{"id":913,"date":"2010-08-08T18:31:36","date_gmt":"2010-08-08T22:31:36","guid":{"rendered":"http:\/\/acro.net\/blog\/?p=913"},"modified":"2010-08-08T18:48:35","modified_gmt":"2010-08-08T22:48:35","slug":"how-i-saved-godaddy-in-2001","status":"publish","type":"post","link":"https:\/\/acro.net\/blog\/how-i-saved-godaddy-in-2001\/","title":{"rendered":"How I saved GoDaddy in 2001"},"content":{"rendered":"

GoDaddy<\/strong><\/a> is the biggest domain registrar today, with 40 million domain names under their control.<\/p>\n

Bob Parsons started small but by 2001 they were already growing by leaps and bounds, having thousands of customers.<\/p>\n

Having registered my first domains with GoDaddy in December of 2000, it didn’t take me long to realize that there was something fishy with the user account and password system.<\/p>\n

Back then I didn’t have a need to keep all of my domains under the same GoDaddy account, so every so often I’d create a new account which would correspond to a new, incremented customer number. If the browser cookies were deleted, the registration process would provide that new account with a matching numerical password.<\/p>\n

So if you were user 123456<\/strong> the password for that domain registration would also be 123456<\/strong>.<\/p>\n

It got even scarier: having deleted all cookies, you could enter one such account number during the registration process and all you had to do was enter the matching number as the password; the contact and billing info of the account holder would be automatically populated.<\/p>\n

Back then there was no direct support, one had to post their issue at SupportWebsite.com – so I had to catch GoDaddy’s attention, which I did by making a post with the title “SEVERE security issue discovered!<\/em>” – GoDaddy emailed me asking for the details.<\/p>\n

Barb Rechterman, VP of Development for GoDaddy Software contacted me, thanking me for letting them know of the details. Within days, the security hole was patched and the password allocation system was changed.\u00a0 Nowadays, Barb is the Senior Executive Vice President & Chief Marketing Officer for GoDaddy and I’m glad she did not ignore my emails back then.<\/p>\n

When creating an account system, it’s not smart to generate sequential account numbers<\/strong>; but defaulting the password to the same number is simply dumb<\/strong>. The majority of account holders don’t view this as a risk but rather, as a “convenience” and would not bother to change the password, as it was the case with GoDaddy in January of 2001.<\/p>\n

Just another story from the vault that might or might not be of interest today – you be the judge. \ud83d\ude00<\/p>\n","protected":false},"excerpt":{"rendered":"

GoDaddy is the biggest domain registrar today, with 40 million domain names under their control. Bob Parsons started small but by 2001 they were already growing by leaps and bounds, having thousands of customers. Having registered my first domains with GoDaddy in December of 2000, it didn’t take me long to realize that there was […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[26,3],"tags":[23],"class_list":["post-913","post","type-post","status-publish","format-standard","hentry","category-business","category-domains","tag-godaddy","entry"],"yoast_head":"\nHow I saved GoDaddy in 2001 - Acro.net - A Domain Investing Blog by Theo Develegas<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/acro.net\/blog\/how-i-saved-godaddy-in-2001\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"How I saved GoDaddy in 2001 - Acro.net - A Domain Investing Blog by Theo Develegas\" \/>\n<meta property=\"og:description\" content=\"GoDaddy is the biggest domain registrar today, with 40 million domain names under their control. Bob Parsons started small but by 2001 they were already growing by leaps and bounds, having thousands of customers. Having registered my first domains with GoDaddy in December of 2000, it didn’t take me long to realize that there was […]\" \/>\n<meta property=\"og:url\" content=\"https:\/\/acro.net\/blog\/how-i-saved-godaddy-in-2001\/\" \/>\n<meta property=\"og:site_name\" content=\"Acro.net - A Domain Investing Blog by Theo Develegas\" \/>\n<meta property=\"article:published_time\" content=\"2010-08-08T22:31:36+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2010-08-08T22:48:35+00:00\" \/>\n<meta name=\"author\" content=\"Theo Develegas\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Theo Develegas\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"2 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/acro.net\\\/blog\\\/how-i-saved-godaddy-in-2001\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/acro.net\\\/blog\\\/how-i-saved-godaddy-in-2001\\\/\"},\"author\":{\"name\":\"Theo Develegas\",\"@id\":\"https:\\\/\\\/acro.net\\\/blog\\\/#\\\/schema\\\/person\\\/9c9625f061a0e603a87f5bf0f6f781fe\"},\"headline\":\"How I saved GoDaddy in 2001\",\"datePublished\":\"2010-08-08T22:31:36+00:00\",\"dateModified\":\"2010-08-08T22:48:35+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/acro.net\\\/blog\\\/how-i-saved-godaddy-in-2001\\\/\"},\"wordCount\":371,\"commentCount\":12,\"keywords\":[\"GoDaddy\"],\"articleSection\":[\"Business\",\"Domains\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\\\/\\\/acro.net\\\/blog\\\/how-i-saved-godaddy-in-2001\\\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/acro.net\\\/blog\\\/how-i-saved-godaddy-in-2001\\\/\",\"url\":\"https:\\\/\\\/acro.net\\\/blog\\\/how-i-saved-godaddy-in-2001\\\/\",\"name\":\"How I saved GoDaddy in 2001 - Acro.net - A Domain Investing Blog by Theo Develegas\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/acro.net\\\/blog\\\/#website\"},\"datePublished\":\"2010-08-08T22:31:36+00:00\",\"dateModified\":\"2010-08-08T22:48:35+00:00\",\"author\":{\"@id\":\"https:\\\/\\\/acro.net\\\/blog\\\/#\\\/schema\\\/person\\\/9c9625f061a0e603a87f5bf0f6f781fe\"},\"breadcrumb\":{\"@id\":\"https:\\\/\\\/acro.net\\\/blog\\\/how-i-saved-godaddy-in-2001\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/acro.net\\\/blog\\\/how-i-saved-godaddy-in-2001\\\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/acro.net\\\/blog\\\/how-i-saved-godaddy-in-2001\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/acro.net\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"How I saved GoDaddy in 2001\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/acro.net\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/acro.net\\\/blog\\\/\",\"name\":\"Acro.net - A Domain Investing Blog by Theo Develegas\",\"description\":\"\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/acro.net\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/acro.net\\\/blog\\\/#\\\/schema\\\/person\\\/9c9625f061a0e603a87f5bf0f6f781fe\",\"name\":\"Theo Develegas\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/6794630c371bee89f2b833c1f4b777d9ba75767b217c8fce2cfd6e6d7d90960d?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/6794630c371bee89f2b833c1f4b777d9ba75767b217c8fce2cfd6e6d7d90960d?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/6794630c371bee89f2b833c1f4b777d9ba75767b217c8fce2cfd6e6d7d90960d?s=96&d=mm&r=g\",\"caption\":\"Theo Develegas\"},\"description\":\"Theo Develegas - News and opinions on domain name investing, brand development, design, and the occasional rant or two about life's challenges. Founder of Acroplex LLC.\",\"sameAs\":[\"https:\\\/\\\/acro.net\",\"https:\\\/\\\/x.com\\\/acroplex\"],\"url\":\"https:\\\/\\\/acro.net\\\/blog\\\/author\\\/admin\\\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"How I saved GoDaddy in 2001 - Acro.net - A Domain Investing Blog by Theo Develegas","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/acro.net\/blog\/how-i-saved-godaddy-in-2001\/","og_locale":"en_US","og_type":"article","og_title":"How I saved GoDaddy in 2001 - Acro.net - A Domain Investing Blog by Theo Develegas","og_description":"GoDaddy is the biggest domain registrar today, with 40 million domain names under their control. Bob Parsons started small but by 2001 they were already growing by leaps and bounds, having thousands of customers. Having registered my first domains with GoDaddy in December of 2000, it didn’t take me long to realize that there was […]","og_url":"https:\/\/acro.net\/blog\/how-i-saved-godaddy-in-2001\/","og_site_name":"Acro.net - A Domain Investing Blog by Theo Develegas","article_published_time":"2010-08-08T22:31:36+00:00","article_modified_time":"2010-08-08T22:48:35+00:00","author":"Theo Develegas","twitter_misc":{"Written by":"Theo Develegas","Est. reading time":"2 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/acro.net\/blog\/how-i-saved-godaddy-in-2001\/#article","isPartOf":{"@id":"https:\/\/acro.net\/blog\/how-i-saved-godaddy-in-2001\/"},"author":{"name":"Theo Develegas","@id":"https:\/\/acro.net\/blog\/#\/schema\/person\/9c9625f061a0e603a87f5bf0f6f781fe"},"headline":"How I saved GoDaddy in 2001","datePublished":"2010-08-08T22:31:36+00:00","dateModified":"2010-08-08T22:48:35+00:00","mainEntityOfPage":{"@id":"https:\/\/acro.net\/blog\/how-i-saved-godaddy-in-2001\/"},"wordCount":371,"commentCount":12,"keywords":["GoDaddy"],"articleSection":["Business","Domains"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/acro.net\/blog\/how-i-saved-godaddy-in-2001\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/acro.net\/blog\/how-i-saved-godaddy-in-2001\/","url":"https:\/\/acro.net\/blog\/how-i-saved-godaddy-in-2001\/","name":"How I saved GoDaddy in 2001 - Acro.net - A Domain Investing Blog by Theo Develegas","isPartOf":{"@id":"https:\/\/acro.net\/blog\/#website"},"datePublished":"2010-08-08T22:31:36+00:00","dateModified":"2010-08-08T22:48:35+00:00","author":{"@id":"https:\/\/acro.net\/blog\/#\/schema\/person\/9c9625f061a0e603a87f5bf0f6f781fe"},"breadcrumb":{"@id":"https:\/\/acro.net\/blog\/how-i-saved-godaddy-in-2001\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/acro.net\/blog\/how-i-saved-godaddy-in-2001\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/acro.net\/blog\/how-i-saved-godaddy-in-2001\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/acro.net\/blog\/"},{"@type":"ListItem","position":2,"name":"How I saved GoDaddy in 2001"}]},{"@type":"WebSite","@id":"https:\/\/acro.net\/blog\/#website","url":"https:\/\/acro.net\/blog\/","name":"Acro.net - A Domain Investing Blog by Theo Develegas","description":"","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/acro.net\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/acro.net\/blog\/#\/schema\/person\/9c9625f061a0e603a87f5bf0f6f781fe","name":"Theo Develegas","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/6794630c371bee89f2b833c1f4b777d9ba75767b217c8fce2cfd6e6d7d90960d?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/6794630c371bee89f2b833c1f4b777d9ba75767b217c8fce2cfd6e6d7d90960d?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/6794630c371bee89f2b833c1f4b777d9ba75767b217c8fce2cfd6e6d7d90960d?s=96&d=mm&r=g","caption":"Theo Develegas"},"description":"Theo Develegas - News and opinions on domain name investing, brand development, design, and the occasional rant or two about life's challenges. Founder of Acroplex LLC.","sameAs":["https:\/\/acro.net","https:\/\/x.com\/acroplex"],"url":"https:\/\/acro.net\/blog\/author\/admin\/"}]}},"_links":{"self":[{"href":"https:\/\/acro.net\/blog\/wp-json\/wp\/v2\/posts\/913","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/acro.net\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/acro.net\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/acro.net\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/acro.net\/blog\/wp-json\/wp\/v2\/comments?post=913"}],"version-history":[{"count":0,"href":"https:\/\/acro.net\/blog\/wp-json\/wp\/v2\/posts\/913\/revisions"}],"wp:attachment":[{"href":"https:\/\/acro.net\/blog\/wp-json\/wp\/v2\/media?parent=913"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/acro.net\/blog\/wp-json\/wp\/v2\/categories?post=913"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/acro.net\/blog\/wp-json\/wp\/v2\/tags?post=913"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}