Ensure that your Amazon Route 53 domains have Privacy Protection feature enabled in order to hide all their contact information from WHOIS queries and reduce the amount of spam received. The feature allows you to conceal your personal phone number, email, and physical address for the domain names registered and/or transferred to Amazon Route 53 service.
This rule resolution is part of the Conformity Security & Compliance tool for AWS.
When Route 53 Privacy Protection is disabled, anyone is able to look up your personal information with a simple WHOIS query. Enabling the Privacy Protection feature would protect against receiving spam and from anyone that might send WHOIS queries to get the contact information that you provided when you registered the domain, including name, physical address, phone number, and email address.
Note: Some Top-Level Domain (TLD) registries conceal all your contact information automatically, some allow you to choose to hide all contact information, some allow you to hide only some information, and some do not allow you to hide any information at all. Your first and last name will be hidden if the TLD registry and registrar allows it.
Audit
To determine if your Amazon Route 53 domains have privacy protection for contact information enabled, perform the following operations:
Remediation / Resolution
To enable the Privacy Protection feature for your Amazon Route 53 domain names in order to hide all contact information from WHOIS queries and reduce spam, perform the following operations:
References
- AWS Documentation
- Amazon Route 53 FAQs
- Enabling or Disabling Privacy Protection for Contact Information for a Domain
- AWS Command Line Interface (CLI) Documentation
- route53domains
- list-domains
- get-domain-detail
- update-domain-contact-privacy