When you're at that level of risk you probably need to worry as much about the r... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		pbhjpbhj on April 10, 2014 \| parent \| context \| favorite \| on: When two-factor authentication is not enough When you're at that level of risk you probably need to worry as much about the registry as the registrar. If a corrupt registrar can simply bypass your registrar and claim the domain for example.

nly on April 10, 2014 | [–]

That's why several TLDs have a "registry lock" as well as a "registrar lock". Basically you can't transfer your domain between registrars without first going above their head to the registry.

_mocc on April 10, 2014 | [–]

Yes, agreed. The domains in question are .com TLD

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact