This website uses cookies

Our website uses first- and third-party cookies to optimize your user experience, personalize advertising and analyze website performance. By clicking "Accept" you agree to the processing and transfer of your data to third parties. You can refuse the use of third-party cookies. An overview of all cookies used can be found in our privacy policy. There you will find a description of how to reject third-party cookies at any time (including retroactively).

Blog

The InterNetX Blog provides you with news and background information on innovations concerning domains, servers, SSL and other industry-related topics.

10 Tips for Domain Managers in Home Office

The current situation has forced many workers into home office in order to protect themselves and their co-workers as a result of covid-19 . This is the most appropriate step and an important course of action, but one that also holds organizational and technical difficulties. Security risks, also those relating to company domains, should not be disregarded.


The coronavirus has now affected almost all regions and countries around the world. Many countries are subject to lockdowns and contact restrictions that curb personal interaction with any other people who are not family members. In Germany, for example, residents have been instructed to keep a minimum distance of 1.5 meters to people who are not from their own household in public. 


A large number of companies have already set their employees up in home office and are now facing various organizational and technical difficulties that many of them either did not anticipate beforehand or could not be solved at such short notice.
These include the necessity of supplying employees with a wide array of mobile hardware as well as making company-internal programs available for use in home office.

What can we do from home to protect our domains?

However, besides the regular security risks, the protection of domains owned by the company is an issue that is often overlooked. You can use the following tools or setting in AutoDNS to also keep an eye on everything concerning domain security from home and prevent potential risks:

Tip 1: Activate 2FA

This is now a basic security measure: two-factor authentication. When logging into critical systems, two factors are required. These usually consist of a password and a second  single-use code that is, for example, sent by SMS. In this case, hackers do not only require access to the password, but also to the device that receives the single-use code. 2FA adds an extra layer of security to your AutoDNS account.

Tip 2: Adjust the IP restriction

The IP restriction ensures that logging into your AutoDNS account can only carried out via a specified IP address. This means that you can not only specify which user  has access to the domains managed in AutoDNS, but also prevent logins via unknown IP addresses.

Tip 3: Adjust ACLs

The access control list should be checked and updated regularly. Make sure that it is still up-to-date during this critical time. This is easily done in AutoDNS with just a few steps. Enter the settings above the notifications in the AutoDNS platform and then go to the area for “rights”, where you can use the “+/-” symbols at the top right to add or  remove users.

Tip 4: Adjust settings for notifications

The notifications function in AutoDNS keeps you informed about everything related to domains. You can select which kind of notifications you want to receive to make sure that you are always up-to-date.

Tip 5: Activate domain monitoring

Prevent unwanted transactions of your domains with domain monitoring. Depending on the setting, you will receive a notification by email or SMS as soon as the system detects a transaction. Domain monitoring is carried out every 30 minutes so that you can react quickly to any unwanted domain transactions.
In order to make use of this service, you only need to specify an email address and mobile phone number in the AutoDNS database.

Tip 6: Use DomainSafe

DomainSafe protects your domain from access by unauthorized third-parties. But how do you lock away a domain? By keeping it in a virtual safe, protected by a PIN/mTAN procedure. This prevents unauthorized DNS changes and ensures that your domains are safeguarded.

Tip 7: Activate the dispute alarm

The dispute alarm is the optimal service for those who have several .de domains and want to keep a good overview of them during the crisis. DENIC, the registry for .de domains, offers domain owners the possibility to submit dispute entries, which prohibit the transfer of disputed domains to third parties.
Once you have set up a dispute alarm in AutoDNS, you will receive a weekly report in which you can see whether a dispute entry exits and informs you when an entry is removed.

Tip 8: Protect name server data

In order to prevent the potential manipulation of data in the domain name system (DNS), a domain name system security extension (DNSSEC) can be implemented to protect queried data. The DNS does not include any measures to protect content data, which makes it prone to manipulation or falsification while passing through the required caches. This is why the DNSSEC extension is important. This security measure safeguards the path between the DNS servers and validated DNS clients – and in doing so, also protects your domain.

Tip 9: Ensure the availability of your name server

Unrestricted access to the DNS data is important, but can be delayed due to long distances between client and name servers. If a server cannot be reached, all users worldwide are affected.
But this in not the case with Anycast. A group of name server locations are allocated an identical IP address. Queries are sent directly to the location that is geographically closest. NodeSecure is the InterNetX Anycast service, which has a distribution of 50 different name server locations around the world, thereby ensuring that the DNS remains available.

Tip 10: Protect domains at server level

It is also important to protect your domains at server level from, for example, DDoS attacks, as these do not only affect website content. InterNetX offers various backup tools:
Using DDoS Protection not only ensures that a DDoS attack is defused, but also maintains the availability of services and websites.
A web application firewall (WAF) enables protection against attacks carried out via HTTP.
It is possible to activate a WAF with backdoor prevention using PROCEED.

These measures will make sure that your domains are well-protected at all times and also during the corona crisis.
If you have any questions about our products and services and would like to optimize your domain protection, please ask our sales team for a personal consultation. We are also working from home office to support you.

Give me a consultation