Adding a custom domain in Tuta Mail is quick and easy.

We show you how in our latest guide: https://tuta.com/blog/own-domain-email

Don't need a custom domain? Stand out from the crowd with our exclusive domain instead

> " What country level domain name extensions are available for everyone?! "

The following, should be available to anyone to register. However, some (see list) will require a "domain agent" if you do not live or own a business in these countries. Many domain registers are happy to be your "domain agent", but you should check first with the register.

.ai – Anguilla

.am – Armenia

.co – Colombia

.fm – Micronesia

.io – British Indian Ocean Territory

.me – Montenegro

.tv – Tuvalu

.cc – Cocos (Keeling) Islands

.ws – Samoa

.in – India

.to – Tonga

.bz – Belize

.uk – United Kingdom (will need a domain agent)

.de – Germany (will need a domain agent)

.nl – Netherlands

.eu – European Union (will need a domain agent)

.ca – Canada (will need a domain agent)

This is how you run a Fedi website outside Us Jurisdiction.

mk.absturztau.be = Domain (.be) name is Belgium, while hosted in Switzerland, and the hosting provider is governed under the laws of Switzerland.

mastodon.au = Domain (.au) name is Australia, while hosted in Australia, and the hosting provider is governed under the laws of Australia.

Remember, Dot Com, Net, Org, Info, Us, and Edu is governed by the United States of America. Most word-based domain names, for example, Dot Social, managed by Corporations within the USA.

#Fediverse #ActivityPub #Mastodon #Misskey #DomainName #Domain #WebHosting

Ethos Capital, located in the United States, now manages almost every word-based domain name extension on the Internet.

#DomainName #Domain #Register #Website

If you have not yet received a notice, over the next few weeks, if you own a domain, and your domain register falls under Us Jurisdiction, expect to receive a notice about privacy policy updates.

For example, Name Dot Com, as shown below.

In fact, if you use any digital service under Us Jurisdiction, expect to receive privacy policy updates.

#Name #Domain #DomainName #DomainRegister #Privacy #PrivacyPolicy

In the 90th i was the first proud owner of #PUPE(dot)COM domain but i lost it in 2004 because hazzle money issues.

Nowadays #GoDaddy holds my old #Domainname & want to sell it.

Their first offer is 30.000 USD but this is more than a year sallary.

Works anybody from the #Hacker-/#Maker-Scene here on #Mastodon for #GoDaddy & could advice me with internals employe Hacks to get my old #Internet Home-Harbor back?

RPP, a future protocol for creating and managing domain names?

Read the new article by @bortzmeyer https://www.afnic.fr/en/observatory-and-resources/expert-papers/rpp-a-future-protocol-for-creating-and-managing-domain-names/

"Apparently, attempting to make money from an attack that killed 15 people is okay, but registering a domain containing a hyphen is a step too far."

https://domainincite.com/30661-dead-terrorist-domains-for-sale-just-without-the-hyphens

Il y a des contre-indication pour infomaniak?

Leur offre d'email + nom de domaine semble intéressante pour un petit site. Avant j'aurais utilisé gandi mais bon ça s'est enshittifié.

Bluesky has a hands-off approach to verification. Instead of proactively verifying notable accounts itself, the company encourages users to use a custom domain name as their handle in order to “self-verify.”

#bluesky #self #verification #domainname
https://www.engadget.com/social-media/bluesky-has-a-verification-problem-190047733.html

#linuxguru #help #questions

Looking for anyone who knows #networking. Specifically, #domains and nslookups. I wrote a domain analysis #script, but I did it quickly for myself and some collages. Does anyone have any suggestions for the best #language to use to do extensive domain record lookups? I was thinking #Python, but some where I work use #Ruby. I know I do not wish to stay using #PHP. That was thrown together quick and works, but it is not ideal.

So basically, what language is considered to have the most libraries/tools for #domainname #analysis? Mostly #dns64
stuff.

Basically, this is a simple tool that combines a bunch of what could just be bash commands to get a good overview of a domain name, it's records, and the status of those hosts/ips. Open to any suggestions!

I can go into specifics if anyone bites on this topic.

Salut les fédigens,

Je commence l'auto-hérgement et pour le moment j'ai mon nom de domaine chez ionos.

J'aimerai le passer dans une structure plus coop, plus libre moins capitaliste quoi.

Vous avez de reco de structure qui correspondraient à ces critères (plus ou moins) ?

@tasket wrote:
<<< Using password managers is great. But having them directly interact with web browsers is a dubious proposition [...] >>>

Most people nowadays use smartphones (in particular in airplanes and in airports where these attacks happened).

Both iOS and Android have an autofill feature that works great. The user can use any PWM (password manager) they want; no browser plugins are required. The OS takes care of interfacing between the browser (or any app that shows a page with fields apparently meant for supplying user credentials) and the PWM.

I've been testing KeePassDX on Android and KeePassium on iOS, and I'm getting more and more comfortable with them (disclaimer: use at your own risk). They work fine with every browser on those OSes that I tested.

Compared to passkeys, there are some caveats:

1) If the user tries to log in to a fake site, the PWM will not find the domain name of the fake site in it's database. In that case the user should NOT be tempted to search the database for the domain name of the real site and have the PWM fill in those credentials on the phishing site (passkeys simply will not allow you to do that, but they have a zillion of disadvantages that PWMs do not have).

2) The user must confirm that an https connection is used (passkeys mandate this by themselves). If not, then the domain name shown in the browser's address bar may be spoofed.

3) Obviously the user must also make sure that the PWM's database is backed up after each change, and that unlocking it requires a strong password that the user does not forget - in particular when not typing it regularly, because of using Touch ID or Face ID to unlock said database (effectively retrieving the actual password from secure storage in the phone - after authenticating with biometrics or, alternatively, a screen unlock code).

@tasket wrote:

<<< Users have been infantalized to the point where they are never given advice to check for https + domain spelling, which was supposed to be the actual bedrock of Web security. >>>

I came to understand that it's too hard for most users to understand domain names - in such a way that they will not be fooled (domain names *are* complicated: https://infosec.exchange/@ErikvanStraten/112004464673857528).

And it is not just end users, look at the zillions of domain names that Microsoft has registered. Some idiot decided that users have to log in to login.microsoftONLINE.com. And in NL there are lots of domain names such as ("werken bij" means "work at" or "get a job at"):

    werkenbijexample.com

or

    werkenbij-example.com

instead of

    werkenbij.example.com

Users are also easily fooled by IDN's or by inserting a dash. For example, a lot of developers were tricked into entering 2FA credentials into a page on "circle-ci.com" instead of the original "circleci.com" (more on that, and passkeys, here: https://infosec.exchange/@ErikvanStraten/111960008541089857).

However, passkeys and PWM's (password managers) that check domain names solve only PART of the problem: they don't help if you're creating an account or enter credit card data on a fake website.

Therefore I strongly believe that we should reintroduce reliable certificates that contain additional, human readable, identifying information of the owner of a website (see https://infosec.exchange/@ErikvanStraten/112705978267188751 and follow-ups).

In the end a domain name is just an (often meaningless) alias to an IP-address (or more than one address, but you get the point). They're incredibly cheap and DV certificates are free, which results in what you can see under "Passive DNS Replication" in, for example, https://www.virustotal.com/gui/ip-address/188.114.96.0/relations (tap ••• at the bottom of the list to see more domain names of mostly malicious websites, proxied by Cloudflare and often using Google certs).

@kasperd @agl @rmondello @BleepingComputer

Looks like the JohnMastodon.org domain name is available again!

It was bought in the past and redirected to a toot Eugen Rochko made about John Mastodon: https://web.archive.org/web/20240000000000*/johnmastodon.org