🚨 Warning: New FAKE website offering FAKE KeePassXC downloads!
-
@gremlin Six different variants with hyphens, kee, key -pw etc. times 10 TLDs times $30 is $1800. But if you want to help, keepassxc[.]com is on auction for a mere $50,000.
You need:
KeepassXC/com
KeepassXC/org
KeepassXC/net
maybe KeepassXC/pw as a "Joke Domain" and the same with "-". Since .com is currently taken it is one less.I calculate now with 6 Domains, where we end up at around 70$ a year, if we add uncommon extensions or Country specific (in this Case I choose: .info, .biz and .eu) we are still at around 92$ a year. These are not even 1,2K$ a year. Idk what "weird" or uncommon Domains you own. But a basic Brand Shield with these should be enough. And sorry, I do not spend Money at Domain-Suckers/Re-Sellers, I sue the Shit out of them if they infringe my Brand.
-
E em0nm4stodon@infosec.exchange shared this topic
-
You need:
KeepassXC/com
KeepassXC/org
KeepassXC/net
maybe KeepassXC/pw as a "Joke Domain" and the same with "-". Since .com is currently taken it is one less.I calculate now with 6 Domains, where we end up at around 70$ a year, if we add uncommon extensions or Country specific (in this Case I choose: .info, .biz and .eu) we are still at around 92$ a year. These are not even 1,2K$ a year. Idk what "weird" or uncommon Domains you own. But a basic Brand Shield with these should be enough. And sorry, I do not spend Money at Domain-Suckers/Re-Sellers, I sue the Shit out of them if they infringe my Brand.
@gremlin com is taken, see above. We own net, org, eu, de, us, and some others. Most of these TLDs are $10 the first year and then $15-30 for every following year unless you choose a different registrar for each. app and dev are among the most expensive ones. And then you still have to multiply all those by the number of typosquats you want to catch, which are easily 6-10 for each one.
-
@gremlin com is taken, see above. We own net, org, eu, de, us, and some others. Most of these TLDs are $10 the first year and then $15-30 for every following year unless you choose a different registrar for each. app and dev are among the most expensive ones. And then you still have to multiply all those by the number of typosquats you want to catch, which are easily 6-10 for each one.
@keepassxc It's not like I do not get your Point. Don't get me wrong. But "-" are not special and should always be considered before getting other specific Domains like .eu, .us or .de. But yeah, I can not change it. Maybe in the near future you own these days to make it more safe for your users.
-
@keepassxc as said, at least common Domains with "-" are with .com, .net and .org like 30$ a year.
@gremlin @keepassxc Feel free to purchase and maintain them as a donation to the #KeePassXC project then.
-
@gremlin @keepassxc Feel free to purchase and maintain them as a donation to the #KeePassXC project then.
@wolfram_roesler @keepassxc You can't make up Boomer names like that, Wolfram; I donate enough to the FOSS community with my server performance, so don't worry about that.
But I'd love to return the favor. The KeepassXC team would be happy if you did, especially if you use their software.
-
@keepassxc It's not like I do not get your Point. Don't get me wrong. But "-" are not special and should always be considered before getting other specific Domains like .eu, .us or .de. But yeah, I can not change it. Maybe in the near future you own these days to make it more safe for your users.
@gremlin The reason we started registering all those other TLDs is exactly because someone took .com and then used it to distribute fake downloads. We got the domain blocklisted quickly, so they put it up for sale. It's off the blocklist again now, but we haven't been able to acquire it and I don't think they'll ever let go of it unless we pay their scalper price.
-
You need:
KeepassXC/com
KeepassXC/org
KeepassXC/net
maybe KeepassXC/pw as a "Joke Domain" and the same with "-". Since .com is currently taken it is one less.I calculate now with 6 Domains, where we end up at around 70$ a year, if we add uncommon extensions or Country specific (in this Case I choose: .info, .biz and .eu) we are still at around 92$ a year. These are not even 1,2K$ a year. Idk what "weird" or uncommon Domains you own. But a basic Brand Shield with these should be enough. And sorry, I do not spend Money at Domain-Suckers/Re-Sellers, I sue the Shit out of them if they infringe my Brand.
@gremlin @keepassxc You completely missed the point, there. Scroll back a few posts. Please.
-
@gremlin The reason we started registering all those other TLDs is exactly because someone took .com and then used it to distribute fake downloads. We got the domain blocklisted quickly, so they put it up for sale. It's off the blocklist again now, but we haven't been able to acquire it and I don't think they'll ever let go of it unless we pay their scalper price.
@keepassxc I mean idk from where you are but in the most cases it is enough to send a "friendly" letter from a lawyer to the Register and it is done. Nobody pays 50K for a Domain and these Scums of Re-Sellers know this. As said, maybe get a legal consultation of the Situation, I am not a lawyer I can only represent my Experience with these scummy Companies in the Past.
-
@keepassxc I mean idk from where you are but in the most cases it is enough to send a "friendly" letter from a lawyer to the Register and it is done. Nobody pays 50K for a Domain and these Scums of Re-Sellers know this. As said, maybe get a legal consultation of the Situation, I am not a lawyer I can only represent my Experience with these scummy Companies in the Past.
@gremlin Of course they want to auction it off. The 50k is just the "buy now, stupid" price. But we're not a registered legal trademark (yet). Otherwise we'd have done that a long time ago.
-
@gremlin Of course they want to auction it off. The 50k is just the "buy now, stupid" price. But we're not a registered legal trademark (yet). Otherwise we'd have done that a long time ago.
@keepassxc Welp okay, this is also a big point. But yeah GoDaddy is a Pain in the Ass. I really hope you get this shit under Control. (If no one else does it within the next week or so we can talk about me presenting the keepass-xc/net/org Domain for you guys as a little "gift". But rn I am on a business trip and really have no time to register/organize this)
-
@keepassxc Welp okay, this is also a big point. But yeah GoDaddy is a Pain in the Ass. I really hope you get this shit under Control. (If no one else does it within the next week or so we can talk about me presenting the keepass-xc/net/org Domain for you guys as a little "gift". But rn I am on a business trip and really have no time to register/organize this)
@gremlin I would expect the domain to be put on the safe browsing list for a while and then they'll either drop it or park it. We don't need someone to gift us those domains (unless of course someone has the contacts or measures to transfer keepassxc[.]com to us). We can always buy a few more ourselves, but there will always be more.
-
@gremlin I would expect the domain to be put on the safe browsing list for a while and then they'll either drop it or park it. We don't need someone to gift us those domains (unless of course someone has the contacts or measures to transfer keepassxc[.]com to us). We can always buy a few more ourselves, but there will always be more.
@keepassxc as said, just an Offer. I once won against GDaddy with a lawyer, but this as said needs legal consulting. I guess you already contacted GDaddy about the Situation? I mean they will def. not Gift it to you but maybe they are a bit more calm when it comes to Non-Commercial Orgas
-
@eroc1990 We own several already, but it's a losing game and a pretty expensive one at that.
@keepassxc @eroc1990
Yeah, that sounds like Whac-a-mole.Anything else that can be done about it?
I just reported it to DuckDuckgo, it is the third result for "keepass xc" there currently -.-
-
@keepassxc as said, just an Offer. I once won against GDaddy with a lawyer, but this as said needs legal consulting. I guess you already contacted GDaddy about the Situation? I mean they will def. not Gift it to you but maybe they are a bit more calm when it comes to Non-Commercial Orgas
@gremlin Maybe I'll try again some time. I guess in the meantime I'll spend another €320 on 36 months of more typoquat domains. Fun fact: I checked whether IONOS had a better offer than Godaddy. They did for the domains themselves. But in addition they wanted a fixed one-time fee of just over €1800 for "premium domains". Ridiculous.
-
@gremlin Maybe I'll try again some time. I guess in the meantime I'll spend another €320 on 36 months of more typoquat domains. Fun fact: I checked whether IONOS had a better offer than Godaddy. They did for the domains themselves. But in addition they wanted a fixed one-time fee of just over €1800 for "premium domains". Ridiculous.
@keepassxc IONOS, GoDaddy etc are completly CRAP. I mainly use: Porkbun (always #1 for me), Spaceship & Namecheap. As said, never pay for Premium BS. Either go full Bonkers and Sue or ask/do nothing.
-
@keepassxc IONOS, GoDaddy etc are completly CRAP. I mainly use: Porkbun (always #1 for me), Spaceship & Namecheap. As said, never pay for Premium BS. Either go full Bonkers and Sue or ask/do nothing.
@gremlin Namecheap was another option. Maybe I'll transfer some there. But in the long run, it's not much cheaper either.
-
@gremlin Namecheap was another option. Maybe I'll transfer some there. But in the long run, it's not much cheaper either.
@keepassxc as said, for me Porkbun is No1. Great Support, more then fair Pricing and literally everything you need (a.E. Domain-Privacy) included.
-
Warning: New FAKE website offering FAKE KeePassXC downloads! Do not fall for it. The correct domain is https://keepassxc.org without hypens!@keepassxc Jeeze people. Team KeePassXC is trying the best they can. It's absurd to think that a FREE project can just go out and buy $100,000 worth of typo domains. Do a little research into what you're clicking. I for one applaud the effort KeePassXC is making to try and calm it down, but give them a little slack.
-
@gremlin As I said, we already own quite a few different domains. We're a small open source project. We get a healthy amount of donations, but we cannot spend $2000 a year on domains, just so someone can register yet another one we haven't registered yet.
@keepassxc Don't worry about that: I'm sure most people would agree with you that doing something like that is overkill for any FOSS project. If you were a per-profit company, sure, but it just makes no sense requiring that from you. Their expectations make absolutely zero sense for me. Donation money should be spent on better things than extra domains.
-
@keepassxc @eroc1990
Yeah, that sounds like Whac-a-mole.Anything else that can be done about it?
I just reported it to DuckDuckgo, it is the third result for "keepass xc" there currently -.-
@dreua
Enter lots of fake emails to them? Possibly to domain that tarpits every access or something else that slows down them..
@keepassxc @eroc1990
