On 20 Nov 2024, Nick Howitt uttered the following: > > > On 20/11/2024 12:55, Nix wrote: >> On 19 Nov 2024, Greg Troxel told this: >> >>> Matija Nalis <mnalis-sa-l...@voyager.hr> writes: >>> >>>> From >>>> https://knowledge.validity.com/s/articles/Accessing-Validity-reputation-data-through-DNS >>>> : >>>> >>>>> Starting March 1, 2024, Validity will allow up to 10,000 requests to >>>>> anonymous users over a 30-day period. >>>> >>>> 10k requests per 30-day period is about 333 queries/day. Or less than 14 >>>> queries per hour. >>>> Not very much at all (and certainly at least order of magnitude less than >>>> your stated traffic). >>>> No amount of local DNS caching is going to fix limits *that low*. >>> >>> That is remarkably low. >> ... the account is free and then they hit you with an EULA that says >> >>> The Services are available at the then-current rate. Customer shall >>> pay all applicable fees when due as invoiced and, if fees are being >>> paid via credit card or other electronic means, Customer authorizes >>> Validity to charge fees using Customer’s selected payment method. >> By my reading that means they can just decide to start charging you and >> you have no recourse?! Though the account is explicitly stated in huge >> letters to be "free", so one hopes that would count as the "then-current >> rate". The near-contradiction is unfortunate though, and there's no >> indication about them having to tell you when they change their fees. >> (Not that they could get any money from me without asking anyway.) >> The account requires a 'company name', so I guess if you're an >> individual you're... fucked? > > Sorry but this is conspiracy theory rubbish. You can open an account > easily and use your name as a business. You can possibly easily put in > "none" or "n/a" and the account is yours. No billing details or > address details at all so how can they suddenly start billing?
They can't, but they might think they can start hitting you with bill demands out of the blue. Having just gone through exactly that with my electricity provider (where due to terrible record-keeping it suddenly decided I was an unrelated business and owed them tens of thousands of someone else's bill: it took months to sort out and I had to threaten them with legal action and the press), I am a *little* paranoid about that sort of thing right now. In the UK at least a large number of consumer protection laws cease to apply if you're a business (not that I am). > Just accept that if you want to start using their information for > free, you will have to give a name and email address. You will also > need to declare an IP address or CIDR, presumably for their whitelist. Yeah. *That* I have no objection to. It's the requirement to agree to a cut-and-paste EULA and the assumption that any users must be corporate that is... concerning. -- NULL && (void)
