Skip to main content

Head-scratcher: DNS zone transfers now illegal in North Dakota?

"Ever been prosecuted for tracking spam? Running a traceroute? Doing a zone transfer? Asking a public internet server for public information that it is configured to provide upon demand?

No? Well, David Ritz has. And amazingly, he lost the case.

Here are just a few of the gems that the court has the audacity to call ”conclusions of law (opens in new tab).” Read them while you go donate to David’s legal defense fund (opens in new tab). He got screwed here, folks, and needs your help.

“Ritz’s behavior in conducting a zone transfer was unauthorized within the meaning of the North Dakota Computer Crime Law.” You might not know what a zone transfer (opens in new tab) is, but I do.

It’s asking a DNS server for all the particular public info it provides about a given domain. This is a common task performed by system administrators for many purposes.

The judge is saying that DNS zone transfers are now illegal in North Dakota."

Alex is a technology CEO, with leadership, operating partner, investor, and board member roles at security firms including AutoLoop, Borland, Quarterdeck (now Symantec and Cisco WebEx), GFI/TeamViewer, Sunbelt Software (now ThreatTrack Security), BlueStripe Software, StopBadware, Knowbe4, Malwarebytes, and Runaware Holding AB. When CEO of Sunbelt he ran a security blog, and he still writes on security.