Domain Name Wire | Domain Name News & Website Stuff

Domain Name Industry News and Website Stuff

Featured Domains

Create an SPF record to show that your domain does NOT send email

by Uncategorized 3 Comments

Add an SPF record to prevent spoofing.

Picture of hooded man with email.

Add a SPF record to keep people from spoofing your domain in emails.

When it comes to email deliverability, most people are trying to figure out how to ensure their mail lands in the inbox. But what if you want to tell email providers that they should not accept email from a domain name? This might be the case if you have a parked domain that someone is trying to spoof when it sends email.

One option is to create a Sender Policy Framework (SPF) record that says all mail should be rejected. To do this, go to your domain name registrar and manage the DNS for the domain.

Create a TXT record and include this text:

v=spf -all

This will tell mailbox providers that your domain name should not send any email, giving them an indication that email with your address should be considered spam.

Domain name owners should consider adding SPF records to their parked domains if they don’t use them for email.

Share11
Tweet
Share
Email

Newspack could solve one of WordPress’ problems

by Uncategorized 1 Comment

WordPress-for-newsrooms could help small publishers avoid the IT guy.

There’s a problem with WordPress: it’s too complicated for the typical small business owner. It’s also too complicated for the typical small news publisher.

So it’s exciting to hear that Google (NASDAQ: GOOGL), Lenfest Institute for Journalism, The John S. and James L. Knight Foundation and Civil Media are all contributing financially to an effort by WordPress creator Automattic to create Newspack. Google calls it “a fast, secure, low-cost publishing system tailor-made to the needs of small newsrooms”.

This sums it up nicely:

Journalists should be writing stories and covering their communities, not worrying about designing websites, configuring CMSs, or building commerce systems. Their publishing platform should solve these problems for them. So while Newspack publishers will have access to all the plugins created by the WordPress developer community, the core product is not trying to be all things to all publishers. It is trying to help small publishers succeed by building best practices into the product while removing distractions that may divert scarce resources. We like to call it “an opinionated CMS:” it knows the right thing to do, even when you don’t.

It will be exciting to see the finished product. Hopefully, this is a sign of things to come: easy-to-use installments of WordPress.

Share8
Tweet
Share
Email

Understanding SPF, DKIM and DMARC for email

by Uncategorized 1 Comment

A primer on email authentication.

photo of person checking email

Domain names are necessarily intertwined with email. The domain name connected with an email address is a signal for email services about the sender’s reputation, assisting the mailbox provider (MBP) and ISP when it determines what’s legitimate and what’s junk.

There are a few authentication mechanisms that domain owners can put in place to reduce the chances of phishers and spammers from spoofing their domains. In this post I’ll run through these at a high level; in later posts I’ll go more in-depth and explain how to set these up.

There are three main authentication mechanisms that domain owners can put in place.

Sender Policy Framework (SPF)

Think of SPF as a way to whitelist certain IP addresses that are validated to send email on behalf of your domain. You can tell email providers that only mail from a certain IP address or range of IPs is valid. Email from other IP addresses might be spoofed.

SPF is a way to reduce the chances that phishing and other emails that appear to be from your domain (but really aren’t) make it to the inbox. If you have a domain that you don’t use for email but people continually spoof it, you can add an SPF record that states that no mail should be sent from the domain.

Implementing SPF at its most basic level is quite easy. It requires adding a TXT record to the DNS.

DomainKeys Identified Mail (DKIM)

DKIM is more complicated than SPF and allows the sender to digitally sign certain components of the email.

With DKIM, the domain owner publishes a key in the public DNS. The outgoing email server signs the message. The recipient mail server uses the public key to check the signature and make sure it is valid. If so, then it shows that the signed fields have not been altered in route and passes DKIM.

Domain-based Message Authentication, Reporting & Conformance (DMARC)

DMARC is a way for email senders to tell mailbox providers what action to take if an email fails authentication under SPF or DKIM and provides a reporting channel from mailbox providers back to senders.

A sender can tell the email recipient server what to do if a message fails authentication: let it pass through, quarantine it in the junk folder or reject the message.

Implementing DMARC is a journey, with companies typically publishing a DMARC policy with a ‘none’ policy setting to take inventory of mailstreams coming off their domain and gather reporting back from the participating mailbox providers. Once organizations have a clear understanding of legitimate vs. illegitimate mail coming off their domain, they can take action with their DMARC policy setting by selecting either a ‘quarantine’ or ‘reject’ policy.

Even if a company uses DMARC but tells the recipient server to take no action against mail that fails SPF or DKIM (policy=none), it will still benefit by using DMARC. That’s because email services will begin providing reports to the sender about the email it processes. This data includes IP addresses, rDNS, sending domain and other information helping senders track down either incomplete SPF or DKIM records or sources trying to spoof the company’s domain.

Like SPF and DKIM, DMARC involves a DNS record.

Share10
Tweet
Share
Email

Registry to relaunch .Homes top level domain

by Uncategorized 8 Comments

Company changes its strategy to make it easier (and less expensive) to register .homes domains.

Dominion Registries is relaunching .homes with lower prices, no eligibility requirements and more registrars.

Dominion Registries is relaunching the .homes top level domain next week with a new strategy.

The registry for .homes (and also .autos, .boats, .yachts, and .motorcycles) originally launched its domains with restrictions and pricing that turned off both registrants and registrars.

Dominion Enterprises (parent of Dominion Registries) is a publishing company that owns Boats.com, Homes.com, Franchise.com and many other sites. Its original goal was to control the registrations of domains at the second level and sell them to their existing clients.

Onerous registrar requirements meant that few registrars carried the TLDs at launch. Also, registrants had to show a connection to the industry and verification could take 1-2 weeks before they were able to use .homes domains. (Listen to a podcast with Dominion’s Jim Schrand that was recorded when the restrictions were in place.)

As a result, the domain hasn’t taken off. .Homes has just a few hundred domains in the zone.

Last year the company removed restrictions on .boats and tried to re-engage with the registrar channel.

Now it’s doing the same with .homes and it seems to be having success getting registrars on board. Notably, GoDaddy will carry .homes domains.

Promotional first-year rates should be around $15 retail with standard and renewal prices around $35 or so.  This compares to over $100 previously.

The relaunch is scheduled for Monday, January 14 at 16:00 UTC.

Share9
Tweet
Share
Email

Infusionsoft loads up on domains as it plans for Keap

by Uncategorized 5 Comments

Company acquired Keap.com, filed for trademarks, and recently loaded up on Keap-related domains.

Logo for Keap

The Keap logo, as filed with the U.S. Patent and Trademark Office

CRM and marketing platform Infusionsoft has registered a lot of domain names as it prepares to launch Keap.

What is Keap? I can’t tell for certain, but based on the company’s recent trademark filings and domain registrations, it’s very possible that the company is rebranding as Keap. At a minimum, it is about to launch a new product called Keap.

In August or September 2018, Infusionsoft appears to have acquired the domain name Keap.com from Frank Schilling’s Name Administration.

Then late last year the company filed for nine trademarks involving the brand. The services it filed under seem a lot like what Infusionsoft currently offers.

Over the past two days, dozens of keap-related domain names have been registered:

cancelkeap.com
dontkeap.com
getkeap.com
ihatekeap.com
infusionkeap.com
iusekeap.com
keapalternative.com
keapblows.com
keapcreep.com
keapcrm.com
keapersoft.com
keapfails.com
keapinsoft.com
keapischeap.com
keapiscrap.com
keapisgarbage.com
keapisshit.com
keapme.com
keaponkeapingon.com
keapons.com
keaponsoft.com
keapsoft.com
keapstinks.com
keapus.com
keapyou.com
teamkeap.com
usekeap.com
youkeap.com

The domain names use a registrar’s Whois privacy service, but it’s the same corporate registrar at which Infusionsoft.com is registered.

The pattern shows a good practice in corporate branding: first, acquire the domain name. Then file the trademarks. Finally, pick up ancillary domains that might be useful (or detrimental) to the brand.

Expect an announcement from Infusionsoft soon.

Share78
Tweet
Share
Email