[AusNOG] .au Password Recovery
hitman at itglowz.com
Tue Jul 24 16:27:39 EST 2018
I tried with one of my domains and put in a random name. Still worked.
What i find mildly amusing is this message on the page after you click
the link and get your password.
"If you have received this notification and have not requested your
domain password please contact your sponsoring registrar or reseller
I understand it on the email, but after you've read the email and
clicked the link.....
On 24/07/2018 13:46, Ted Cooper wrote:
> Works quite well. This is a huge step forward from the phone call, or go
> talk to the existing recalcitrant registrar first method.
> In regards to where the email has gone, this is still available via the
> web based whois system. Wish list for the same page, but still available
> for now.
> I also ponder the Requestor Name field. Neither it nor an IP address is
> included in the email or the linked page. They weren't part of the
> previous system either so it's more of a curiosity.
> Having a link/menu on each of these sites that links to the others would
> be useful. eg Jump between whois and password recovery.
> For your filers and whitelists, emails are currently sent from Amazon
> AWS hosts, with sending email address of support at afilias.com.au. Emails
> are not DKIM signed. Sending host is specifically set in SPF:
> H=ws-us-east-lb-1.afilias.tech (ws-us-east-lb-10.afilias.info) [22.214.171.124]
> SPF does include an IPv6 address, however it doesn't appear to be
> currently in use; mine came over IPv4 and there's no PTR or AAAA for it.
> This is still an immense relief to have password recovery over email
> though! Different but workable.
> On 24/07/18 13:29, Nick Stallman wrote:
>> Very nice, Slightly different to the old system with a link instead of
>> just putting the password in the email.
>> One oddity however, to request a password you have to put in a name, but
>> I can't figure out what that's used for? It doesn't put the requester's
>> name in the email nor on the link.
>> I'm not sure why they'd want to collect it if they didn't use it.
>> It would have been nice if it was included in the email so if I
>> requested a password on behalf of a client (so much easier sometimes)
>> they'd see my name in the email and not wonder what the strange email means.
>> Also it seems you can no longer see where the email actually got sent
>> to. Again, very useful if the client has multiple email addresses and
>> you can tell them which one to check.
>> On 24/07/18 13:12, Paul Goodsell wrote:
>>> Hi All,
>>> Just wanted to let you all know that Afilias' new .au password
>>> recovery tool is live. You can find it here:
>>> It's pretty straightforward. Enter URL and your name (requestor).
>>> You'll receive an email with recovery link to the email associated
>>> with your registration. Click it and you'll find your domain password,
>>> registration expiry date, and sponsoring registrar information. The
>>> recovery link expires after 48 hours.
>>> Paul Goodsell
>>> Marketing Manager
>>> Afilias Australia Pty Ltd.
>>> M: +61 4 6665 5973
>>> AusNOG mailing list
>>> AusNOG at lists.ausnog.net
>> Nick Stallman
>> Technical Director
>> Email nick at agentpoint.com <mailto:nick at agentpoint.com>
>> Phone 02 8039 6820 <tel:0280396820>
>> Website www.agentpoint.com.au <https://www.agentpoint.com.au/>
>> Agentpoint <https://www.agentpoint.com.au/>
>> Netpoint <https://netpoint.group/>
>> Level 3, 100 Harris Street, Pyrmont NSW 2009 Facebook
>> <https://www.facebook.com/agentpoint/> Twitter
>> <https://twitter.com/agentpoint> Instagram
>> <https://www.instagram.com/Agentpoint/> Linkedin
>> AusNOG mailing list
>> AusNOG at lists.ausnog.net
> AusNOG mailing list
> AusNOG at lists.ausnog.net
More information about the AusNOG