> On 19 dec 2014, at 02:04, Michael Sinatra <[email protected]> wrote: > > I am hoping > someone can prove me wrong and suggest a registrar that keeps up with > DNSSEC evolution, along with other security best practices. Any takers?
Well, I think that you always will have problems with large systems like the ones Dyn and Godaddy uses. I would be scared if I was on their watch to add something new, deploy etc. Smaller registrars on the other hand might be quicker and also implement what you want. They have different issues of course that you do not in a larger operation. Frobbit, the registrar that I own 50% of, do support alg 13, and have always supported DNSSEC. It was btw added after half an hour hacking just because the release cycle for new code is so short, and that I think we at Frobbit has chosen the right architecture. FYI: I just had to add "13" in the popup menu in the web interface, and the rest just worked. But that is how it can be at small registrars, that do use custom software developed in house. So, I think the market economy DO work. You just as a registrant have to look for what you want, and choose accordingly. Or start your own registrar. I think the alternative, to not have registrars, like we had before Netsol was split up, is much much much worse. Patrik P.S. I now see you might want other algorithms as well, so I better update that pop up menu in the web interface ;-)
signature.asc
Description: Message signed with OpenPGP using GPGMail
