Comment by hypeatei
7 months ago
> I suspect that IANA would prioritise not breaking millions of domain names over trying to police ccTLDs.
I'm surprised this wouldn't be the default behavior for existing owners? Kinda making me re-think buying an IO domain for my personal stuff. Are gTLDs the safest option?
You should always be aware of political risks when buying a ccTLD. There's precedent that these have caused serious issues for domain holders, one notable example
https://www.theverge.com/2024/2/12/24071036/queer-af-mastodo...
Outages and poor management are one possibility. Other is the fact that you have to trust the country running the ccTLD with DNSSEC keys. This might rule out things like using TLSA/DANE or SSHFP records.
I think more relevantly than DNSSEC, couldn't they issue TLS certificates using DNS-01 validation? You have to trust your DNS registry.
1 reply →
The gTLDs are also subject to the whims of a foreign country (usually the USA). The safest option is probably your own country's ccTLD, since any dispute would go solely through your own country's laws and courts (to which you're already subjected, by virtue of living there).
Unfortunately, the .us TLD prevents hiding whois, even partially. So registering a domain under that TLD is just asking for perpetual spam.
Which is weird! In contrast, .ca hides whois by default for personal registrations.
1 reply →