If you purchase an existing domain name that was already used by someone else what are the ways in which the domain could have been broken by the previous owner? Are such problems common and are there tools to detect them before purchasing a domain?

Two examples: An HTTP server serving the domain could have returned permanent redirect making a domain unusable for visitors that received the redirect until they clear browsers caches.

Similarly, a server could have returned HTTP "Strict-Transport-Security" header making a domain unusable over HTTP for visitors that received the header.

Any other examples?

Adi's user avatar

Adi

44.3k16 gold badges141 silver badges170 bronze badges

asked Dec 7, 2012 at 10:47

Jan Wrobel's user avatar

1

Some common risks to check:

Domain has Bad reputation - check for any existing negative online reviews for the domain.

Domain is Blocked in search results - Risk of search engine turning off the domain in its search results due to the previous content, malware etc.

Domain is Black listed - Domain on black lists such as Web of Trust and spam lists.

Sometimes the Way Back Machine can show you the domain history.

EDIT:

IP / Trademark infringement - the domain you purchased may infringe registered trademarks: consult your legal advisor before purchasing

answered Dec 7, 2012 at 11:22

LLub's user avatar

1

In addition to the ones mentioned already, the previous owner may have a SSL certificate that may still be valid. That would be a major issue especially for sites dealing with commerce.

answered Dec 11, 2012 at 22:52

Tech163's user avatar

1

I've figured out one more nasty trick: A long-term cached documents returned by the previous domain owner could be potentially used to steal cookies set by the new owner.

Say, GET http://webstore.com/ returns an HTML document with cache expiration long in a future, and following content:

  1. JavaScript that reads all cookies and sends them to evil.com
  2. iframe that loads http://webstore.com/index.html, so the page looks exactly like a normal index.html.

Now, when someone purchases webstore.com, all cookies set by the new owner can be intercepted by the previous owner (of course only for visitors that visited webstore.com when it belonged to the previous owner).

answered Dec 8, 2012 at 11:02

Jan Wrobel's user avatar

2

You must log in to answer this question.

Start asking to get answers

Find the answer to your question by asking.

Ask question

Explore related questions

See similar questions with these tags.