within their organization after a period of time. So if after a 3-month period they
gathered like 20 complaints above their "threshold", then it's time to input a policy
in place without telling anyone about it.

We're going to see registrars inputting security measures without notifying users
about them. They want to ensure as little people as possible can potentially make
short work of their security measures and make 'em go back to the drawing board
to come up with new ones.

Hard to tell, really, if it's valid or not.

Simple: if someone reports to Go Daddy the domain name was allegedly pushed to
another account within their systems without their knowledge and consent, that'll
allow them time to act.

With all due respect, Dave - question wasn't about pushes. If *I* log to *MY* GD account and update an address or email of the registrant or even remove whois privacy - that will start 60 days countdown. How THAT can possible improve security?

The worst thing is that GD is telling everyone that's ICANN policy, which is simply not true.

With all due respect, Dave - question wasn't about pushes. If *I* log to *MY* GD account and update an address or email of the registrant or even remove whois privacy - that will start 60 days countdown. How THAT can possible improve security?

Well, if someone somehow obtained your login details, went inside your account,
and changed the email address and so on, then they might transfer it to another
GD account. Or worse, to another registrar.

Of course, you know better than that. Sadly, many people don't. :(

But like I said, it also depends on what results the registrar obtained after a given
period of time. The amount of feedback, report trends, or whatever data they get
and results they discern will "dictate" how they'll approach certain issues.

In this specific instance, they know all too well it hurts legit transfers. Apparently
their data dictate it's better safe than sorry.

The worst thing is that GD is telling everyone that's ICANN policy, which is simply not true.

They're likely taking advantage of many people not knowing that either. But for
those who do know, no doubt they'll back down. :D

Dave, the thing is, how GD has stated to Stu, that Admin/Tech/Billing contact change will NOT affect 60 days. Only registrant. So, would-be hacker can possibly login into GD account, change admin's email and transfer w/o any problems, right away.

BTW, I *strongly* doubt that *even* if 60 days was valid for admin details, this could possibly increase the security by any measureable amount. If someone could login to my GD account, it could mean either:

- my PC has malware and I am a n00b who could care less than to install any protection and *of course* I don't know how to do whois lookups. What's whois, anyway???

- my password is '123', 'secret' or similar and I am a n00b who could care less than to use anything more complex and *of course* I don't know how to do whois lookups and I wouldn't notice any changes in my domain. What's whois, anyway???

:)

Can you please explain HOW their 60 days registrant-change policy will reduce fraudulent transactions?

I would surmise credit card fraud is probably of grave concern to them.

I would surmise credit card fraud is probably of grave concern to them.

What this has in common with registrant change?

What this has in common with registrant change?

I would think(speculation) that someone who is trying to purchase something with a stolen card would also try to change the information to make it easier to move the name?

technanny >> registrant has nothing to do with name 'moving'. It's administrative contact which gets all transfer requests.

Yes, but in many cases they are the same (it is for me).

Yes technanny. For me too. But it's the database fields that matter. You can change the Admin Contact fields and the domain is not held. Change the Registrant fields and the domain get's held. Stan is just pushing the point that IF someone hacked his account, they could transfer domains away. I'm sure it's not going to happen to Stan tho. I'm sure his password is something like !@#$%^&*. hehe.

Stan is just pushing the point that IF someone hacked his account, they could transfer domains away. I'm sure it's not going to happen to Stan tho. I'm sure his password is something like !@#$%^&*. hehe.

Stu, my password there is NOT like that. Infact, I can post it here, w/o any problems. I simply don't keep anything important there anymore, don't have a credit card on file, have deleted my Paypal account. Having the password, you'll must guess the username anyway... :)

Technanny, you keep defending GoDaddy and it's policies (was it you who 'promoted' GD to be the safest registrar in other thread?), not fully understanding them. Why is that? Is this because you have some financial reason to do so (you work for them?) or it's simply because you haven't tried other registrars? I don't have nothing personal against you, I just want to know the reasons of this sometimes blind defending. Thank you.