Slashdot Mirror

← Back to Stories (view on slashdot.org)

Ask Slashdot: Which Registrars Support DNSSEC?

Posted by timothy on from the are-you-now-or-have-you-ever-been dept.

baerm writes "With GoDaddy being purchased by private equity firms (i.e. it will be sucked dry with service reduction and price increases until it dies) what other Registrars support DNSSEC? GoDaddy is the only registrar I could find that supports DNSSEC for registrees running their own DNS. It was fairly easy to add the Key Signing Keys' DS records to the parent zone using its DNS config. I did find a couple other registrars that were 'testing' DNSSEC or that would support DNSSEC if they ran your DNS. But I couldn't find any other registrars where you could just register, run your own DNS, and use DNSSEC (i.e. with your DS record in your parent zone). That being said, I was only able to research a small percentage of the registrars out there. Does anyone know of registrars, other than GoDaddy, that allow for DNSSEC? That is, registrars that have a method to pass the DS records to the parent zones for their registeree's domains?"

12 of 70 comments (clear)

  1. DynDNS does it by CoverStory · · Score: 3, Informative

    http://www.dyndns.com/support/kb/implementing_dnssec.html

    1. Re:DynDNS does it by chrisgeleven · · Score: 3, Informative

      Yep, we support DNSSEC on .com, .net, .org, .biz, and .se. No need to use us for DNS (although you certainly can, any DynECT Managed DNS products support DNSSEC).

  2. Re:Hmmmm by TooMuchToDo · · Score: 3, Interesting

    Several months ago, I thought about opening a coop model registrar, in the same vein as ARIN or other non-profit resource management organizations, but didn't think there'd be enough demand (IT people would dig it, but not your average joe, who is going to use GoDaddy). How difficult is it to start a registrar?

  3. Registrars that support DNSSEC by lothos · · Score: 4, Informative

    Name.com and Network Solutions are two of the big, well-known registrars that support DNSSEC. .org was the first to support DNSSEC.

    Here's a list of registrars that support DNSSEC for .org: http://www.pir.org/get/registrars?order=field_dnssec_value&sort=desc

    --
    Hosting and Domain name coupons
  4. Why do we immediately assume GoDaddy will suck? by jchawk · · Score: 2, Interesting

    I'm not sure why we should immediately assume that GoDaddy will suck just because they were purchased by a private equity firm. GoDaddy had every intention of going public but choose not to because of how they would have had to report their earnings/recognize revenue. From what I remember they would essentially split the revenue of a domain registration out over the life of the domain registration as opposed to immediately upon payment.

    GoDaddy is a cash cow that will likely continue to be a cash cow if they parent firm let's GoDaddy continue to operate in the manner they have done so since they were founded.

    I'm not an investment equity firm but if I were I would look to maximize revenue over as long of a timeline as possible. GoDaddy has no real tangible assets to come in and suck dry like a large manufacture might so sucking the life out really doesn't make a lot of financial sense.

    I've been happy with GoDaddy over the years and will continue to use them until their service slips or their prices get out of control.

    1. Re:Why do we immediately assume GoDaddy will suck? by HFShadow · · Score: 2

      Wait, godaddy doesn't suck already? I don't see how they could possibly get much worse.

    2. Re:Why do we immediately assume GoDaddy will suck? by Anonymous Coward · · Score: 4, Informative

      If their service slips does that mean that they'll not longer shill bid on their own domain auctions, improperly block users from transferring domains to other registrars and arbitrary suspend registrants like seclist.org? Anyone who uses GoDaddy as a registrar is ignorant of what they do.

  5. Gratisdns by EsbenMoseHansen · · Score: 2

    gratisdns.dk supports DNSSEC for my humble domains. Some of the pages are in Danish, though :)

    --
    Religion is regarded by the common people as true, by the wise as false, and by rulers as useful.
  6. Google it by petteyg359 · · Score: 2

    The Googlefu is clearly not with the poster.

    Name.com shows quite prominently in the first page of results.

  7. Re:It's expensive.. by Anonymous Coward · · Score: 3, Informative

    correct, there is a 2500$ non-refundable fee, plus a 175000$ payment upon approval, plus you must have 70000 extra just in case, plus you must prove that you can run a profitable operation and tons of other impediments.

    ICANN and verizon control everything and they want to keep it that way.

    We are actually thinking about an open source registrar model, but those costs are making it very difficult.

    There is a great market there, ICANN only charges like 23cents a year for the name, godaddy and the rest of the registrars are making a killing! profit from it, 48000 domains, you make the numbers!

  8. GKG and InternetX support DNSSEC by leto · · Score: 3, Informative

    I strongly recommend using GKG.net, as they have the best (automated) XML interface that I know of. See their documentation

    InternetX also has a good interface, but it is a little more complex to get going.

    Those, as well as GoDaddy, which you can only process using ugly web scraping with BeautifulSoup and Mechanize, were the first ones we supported in our DNSSEC Signer product.

    Paul Wouters, DNSSEC Evangelist at Xelerance

  9. Re:It's expensive.. by TooMuchToDo · · Score: 3, Insightful

    I run a (substantially) profitable hosting operation with several million dollars in the bank (business accounts, I don't pay myself more than my co-workers/employees).

    So, I can run a profitable operation, the question is, are there enough people willing to purchase domain services from a non-profit?