One of our mail forwarders was experiencing issues with relaying mail this afternoon.
The cause of the slowdown has been identified and the issue resolved. The machine is now emptying its mail queue.

Mail will have been delayed up to a couple of hours.

We appreciate your patience as we resolve this matter. As always if you have any questions please feel free to contact support.

10 years ago on this day, we removed the password block on easyDNS.com and sent out a couple of innocuous email announcements to the PHP and Mysql mailing lists announcing that we had developed a DNS management system using php and mysql and it was now open for business. We had three nameservers, 1 in our office (where the "other server", that ran everything was), one downtown in somebody else's cage at 151 Front street, and some friends of ours in Buffalo who were running an email company called chek.com let us run a third nameserver on one of their servers. That was the initial setup of easyDNS...
Continue reading "Ten Years of easyDNS"

We're going to start an item here to try to keep track of the ISPs who are patched for the DNS cache poisoning bug. Most of our personal contacts are here in Canada so this list will likely be comprised largely of Canadian ISPs but as we get word on other big ones, we'll try to update them here.

So far just a couple of items but one of them is major, so I post now...

ISP	Status	Comments
Bell Canada:	Patched	We've checked with their ops team
Egate.net / EgateDSL	Patched	A lot of non-Bell DSL users here

With the ramifications of the DNS cache poisoning bug beginning to sink in and the first exploit code being published today, we are anticipating an accelerating number of queries from our members about this and what they can do to ensure their own DNS caching resolvers are safe to use.

We can tell you about two public DNS resolver systems you can use. One external, one we just launched ourselves:

OpenDNS: User friendly DNS lookups - with anti-phishing protection

We've never been in the DNS resolution or DNS resolving business. There are companies like OpenDNS who are. We know the people who run this company, they are competent and knowledgeable and we consider their service safe. That said, they also provide protection against phishing domains and they do trap NXDOMAIN traffic. Yes, they do monetize failed lookups via a search suggestion page with PPC links, individual users do have the ability to turn this off.

easyDNS launches DNSResolvers.com: no frills, pure DNS lookups - fully patched

Some of our members have expressed reservations around using any DNS resolver that "alters" the traffic in any way, including typos and non-existent domains. Which is good news for us, because we've done this so fast we haven't had time to build anything like that even if we wanted to. What we did want to do is provide a couple of DNS resolvers for use by our members (or anybody else) who just want to know they're using a system run by people who are actively following this situation and are proactively keeping their own resolvers and caching nameservers as secure as the protocol allows.

With this in mind we've turned up DNSresolvers.com today. No website, no user interface, at the moment it's just a couple of resolvers with the latest security patches in place and that will continue to do so, open to use by anybody who wants. We have no idea where this will go, and it's not really an official easyDNS "service" per se. But we wanted to do something to give our members options.

If you want to use DNSresolvers.com, the details are as follows:


cache1.dnsresolvers.com -> 205.210.42.205
cache2.dnsresolvers.com -> 66.207.199.44


Hi There,

There is a new DNS Cache poisoning disclosure that has been inadvertently leaked before it was scheduled to be released by Dan
Kaminsky (IOActive). This is a very serious flaw in the DNS protocol that impacts caching resolvers, like the resolvers hosted at your
service provider that help your workstation resolve IP addresses to domain names.

This bug does not directly impact authoritative name servers like the ones used to host your domain names at EasyDNS. Our name servers do not
request answers from external sources, and rely entirely on internal cache files to offer answers. So for example, nobody will be able to change your IP information on our end. That part of the bug is unfortunately located at the caching end.

That being said; this is still a serious flaw, and we are taking this opportunity to upgrade the DNS software on our authoritative name servers to ensure that we are 100% compatible across the board with the newly upgraded caching name servers located at your Internet Service Provider. These upgrades should not impact name resolution if you are using more than one of our name servers to serve answers for your domain name (actually, please ensure that you are).

To make sure your Internet Service Provider is up to speed, you can use Dan Kaminsky's test script at DoxPora Research. If your Internet Service Provider is not yet up to speed, you may want to give them a nudge and/or change your DNS resolver configuration to a more trusted service.

Update It is now making news that an exploit to this attack has been released., please see our post about our newly launched DNSresolvers.com if you are looking for safe resolvers.

The issue we were experiencing previously with duplicate emails has been resolved. Customers may receive yet one more copy of the duplicate emails as our queues clear out.

Please contact Support if you continue to experience this issue: support@easydns.com

We apologise for any inconvenience.

We've gotten a few invitations to apply to be a .ME top-level domain registrar, to which we assigned no urgency after we took a straw poll internally and found that pretty well zero of our customers were asking for it. Today, Techcrunch reports that the .ME landrush, at least through one large operator, had degraded into a fracas. We have an unwritten policy here: new Top Level Domain roll outs are to be avoided until they i) get past sunrise without erupting into a malestrom of lawsuits and ii) get past "go-live" without imploding.

It runs contrary to industry standards where registrars whip their customer base into a frenzy over an exaggerated need to protect one's trademarks and claim one's stake in the latest "must have" TLD. The fact is, all you really need to care about are .COM, .NET and .ORG plus the ccTLD of the country you live in or do a lot of business in. (I will probably catch flack for saying .BIZ and .INFO are not crucial must-haves to your domain portfolio - we grabbed ours, at considerable expense in the case of .INFO and it was our experience in the roll out of these two that largely formed our policy.)

That most of these new TLDs roll out with initial 2-year registration period minimums are just an outright cash grab from the registry that most participating registrars are happy to join in on. They know that the sunrise and landrush frenzies they hope to whip up are the single greatest revenue events these TLDs ever experience. After the hoopla dies off and organizations realize how unimportant owning say ".ZX" is in their overall domain strategy and the domainers who piled in find out the aftermarket for the TLD is lackluster at best, the renewal rates predictably fall off a cliff.

So when the next "must have" TLD comes along and participating registrars start lovebombing their customers with reasons why they absolutely must "protect their name" in the new TLD, we often commit the egregious sin among investment bankers, VC's and pundits - that of "leaving money on the table" and we just don't rush in and push the new TLD. If it prevents us from leading our members off a ciff in to a major debacle, we consider ourselves as having done our job. (This was a similar rationale to why we never entered the IDN space, as long as you need a browser plug-in to make internationalized domain names even borderline usable they are, in our opinion, of marginal utility - we stayed out of it)

This is in line with our lifelong strategy of cultivating members who actually use their domains rather than pushing the "get your name before its gone" angle for every TLD under the sun on anybody who can fog a mirror. When we launched back in '98, we couldn't even register domains at all, so our member base was exclusively people who were actively using their domains and wanted outsourced DNS and/or forwarding. That set the tone for our positioning and culture ever since, and while now we do have a lot of customers using us "as registrar", our core is always the active domain users.

We have almost zero "domainers" with large portfolios of parked domains and speculative registrations because our model simply doesn't work for those types of users. It's not a judgement against domainers, it's just not where we came from.


All that said, you would probably think we are opposed to the new "free-for-all" TLD expansion policy hinted to in the recent ICANN meeting in Paris. We are not. We would welcome this new tlds policy (if it ever actually happens) because it removes the artifical scarcity and counteracts that "cashgrab" mentality we sniff at the root of many a new TLD. If new TLDs are coming out all over the place, two things happen:

1) Organizations realize that it is no longer practical to attempt to "protect their name" in every TLD space, so they stop trying. This removes a lot of the "easy money" underwriting new TLDs, some of which would otherwise launch for the thinly disguised reason of trying to milk the Sunrise for all its worth.

2) The above impetus gone, new TLDs will have to compete in a much more open market. Registries, while having de facto localized monopolies within their own TLDs will have to provide actual value to compete with other TLDs.

That appeals to our sense of market freedom: less artificial barriers compelling a drive toward providing more value and benefits. The winners in the end should be the domain registrants, who are, let's not forget, our customers.

Greetings,

At approximately 6:00pm on Sunday July 13th, the hosting provider for a large part of our infrastructure experienced a partial power failure, causing a lot of our backend switching and routing infrastructure to malfunction.

During this outage, the EasyDNS members site would have been inaccessible, as well as mail forwarding and web forwarding services. The bulk of the outage lasted 20 minutes, with after-effects against some services lasting some hours after that.



The web forwarding service outage lasted longer than anticipated due to an internal disagreement between several devices on who was directing the traffic. Intermittent service would have lasted between the beginning of the outage to about 11:00pm. As of this writing the service has been fully restored and the devices agree with each other again.

Because of our firm commitment to DNS uptime, our DNS infrastructure and domain name resolution were not impacted and no forwarded or backup MX mail was lost.

When we noticed YCombinator's Paul Graham was an easyDNS member we asked him to help us kick off a new format for the "Who Uses easyDNS" blog channel. Rather than just list off this company or that notable tech personality, we're conducting short interviews with them so we can all get a better idea what our membership is all about.

Paul Graham is a champion of the LISP programming language, a prominent essayist and author of the book Hackers and Painters and a VC who who co-founded the seed-stage funder Y Combinator.

To date Y Combinator has funded 102 start-ups and are currently accepting applications for the winter round of fundings, see http://ycombinator.com/w2009.html

Mark Jeftovic conducted this email interview with Paul Graham over June 2008.

MJ: Are you at all disappointed that the development platform of choice behind the Web 2.0 "explosion" was Ruby on Rails instead of Lisp?


Continue reading "5 questions for YCombinator's Paul Graham"

CIRA has implemented changes to the dot-ca WHOIS search tool, effective June 10, 2008.
Domains that are registered to individuals now have their whois information kept private by default.
For more information, please see http://www.cira.ca/en/Whois/whois_intro.html or contact us at support@easyDNS.com

thank you,
easyDNS

On Tuesday, June 10th, and will start at 11 PM PDT and should last for approximately one hour.


Here's what you should expect during the service interruption:

· If you attempt to access the PayPal Web site (https://www.PayPal.com) during the maintenance window you will receive the following message:

"The PayPal website is currently unavailable for scheduled maintenance. We are working actively to complete the maintenance as soon as possible. We apologize for any inconvenience. Please check the PayPal System Board for possible updates."

You will be unable to log into the PayPal system to check your PayPal account status or to verify payments.

You will be unable to send or receive funds via PayPal payment buttons on merchant sites or directly via the PayPal site.

After the maintenance is complete, buyers and sellers will be able to interact with PayPal as they normally would.

Ce que nos abonnés doivent savoir sur la nouvelle politique des domaine .Ca et au sujet du Whois privée.

A partir du Juin 10/2008 l’ACEI (l'Autorité Canadienne pour les Enregistrements Internet.) met en œuvre un nouvelle politique Whois pour .CA qui touchera directement des Détenteurs de noms de domaine qui sont des particuliers (Titulaires), (à l’opposition des Sociétés, entreprises ou des organismes au titre de Titulaires).

Il est conseillé que tous nos Titulaires revisé la politique indiqué au:
Continue reading "IMPORTANT : Nouveau politique pour les fichiers WHOIS pour les domaines"

Update: The PayPal site maintenance scheduled for Thursday, May 29th at 11 PM PDT, has been postponed. We will update you once a new date has been confirmed.

thank you
easyDNS

What our subscribers need to know about the new .ca private whois service:

On June 10/2008 CIRA is implementing a new .CA Whois policy which directly affects all .CA domains registered under the names of individuals
(as opposed to .CA names registered to Corporations)

It is advised that all .CA holders review the policy as outlined here:
Continue reading "IMPORTANT: New .CA Whois Policy takes effect June 10/2008"

On Thursday, May 29th, maintenance will start at 11 PM PDT and we expect it to last approximately one hour.

Here's what you should expect during the service interruption:

· If you attempt to access the PayPal Web site (https://www.PayPal.com) during the maintenance window you will receive the following message:

"The PayPal website is currently unavailable for scheduled maintenance. We are working actively to complete the maintenance as soon as possible. We apologize for any inconvenience. Please check the PayPal System Board for possible updates."

You will be unable to log into the PayPal system to check your PayPal account status or to verify payments.

You will be unable to send or receive funds via PayPal payment buttons on merchant sites or directly via the PayPal site.

After the maintenance is complete, buyers and sellers will be able to interact with PayPal as they normally would.