IT Horror Stories with Jack Smith – The Incident Log

Episode 3 : “Fun” With Domain Names

An Industry Insider Explains All About DNS That You Didn’t Knew

Weโ€™re unpacking the critical steps behind migrating a domain name โ€” a process that can disrupt everything from search engine indexing and referral traffic to email deliverability and authentication.

Join us together with an industry expert and let’s explore the technical risks, from broken redirects to, yes โ€” forgetting to update your SPF records and wondering why your emails end up in spam (donโ€™t worry, youโ€™re not the first).

In the end itโ€™s all about executing that clean, strategic transition that protects your visibility, performance, communications and a good night sleep.

Listen now on Apple Music, Spotify, Deezer, Youtube or where-ever you get your panic attacks.

Fun With Domain Names โ€“ The Ultimate Guide to Domain Mayhem

Welcome back, dear reader. If youโ€™ve ever found yourself knee-deep in domain name dramaโ€”whether buying a company, tangling with registrars, or just wondering why your shiny new site wonโ€™t send emailsโ€”youโ€™re in the right place. In this blog, weโ€™re untangling the hilariously messy world of domain names, sharing real war stories, and serving up practical advice along the way.

So grab a coffee, get comfortable, and letโ€™s explore the wild, weird, and occasionally frustrating universe of domains and DNSโ€”with plenty of laughs and lots of honesty.

Welcome Back: The Domain Dive

โ€œWell, thank you. What an opportunity. Wow, do I feel the sarcasm flowing into the room here or are we good?โ€

If youโ€™re reading this, chances are that at some point in your tech journey, domains have made you want to flip a desk. Jack and Chrisโ€”our intrepid podcast explorersโ€”start their conversation with just the right amount of sarcasm, because thatโ€™s the only way to get through what follows.

Domains, DNS, registrars, zone files, TLDs and subdomainsโ€”theyโ€™re like the middle children of IT infrastructure: overlooked until something goes wrong. And boy, do things go wrong.

Whoโ€™s this post for? Anyone whoโ€™s ever managed domains, been part of an M&A, is thinking about buying a company, handles DNS, or just wants to avoid a few headaches. Whether youโ€™re an IT pro or the unlucky person who got handed the IT keys โ€œjust this once,โ€ youโ€™ll find plenty here to nod your head (or scream into a pillow) about.

Getting Nerdy: Domain Basics and DNS

Domains arenโ€™t just about picking a cool website address. Theyโ€™re the cornerstone for everything internet-facing, and transferring or managing them can make or break IT during mergers and acquisitions.

Hereโ€™s how it starts:

  • Websites live on domains.
  • Email flows through those same domain names.
  • DNS (Domain Name System) tells the world how to find your stuff.

Sounds simple? Of courseโ€”it never is.

Common Wisdom: Never Trust Your Web Designer With Your Domain

One of the earliest tips (and a recurring war story): donโ€™t let your web developer own your domain registration.

โ€œYou have to make sure when you register your domain that it is not in the name of your web designer so you can access it when you fire them or when they want to hold you hostage later on because you didnโ€™t pay their billsโ€ฆโ€

If you only learn one thing from this entire blog, itโ€™s always, always control your own domain registration.

Why Is This So Important?

  • If your developer or agency controls your domain, youโ€™re at their mercy.
  • The risk? Locked websites, emails pointed to who-knows-where, downtime, and big headaches during company changes.

Ownership Surprises: The Company Acquisition Domain Scavenger Hunt

Letโ€™s say youโ€™re buying a company. You might think transferring IT systems, moving emails, or shifting CRM data is the hard part. Hahโ€”no. The true boss level is domain inventory.

The Great Domain Hunt

Hereโ€™s a true story: You ask the company youโ€™re acquiring for a list of their domains. They send you a handfulโ€”maybe a .com or two and call it a day.

But thenโ€ฆ

  • You find six more: .nets, .orgs, .fr, .de, .ca, .cn domains
  • Some registered thanks to spammy letters about โ€œsomeone is trying to steal your domain!โ€
  • Domains registered in places like Liechtenstein, Luxembourg, Greeceโ€”because someone thought it looked cool.
  • Every one costing โ‚ฌ50-60 per yearโ€”just draining money for no real reason.

So, whoโ€™s cleaning up that mess? Yup, you are.

The Ownership Maze

Sometimes the domains are in one account. Sometimes every freelance app developer, intern, or old marketing staff registered them somewhere else.

โ€œThe domain is like the unloved stepchild that is kind of important but you kind of forget about it too. And you donโ€™t know who registered itโ€ฆโ€

Tracking them all down can feel like this:

  1. Get a partial list from the current team.
  2. Realize there are more domains (in random TLDs, through old partners or staff).
  3. Find out youโ€™re paying for all of themโ€”sometimes decades after they mattered.

Pro Tip: Build a complete domain inventory. Run a WHOIS, use tools like Subdomain Finder (yes, the ones used by hackers), and be thorough.

Lost in Transfer: Zone Files, Transfers, and TLD Shenanigans

So, you think youโ€™ve found all the domains. Youโ€™re ready to transfer, right? Pleaseโ€”this is where IT horror stories really begin.

The โ€œCan I Get Your Zone Files?โ€ Moment

Ask a small business for their zone files and youโ€™ll usually get blank stares:

โ€œHi, can you please provide me the zone files?โ€

Muffled panic ensues.

Why? Because most small companies have no idea what DNS, zone files, or namesevers are. And their domain might be with a random registrar, hidden behind a provider interface.

How Are Zone Files Usually Handled?

  • Sometimes you get a screenshot of some DNS records (โ€œHere you go!โ€).
  • Sometimes, nothing at all.
  • Best method in a pinch? Use command line tools like nslookup to scrape what you can.nslookupset type=anyyourdomain.com

Does this get everything? Nope. Most DNS now limits what can be queried for security, but you might get the A, MX, CNAME, etc.

Oh Wait, Now Disable DNSSEC!

Domains today often have DNSSEC (DNS Security) turned on. Transferring domains means disabling DNSSEC, at least until youโ€™ve moved everything over, otherwise signatures break and your records donโ€™t resolve.

Enter: The Auth Code

Transferring domains involves โ€œauth codesโ€ (sometimes called EPP codes or transfer keys). The problems:

  • Codes may be valid only 3 days, sometimes 3 months.
  • Every country-level TLD (ccTLD) is different. So is every registrar.
Two Types of Transfer
  1. Registrar Transfer (moving between companies).
  2. Ownership Transfer (changing whoโ€™s on the WHOIS record).

Sometimes these happen together. Sometimes separately. Sometimes, faxes are even involved (no, really. Okay, not as much anymore. But TELEX? Thatโ€™s another story).

Security Pitfalls: When The Bad Guys (or Employees) Move Faster Than You

Surprise! Domains are a goldmine for attackers and rivals during mergers, because:

  • Details about the acquisition get leaked? Phishers target those domains for takeovers.
  • Forgotten admin emails point to ex-employees or boxes no one checks.
  • Bad guys swoop in and transfer the domain before you finish paperwork.

โ€œSo despite all of that, letโ€™s say you initiated the transfer, you likely need to approve it from all the outdated email addressesโ€ฆ which will lead to mailboxes no longer readโ€”and thatโ€™s not a problem, because somebody else already registered the domain for youโ€ฆโ€

Securing Your Domains

  • Audit all contact email addresses associated with domains.
  • Make sure you own the mailboxes, and they actually work.
  • Set up a proper, company-controlled โ€œadminโ€ contact (not marketing hotmail, not the CTOโ€™s cousin).
  • Anticipate phishing and social engineeringโ€”especially after big public M&A announcements.
The Asset Value Angle

Domains arenโ€™t just URLsโ€”they can be serious assets. Many companies wind up with old, unused domains worth thousands (or more). Always vet and secure these during your due diligence.

Registrar Fails: Where Is My Domain and Who Are You?

No blog on domain drama is complete without a few registrar horror stories.

When Registrars Vanish

Take โ€œRegisterFlyโ€ as a legendary example. Once an ICANN-accredited registrar, it disappearedโ€”taking all their customer records with them.

โ€œSo you have like 100,000โ€“200,000โ€“300,000 domains and you donโ€™t actually know who owns them. Maybe they can prove by the original receipt or something. Itโ€™s a big mess to track something like that downโ€ฆโ€

Data Escrow and WHOIS Privacy

These days, registrars have to back up WHOIS data to third parties, and (thanks to GDPR) most owner info is hidden by privacy shields.

  • Great for privacy
  • But makes buying, selling, and transferring domains a wild goose chase
Pro Tip
  • For each domain, keep your original registrar confirmation and invoiceโ€”thatโ€™s often your only proof if a registrar goes under.

Lost and Found: Domain Case Studies

Here are some standout vignettes that will make any IT pro groan in recognition (or laughter):

The Amazon.be Saga

Jeff Bezos owns Amazon everywhereโ€”except in Belgium (amazon.be). Why? That domain is legally owned by a Volvo insurance company, named after a car model. “Perfectly legal,” as they say. Even offers with lots of zeroes couldnโ€™t pry it free.

So, Amazon Belgium? You find them at amazon.com.be, not amazon.be.

The Case of the Twitter Domains

When Twitter rebranded to X, someone at the top decided to drop all the country-level Twitter domains (.de, .ca, etc.). Opportunists scooped them up immediately. Traffic = money.

Moral of the Story

Domains have lasting value. Let one expire, and youโ€™ll probably never get it back.

Domain Pricing: Surprises in Your Next Renewal

Hold on to your wallet. Your $10 domain could be $1000 next yearโ€”no joke.

โ€œAs of next year, youโ€™re going to be paying for your domainsโ€ฆ you paid $10 so far. Next year itโ€™s going to be $1,000 a year. Itโ€™s not unheard of.โ€

Hereโ€™s how:

  • Registries (the companies that run TLDs like .com, .io, etc.) can increase prices with little warning. Sometimes 7โ€“10% each year.
  • Registrars (the sellers) may offer โ€œ99-centโ€ sales for year one, but auto-renew at full price forever after.
  • Forget to turn off auto-renew? Thatโ€™s money down the drain, especially for forgotten or unused domains.
The Fake Renewal Scam

In the past, companies like โ€œDomain Registry of Europeโ€โ€”which wasnโ€™t your actual registrarโ€”sent scary letters, telling you to renew by mail at high prices. Hidden fine print: you were actually transferring your domain to them!

Fun with Regulations: Because Bureaucracy Never Sleeps

You thought GDPR was wild? Get ready for NIS2, the newest EU directive.

  • Soon, many online businesses (including domain providers) will be required to gather more personal info for domain registrations.
  • โ€œKnow Your Customerโ€ (KYC) checks: Yes, you might need to provide a valid phone number. Shoe size and blood type not yet required.
  • All this bureaucracy is supposed to prevent crime; itโ€™s debatable whether it does.

โ€œIt doesnโ€™t prevent any crime because if you are a criminal, you can come up with a valid address and phone number that is not you and buy those listsโ€ฆโ€

Cookie Consent Fatigue, But For Domains

Like cookie banners, expect a surge of new companies trying to help you comply with address validation, KYC, and more. Every EU country will implement their own flavor. What fun.

Wrapping Up: What Did We Learn?

So, what can we glean from the bumpy, bureaucratic, and often absurd world of domain management? Hereโ€™s the quick-and-dirty:

Key Takeaways

  • Own your domains directly. No matter what your web designer, agency, or IT partner says.
  • Do an annual domain inventory. Consolidate your domain list and check for orphans.
  • Verify your WHOIS contact info for every domainโ€”make sure it points to a mailbox you control.
  • Document DNS (zone) records and backup copies offline, especially before transfers.
  • Anticipate pricing changes. Donโ€™t be surprised by sticker shock next year.
  • When acquiring domains (e.g., buying a business), cross-check all TLDs, variations, and legacy names.
  • Watch for โ€œloyalty leaksโ€โ€”domains that expire or are left to squatters.

โ€œMany people just forget about the domain names. The renewal invoice comes in and they just pay becauseโ€ฆ itโ€™s a domain name.โ€

And the Final Word

Take domains seriously, but bring your sense of humor (and a stiff drink). Because, as Jack and Chris remind us, thereโ€™s always more to this storyโ€”and more chaos ahead!

Bonus: Common Pitfalls & Power Tips

Common Domain Management Pitfalls

  • Relying on just one person to manage domains.
  • Ignoring ccTLDs (.fr, .de, .cn), leaving them for others to scoop up.
  • Failing to backup and record DNS settings before changes.
  • Forgetting DNSSEC, SPF, DMARC, or TXT recordsโ€”your email will break!
  • Delays in approval due to unreachable admin contacts.
  • Domain transfer codes expiring before you use them.

Power Tips

Regular Domain Audits:
At least once per year, review every domain your company owns. Check their expiration, where theyโ€™re registered, and update info.

Use a Central Credentials Vault:
Store login and domain registration info in a secure, shared vault for your team.

Beware Registrar Promotions:
Look beyond the first-year price. Check long-term renewal rates.

Monitor Your Email Deliverability:
If invoices or important emails stop working after a migration, immediately check SPF, DKIM, and DMARC records.

Donโ€™t Skimp on Documentation:
Document all steps when transferring a domainโ€”who, where, when, and what records you moved.

Jack Smith

Leave a Reply

Your email address will not be published. Required fields are marked *