Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


ForumsIT Pro and developersBeware CrazyDomains new 'Features'
View this topic in a long page with up to 500 replies per page Create new topic
1 | 2 
freitasm
BDFL - Memuneh
80652 posts

Uber Geek
+1 received by user: 41043

Administrator
ID Verified
Trusted
Geekzone
Lifetime subscriber

  #3129049 18-Sep-2023 17:18
Send private message

SirHumphreyAppleby:

 

networkn:

 

This is a relatively new thing, and we have already requested all the domain keys from them and will move to another provider. 

 

 

I'd create new entries using your own keys. If you need to validate old e-mail for a period of time, just copy the public key records.

 

Might be a good opportunity to deploy ed25519-sha256 signing as well.

 

 

That's not how key works. You need the private key to validate/decrypt anything that is encrypted with a public key. And private keys aren't published, shouldn't be published.




Referral links: Quic Broadband (free setup code: R587125ERQ6VE) | Samsung | AliExpress | Wise | Sharesies 

 

Support Geekzone by subscribing (browse ads-free), or making a one-off or recurring donation through PressPatron.

 



SirHumphreyAppleby
2939 posts

Uber Geek
+1 received by user: 1860


  #3129053 18-Sep-2023 17:30
Send private message

freitasm:

 

SirHumphreyAppleby:

 

If you need to validate old e-mail for a period of time, just copy the public key records.

 

 

That's not how key works. You need the private key to validate/decrypt anything that is encrypted with a public key. And private keys aren't published, shouldn't be published.

 

 

Nothing is encrypted with the public key. DKIM signatures are always signed using a private key.

 

If you want recipients to be able to verify e-mail was signed by the private key, you only need to copy the DNS record containing the public key. You don't ever need to know what the private key was, unless you want to keep signing using the same key and selector, which I wouldn't recommend since you're continuing to use a key someone else had access to at some point in time.

freitasm
BDFL - Memuneh
80652 posts

Uber Geek
+1 received by user: 41043

Administrator
ID Verified
Trusted
Geekzone
Lifetime subscriber

  #3129054 18-Sep-2023 17:37
Send private message

Ok, your previous comment was from the other way around - validating as a recipient.

 

As the sender, you don't need the public key at all. But really, if you rotate your keys you can simply remove both after a while.




Referral links: Quic Broadband (free setup code: R587125ERQ6VE) | Samsung | AliExpress | Wise | Sharesies 

 

Support Geekzone by subscribing (browse ads-free), or making a one-off or recurring donation through PressPatron.

 



CamH
615 posts

Ultimate Geek
+1 received by user: 327

Subscriber

  #3129064 18-Sep-2023 18:18
Send private message

We have a few clients as well that manage their own domains and are on CrazyDomains. Same issue this morning. Mass panic, each one was down for multiple hours, took 1-2 hours to get someone on chat who fixed it. We requested UDAIs at 11am, still haven't got them at 6pm. Absolute trash company, we moved our 100+ domain names out a couple of years back.





onebytemike
90 posts

Master Geek
+1 received by user: 21


  #3129548 19-Sep-2023 22:50
Send private message

networkn:

 

onebytemike:

 

I doubt there's much the DNC would do here.  Whilst DNS is a critical service, it's not what the DNC regulates in the .nz namespace.  

 

 

Presumably, as part of being able to resell .nz domains, you must act in a way that doesn't hold a domain to hostage. 

 

If the original claims were correct, and they stripped ALL the DNS records without notice because the customer didn't subscribe to premium services, when they had previously been available under the free tier, dnc is going to be looking very hard at that.

 

I could maybe understand not allowing the entry of new entries, but to remove ALL. That's nonsense.

 

 

 

As it turns out, the claims made by their support agent were complete nonsense. The second agent couldn't get the situation clarified fast enough. 

 

 

 

 

 

 

 

 

There's no doubt they've acted poorly and it's a crying shame the state of what was the largest .nz registrar in NZ is today.

 

That said, this isn't a problem with how CD have operated their registrar business.  It's a problem with a DNS service.  This isn't something that the DNC regulate.  If they block your ability to update your registration or generate a UDAI/EPP code, then they're getting into dangerous territory with the DNC.  Anything else is outside their remit.  

 

This was a big reason I moved most of my DNS to Cloudflare.  Those that aren't there are either using Azure DNS or AWS route53.  

 

Registrars usually keep the basics ticking along.  It's the secondary services that are always the biggest issue.  

networkn

Networkn
32863 posts

Uber Geek
+1 received by user: 15453

ID Verified
Trusted
Lifetime subscriber

  #3130921 23-Sep-2023 11:30
Send private message

I'm afraid whilst I understand the point you are making, I disagree with it. When you include basic functionality with your domain registrations, and then put those behind a paywall, and refuse to reinstate that functionality without payment that fundamentally affects your ability to use the domain (even if that functionality was affected by a fault with their systems), then I feel that is harming the use of your domain. Essentially holding it to ransom. 

 

Unsurprisingly CD didn't respond to my complaint, so I'll send something to DNC. At worst it makes them aware, and potentially creates a conversation, at best that conversation leads to a reversal of the stupid policy or changes what they consider to be 'advanced' functionality. 

 

 

 

 

 
 
 
 

Shop now on Samsung phones, tablets, TVs and more (affiliate link).
mobiusnz
477 posts

Ultimate Geek
+1 received by user: 114


  #3136362 29-Sep-2023 10:26
Send private message

freitasm:

 

Two names: Metaname and Cloudflare.

 

 

I got pissed off with Discount Domains poor service when they all got bought as part of a package when Umbrella merged (Presumably for resale?). They are owned by Dreamscape networks the same owner as Crazy domains and I find them ALL absolutely abysmal to deal with.

 

I switched all of my domains and my client domains to Metaname and after learning little quirks with their DNS interface I've never looked back. It just works and edits are live quicker than I can check them after making changes. When I say quirks of DNS I mean in general - All Domain registrars do things slightly different - Some you have to have a trailing full stop on records that others will add automatically etc so you usually have to adapt slightly but overall their system does what it needs to do very fast.

 

I would seriously look to move away from anyone that is part of Dreamscapes as half the time it feels like the same helpdesk people are supporting all of the disparate parts of the network and as such support is often poor. I've had numerous times I had to argue with them that an issue actually was an issue before they'd finally escalate things.

One of the NZ registrars they purchased for a while seamed to be manually making DNS changes after you changed them online. The automation they previously had didn't work and more and instead just send a request to the helpdesk to do it.

Ironcially I'm here looking to see if anyone knows what the issue is this morning with Discount Domains - It appears Discount Domains DNS is completely down - Nothing on their site to inform the issue and when you ring the helpdesk it says the wait time is 75 minutes!! It appears to be just Discount Domains and no other part of the Umbrella / Dreamscape network though.




Matt Beechey Mobius Network Solutions

freitasm
BDFL - Memuneh
80652 posts

Uber Geek
+1 received by user: 41043

Administrator
ID Verified
Trusted
Geekzone
Lifetime subscriber

  #3136363 29-Sep-2023 10:27
Send private message

mobiusnz:

 

roncially I'm here looking to see if anyone knows what the issue is this morning with Discount Domains - It appears Discount Domains DNS is completely down - Nothing on their site to inform the issue and when you ring the helpdesk it says the wait time is 75 minutes!! It appears to be just Discount Domains and no other part of the Umbrella / Dreamscape network though.

 

 

Discount domains DNS servers Down? (geekzone.co.nz)




Referral links: Quic Broadband (free setup code: R587125ERQ6VE) | Samsung | AliExpress | Wise | Sharesies 

 

Support Geekzone by subscribing (browse ads-free), or making a one-off or recurring donation through PressPatron.

 

mobiusnz
477 posts

Ultimate Geek
+1 received by user: 114


  #3136365 29-Sep-2023 10:28
Send private message

freitasm:

 

Discount domains DNS servers Down? (geekzone.co.nz)

 

 

Thanks Freitasm - I was just going looking :)




Matt Beechey Mobius Network Solutions

1 | 2 
View this topic in a long page with up to 500 replies per page Create new topic








Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Updates »

Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.








RSS feeds
Main feed
Forums feed
Copyright
©2002-2026 Geekzone®
Site features
Geekzone BI dashboard
Geekzone Badges
Geekzone Status Page

 

Site Information
Subscribe to Geekzone
Privacy Statement
Forum Usage Guidelines (FUG)
Advertising
Trademark and copyright