Gert van DijkMar 29, 2024

Was looking into issues with DNS/resolving issues for a domain hosted with Network Solutions, LLC (`worldnic.com` nameservers).

Seems like I've stepped into a sh•t hole full of incompetence with that provider. 😳
I've seen DNSSEC bogus responses, missing RRSIGs, superfluous DNSKEYs in responses, invalid negative responses causing false negative cache entries... #dnssec

And yet this is a huge domain hosting provider.
> 4th largest .com domain name registrar [August 2018, Wikipedia]
Jeez. Why.

Show threadGert van Dijk

This is going on for *years*. It's their f••••••g primary product feature: hosting domains. And they can't do that. SMH.

Common symptom: you can't verify your domain when lookups are DNSSEC-validated, e.g. with Let's Encrypt.

https://community.letsencrypt.org/t/ongoing-dnssec-caa-network-solutions-issues-blocking-http-01-renewals/201531/24

Ongoing(?) DNSSEC/CAA/Network Solutions issues blocking http-01 renewals?

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.

Let's Encrypt Community Support
Mar 29, 2024 at 12:16pmElk
Show threadGert van DijkSep 4, 2024

Good lord, this #dnssec issue still exists with the ignorant #networksolutions broken hosting.

How on earth are they still in business? 😒

The only option appears to be to let customers disable DNSSEC. :facepalm: