[benologist]

Don't get me wrong, I absolutely agree they shouldn't have been destroyed and that GoDaddy has no right to be the executioner.

[sukuriant]

Then how do you rectify the statement you made that their customers should be angry with them, and that they shouldn't be destroyed? I really want to hear this.

[benologist]

Because there are two things here:

1) GoDaddy overstepping their bounds and shutting down a website

2) JotForm having inadequate, perhaps even non-existant measures in place to prevent or respond to phishing

Obviously #1 dwarfs #2 significantly but that doesn't make #2 okay.

[sukuriant]

How doesn't it? The argument could be made that GoDaddy would have done that deed anyway, even if (2) hadn't been rectified.

GoDaddy might not have, if those provisions had been in place. Do these sorts of stories with GoDaddy happen often?

[benologist]

GoDaddy's actions don't cancel it out because ignoring or not adequately preparing for phishing was wrong every single day and a foreseeable problem for about a decade now. They had a responsibility to prevent this for their paying users.

Maybe it wouldn't have saved them, but there are a lot of free-x-hosting companies out there that haven't been shut down in spite of abuse.

[sukuriant]

Do you plan for every illegal thing that could happen on your website?

It's easy to not imagine what sort of evil your site could be used for when you're thinking of just the awesome problem you're trying to solve.

[benologist]

This isn't really some unforeseeable edge case that nobody could have reasonably expected to happen - their site lets you build a form, embed it on a page, and they either email or save the form data for you. Not anticipating phishing would be fine if it was 10 years ago.

[anigbrowl]

Welcome to risk management 101. Lesson 1: assume the worst of the general public, and you won't be disappointed.