¿El comando WHOIS no devuelve información útil?
-
14-11-2019 - |
Pregunta
Hoy en día, cada vez que se utiliza el comando WHOIS no se devuelve ninguna información útil.Generalmente tengo que acudir a Godaddy, Dnsstuff u otros servicios para obtener los datos.Entiendo que el motivo se debe principalmente al spam.
Me preguntaba cómo otros servicios obtienen estos datos.¿Utilizan diferentes tipos de comando WHOIS?
Solución
desnudo whois
dejó de devolver registros completos cuando Network Solutions ya no era el único lugar para registrar dominios.Ahora funciona más como DNS, donde algo te proporciona un lugar para buscar información autorizada y tienes que buscar allí si la deseas.
Esto es:
% whois stackoverflow.com
[Querying whois.verisign-grs.com]
[whois.verisign-grs.com]
...
Domain Name: STACKOVERFLOW.COM
Registrar: GODADDY.COM, INC.
Whois Server: whois.godaddy.com
...
% whois stackoverflow.com@whois.godaddy.com
[Querying whois.godaddy.com]
[whois.godaddy.com]
...
Registrant:
Stack Overflow Internet Services, Inc.
1010 Disk Drive
...etc...
Los otros servicios se dedican al registro de dominios y obtienen su información de quienes registran el dominio.
Otros consejos
Aquí está La respuesta que publiqué en serverfault .
La respuesta corta a su pregunta, suponiendo que está utilizando la biblioteca de Debian / Ubuntu Whois, es usar
$ whois -h whois.crsnic.net "domain google.com"
Aquí está la respuesta larga.
El .com TLD es un delgado whois . Cuando consigue una consulta WHOIS, la herramienta Whois primero envía una consulta WHOIS a VeriSign (nombre de host whois.crsnic.net) y extrae la referencia de la respuesta.
De forma predeterminada, cuando consulta VeriSign desde el ejemplo de Domain Ejemply, WHOIS realiza una búsqueda muy amplia de la cadena "Ejemplos" en varios objetos diferentes, incluido el nombre de dominio, el nombre del registrador y los servidores de nombres.
Puede refinar la consulta especificando una palabra clave, como se describe en la documentación de VeriSign. http://registrar.verisign-grs.com/whois/iframe/help.html?ppath=www.verisigninc.com/products-and-services/domain-name-services/whois&
El comando de arriba hace exactamente lo que explico. En lugar de google.com, se envía a VeriSign la consulta completa "Dominio Google.com". Tienes que pasar explícitamente la bandera, porque WHOIS intenta adivinar el nombre de host para consultar desde la consulta, pero fallará porque no reconocerá la consulta "dominio google.com" como un dominio válido.
Aquí está el resultado del comando.
$ whois -h whois.crsnic.net "domain google.com"
Whois Server Version 2.0
Domain names in the .com and .net domains can now be registered
with many different competing registrars. Go to http://www.internic.net
for detailed information.
Domain Name: GOOGLE.COM
Registrar: MARKMONITOR INC.
Whois Server: whois.markmonitor.com
Referral URL: http://www.markmonitor.com
Name Server: NS1.GOOGLE.COM
Name Server: NS2.GOOGLE.COM
Name Server: NS3.GOOGLE.COM
Name Server: NS4.GOOGLE.COM
Status: clientDeleteProhibited
Status: clientTransferProhibited
Status: clientUpdateProhibited
Status: serverDeleteProhibited
Status: serverTransferProhibited
Status: serverUpdateProhibited
Updated Date: 15-sep-2010
Creation Date: 15-sep-1997
Expiration Date: 14-sep-2011
>>> Last update of whois database: Wed, 30 Mar 2011 08:50:16 UTC <<<
NOTICE: The expiration date displayed in this record is the date the
registrar's sponsorship of the domain name registration in the registry is
currently set to expire. This date does not necessarily reflect the expiration
date of the domain name registrant's agreement with the sponsoring
registrar. Users may consult the sponsoring registrar's Whois database to
view the registrar's reported date of expiration for this registration.
TERMS OF USE: You are not authorized to access or query our Whois
database through the use of electronic processes that are high-volume and
automated except as reasonably necessary to register domain names or
modify existing registrations; the Data in VeriSign Global Registry
Services' ("VeriSign") Whois database is provided by VeriSign for
information purposes only, and to assist persons in obtaining information
about or related to a domain name registration record. VeriSign does not
guarantee its accuracy. By submitting a Whois query, you agree to abide
by the following terms of use: You agree that you may use this Data only
for lawful purposes and that under no circumstances will you use this Data
to: (1) allow, enable, or otherwise support the transmission of mass
unsolicited, commercial advertising or solicitations via e-mail, telephone,
or facsimile; or (2) enable high volume, automated, electronic processes
that apply to VeriSign (or its computer systems). The compilation,
repackaging, dissemination or other use of this Data is expressly
prohibited without the prior written consent of VeriSign. You agree not to
use electronic processes that are automated and high-volume to access or
query the Whois database except as reasonably necessary to register
domain names or modify existing registrations. VeriSign reserves the right
to restrict your access to the Whois database in its sole discretion to ensure
operational stability. VeriSign may restrict or terminate your access to the
Whois database for failure to abide by these terms of use. VeriSign
reserves the right to modify these terms at any time.
The Registry database contains ONLY .COM, .NET, .EDU domains and
Registrars.
Aunque la nueva política de WHEIS "gruesa" ahora requiere que todos los registros de nuevos gTLD operen un registro grueso, actualmente algunos registros existentes (como .com y .net) aún no han pasado a la "gruesa" whois y aún operan un delgadoregistro.- https://wois.icann.org/en/primer
Para .com y .NET, use los resultados delgados de Registry de un comando simple de WHOIS para encontrar el servidor Whois de registrador .
por ejemplo,
# whois google.com
Domain Name: GOOGLE.COM
Registry Domain ID: 2138514_DOMAIN_COM-VRSN
Registrar WHOIS Server: whois.markmonitor.com
Registrar URL: http://www.markmonitor.com
Updated Date: 2011-07-20T16:55:31Z
Creation Date: 1997-09-15T04:00:00Z
Registry Expiry Date: 2020-09-14T04:00:00Z
Registrar: MarkMonitor Inc.
Registrar IANA ID: 292
Registrar Abuse Contact Email: abusecomplaints@markmonitor.com
Registrar Abuse Contact Phone: +1.2083895740
Domain Status: clientDeleteProhibited https://icann.org/epp#clientDeleteProhibited
Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited
Domain Status: clientUpdateProhibited https://icann.org/epp#clientUpdateProhibited
Domain Status: serverDeleteProhibited https://icann.org/epp#serverDeleteProhibited
Domain Status: serverTransferProhibited https://icann.org/epp#serverTransferProhibited
Domain Status: serverUpdateProhibited https://icann.org/epp#serverUpdateProhibited
Name Server: NS1.GOOGLE.COM
Name Server: NS2.GOOGLE.COM
Name Server: NS3.GOOGLE.COM
Name Server: NS4.GOOGLE.COM
DNSSEC: unsigned
URL of the ICANN Whois Inaccuracy Complaint Form: https://www.icann.org/wicf/
>>> Last update of whois database: 2017-09-12T18:51:08Z <<<
For more information on Whois status codes, please visit https://icann.org/epp
...
luego consulta el registrador para resultados gruesos.
por ejemplo,
# whois google.com -h whois.markmonitor.com
Domain Name: google.com
Registry Domain ID: 2138514_DOMAIN_COM-VRSN
Registrar WHOIS Server: whois.markmonitor.com
Registrar URL: http://www.markmonitor.com
Updated Date: 2017-09-07T08:50:36-0700
Creation Date: 1997-09-15T00:00:00-0700
Registrar Registration Expiration Date: 2020-09-13T21:00:00-0700
Registrar: MarkMonitor, Inc.
Registrar IANA ID: 292
Registrar Abuse Contact Email: abusecomplaints@markmonitor.com
Registrar Abuse Contact Phone: +1.2083895740
Domain Status: clientUpdateProhibited (https://www.icann.org/epp#clientUpdateProhibited)
Domain Status: clientTransferProhibited (https://www.icann.org/epp#clientTransferProhibited)
Domain Status: clientDeleteProhibited (https://www.icann.org/epp#clientDeleteProhibited)
Domain Status: serverUpdateProhibited (https://www.icann.org/epp#serverUpdateProhibited)
Domain Status: serverTransferProhibited (https://www.icann.org/epp#serverTransferProhibited)
Domain Status: serverDeleteProhibited (https://www.icann.org/epp#serverDeleteProhibited)
Registry Registrant ID:
Registrant Name: DNS Admin
Registrant Organization: Google Inc.
Registrant Street: 1600 Amphitheatre Parkway,
Registrant City: Mountain View
Registrant State/Province: CA
...
Me parece (aunque no tengo ganas de determinar el historial de comandos de Whois ahora) que en algún momento se modificó el comando whois para no consultar automáticamente el grueso registrador de los resultados delgados iniciales REGISTRO Información.