Posted 29 December 2023

Do hosting provider require verification for domain purchased elsewhere?

I've got a domain name with one registrar and a hosting plan with a different provider.
I've used this hosting provider for just over 1 year without a problem, I did have another hosting for more than 8 years for the same domain name, but switched last year to this new one.
Last week I've been asked by the hosting provider to provide proof of ID and business proof!
I thought this is only needed by the domain registrar if you need certain type of SSL, or am I mistaken?
Verifying domain name can be done through TXT in the DNS record, is this correct?
Thx

New Comment

17 Comments

sorted by

30th Dec 2023
- you don't mention which TLD (top level domain) your domain is under? .com, .uk, or something else?

I know for .uk domains nominet can be quite demanding about having correct contact details - theukdomain.uk/hel…ed/
Author
30th Dec 2023
.com
30th Dec 2023
Screw them and move. It's unnecessary data collection.
30th Dec 2023
Not aware of any technical functionality that requires link (sic) between domain owner ID and hosting account-holder ID.

Generic observations:
• a professional organisation will state any routine requirement for customer ID within its t&c/policies during signup and same will be available to view at any time on its website or via request.
• any specific request for personal ID will(should) be accompanied by the reason for requesting the ID, typically by referring to any previously agreed ID disclosure circumstances (such as during signup).
• any UK-based organisation requesting personal ID should have valid Data Protection Registration with ICO. Failure to do so exposes the organisation to a £4,000 fine.

Typical non-routine demands for customer ID may be related to service payment irregularities and/or as a result of abuse complaints, examples being questionable hosted content or suggestions of corporate-ID hijack.

Also consider the credibility of the wording of any personal ID request. Example:
any request specifically demanding
your passport for ID verification
is not credible as the legitimacy of a passport can only be "verified" by certain Gov organisations, not by some random commercial company.
Such specific passport requests are beneficial to nefarious customers who can present a credible-appearing PP with photo of a person resembling Mickey Mouse but the demanding organisation is unable to "verify" it is not MM.

Final takeaway:
is the request genuinely from your host?
Author
30th Dec 2023
Thank you.
Yes it was, the reason given was trademark infringement (abuse), which I wasn't aware of, so they suspended my website.
29th Dec 2023
It's not something I've heard of before and I used to work for a hosting provider. Who's the host in question here?
Author
29th Dec 2023
Hostinger.
29th Dec 2023
That's not how the internet works...
Author
29th Dec 2023
Could you elaborate?
Thx
30th Dec 2023
That's what you get for using crappy shared hosting setup your own box I recommend Aws
3rd Jan
The internet was built on the premise of retaining one's anonymity, hence the domain registrar requesting your ID is over-stepping its remit for dot com domains (dot co dot uk domains are different – all domain registrars, on behalf of Nominet [who manages and operates dot co dot uk domains], demand address verification to ensure all their domains are purchased by UK addressees).

I highly suggest you transfer your domain to NameCheap.com. Despite their business name sounding corny / dodgy, I can assure you that they have been good for me (owning a couple of domains) and they've been in business for 20 or so years. Their prices are favourable too.
Author
3rd Jan
Thanks for the advice.
My problem is with the hosting provider (not the domain registrar).
It seems like they suspended my website on the basis that I've infringed on someone's trademark name.