Για να ensure the security of σα? website και protect σα? visit?s, all τομ?α?s under .boo, .day, .dev, .page, και .rsvp must use HTTPS. This guide will help you configure SSL/TLS c?rectly.
1. What is HTTPS?
HTTPS (Hypertext Transfer Protocol Secure) encrypts data between σα? website και its visit?s. It προηγο?μενοents eavesdropping και ensures data integrity.
2. Obtaining an Πιστοποιητικ? SSL
NICENIC provides trusted SSL certificates. You can learn m?e και αγορ?/configure a certificate εδ?: https://nicenic.net/ssl-certificates/
3. Installing the Πιστοποιητικ? SSL
Ακολο?θηση σα? web server’s instructions to install the certificate. Common servers include:
Apache: https://httpd.apache.org/docs/current/ssl/ssl_howto.html
Nginx: https://nginx.org/en/docs/http/configuring_https_servers.html
IIS (Windows): https://docs.microsoft.com/en-us/iis/manage/configuring-security/how-to-set-up-ssl-on-iis
4. Enf?ce HTTPS
Once σα? certificate is installed:
Redirect all HTTP traffic to HTTPS.
Update internal links και resources to use HTTPS.
Verify that σα? website is fully accessible via HTTPS.
5. Keep Πιστοποιητικ? Ενημερ?θηκε
SSL certificates have expiration dates. Ensure certificates are renewed bef?e they expire και check σα? website regularly to maintain uninterrupted secure connections.
]]>
DNSSEC helps protect σα? τομ?α?’s DNS rec?ds from being tampered with during DNS resolution. It adds a layer of verification so that DNS resolvers can confirm the DNS response really comes from the c?rect source.
Στο NiceNIC, DNSSEC usually involves two sides:
Your DNS provider ? nameserver provider generates the DNSSEC rec?ds.
NiceNIC, as σα? τομ?α? registrar, helps submit the DS rec?ds to the registry when the TLD supp?ts DNSSEC.
Αν DNSSEC is not configured c?rectly, σα? τομ?α? may show DNSSEC err?s, ? in m?e serious cases, some users may not be able to access σα? website.
What Is DNSSEC?
DNSSEC stκαιs f? ?νομα Τομ?α System Security Extensions.
In simple terms, DNSSEC helps verify that the DNS answer f? σα? τομ?α? has not been changed ? f?ged during the lookup process.
F? example, when someone visits σα? website, DNS is used to find the c?rect server IP address. DNSSEC helps make sure that the DNS result is authentic και has not been replaced with false data.
DNSSEC does not replace SSL, website security, hosting security, ? email security. It only helps protect the DNS resolution process.
When Do You Need DNSSEC?
- You may want to enable DNSSEC if:
- Your website hκαιles sensitive user inf?mation.
- You run business email, login systems, payment pages, ? customer p?tals.
- You want stronger τομ?α? security.
- Your DNS provider supp?ts DNSSEC.
- Your τομ?α? extension supp?ts DNSSEC.
Inc?rect DNSSEC settings may affect τομ?α? resolution.
Imp?tant DNSSEC Δι?ρκειαs
DNSKEY: A DNSKEY rec?d is generated by σα? DNS provider. It is used as part of the DNSSEC validation process.
DS Rec?d: A DS rec?d connects σα? τομ?α?’s DNSSEC setup with the parent registry zone. In most cases, σα? DNS provider gives you the DS rec?d, και you need to add it through σα? registrar.
?νομαserver: Your nameservers decide wεδ? σα? τομ?α?’s DNS rec?ds are managed. Αν you change nameservers, σα? DNSSEC rec?ds may also need to be updated.
How to Enable DNSSEC f? Your Domain
Step 1: ?λεγχο? Whether Your DNS Provider Supp?ts DNSSEC
Σ?νδεση to the platf?m wεδ? σα? DNS is managed.
This may be:
Your τομ?α? registrar, εδ? is NiceNIC
Your hosting provider
Your DNS provider
Your own DNS server
Another third-party DNS υπηρεσ?α
Make sure DNSSEC is supp?ted και enabled tεδ?.
Step 2: Αποκτ?στε the DS Rec?d from Your DNS Provider
After enabling DNSSEC, σα? DNS provider should provide DNSSEC inf?mation such as:
Key Tag
Alg?ithm
Digest Τ?πο?
Digest
DS Rec?d
Please copy the inf?mation exactly as provided.
Even one inc?rect character may cause DNSSEC validation failure.
Step 3: Προσθ?κη the DS Rec?d in Your NiceNIC Account
Σ?νδεση to σα? NiceNIC account και go to σα? τομ?α? management page.
Then add the DS rec?d provided by σα? DNS provider.
Αν you are not sure wεδ? to add it, please contact our supp?t team και provide the DS rec?d from σα? DNS provider.
Step 4: Wait f? DNSSEC Propagation
After the DS rec?d is added, it may take some time f? the update to propagate.
During this period, DNSSEC check results may not update immediately.
Step 5: Verify DNSSEC Κατ?σταση
After propagation, you may check σα? τομ?α?’s DNSSEC status using a DNSSEC checking tool ? by contacting our supp?t team.
Αν DNSSEC is c?rectly configured, the DNSSEC validation result should show a valid chain of trust.
When Should You Disable ? Αφα?ρεση DNSSEC?
You may need to remove ? update DNSSEC rec?ds if:
- You changed σα? nameservers.
- You moved DNS management to another provider.
- Your DNS provider disabled DNSSEC.
- Your DS rec?d no longer matches the current DNSKEY.
- Your website ? email has DNS resolution issues after a DNS change.
In this case, you may need to remove the old DS rec?ds first, wait f? propagation, και then re-enable DNSSEC with the c?rect new rec?ds.
Why Does My Domain Show "DNSSEC Inf?mation Is Currently Unavailable"?
You may see this message:
DNSSEC inf?mation is currently unavailable f? this τομ?α?.
This can happen f? several reasons:
- DNSSEC has not been enabled f? this τομ?α?.
- ?χι DS rec?d has been added at the registrar level.
- The τομ?α?’s current nameservers do not supp?t DNSSEC.
- The τομ?α? recently changed nameservers.
- The DS rec?d does not match the current DNSKEY.
- The DNS provider has not published the required DNSSEC rec?ds c?rectly.
- The registry ? DNSSEC query is temp?arily unavailable.
However, if σα? website ? email is not resolving c?rectly, please contact supp?t so we can help review the DNSSEC configuration.
What Inf?mation Should I Provide to Supp?t?
Για να help us check DNSSEC issues faster, please provide:
- Your τομ?α? name
- Your current nameservers
- Whether you recently changed nameservers
- The DS rec?d provided by σα? DNS provider
- A screenshot of the DNSSEC setting from σα? DNS provider
- Any DNSSEC err? message you received
- Whether σα? website ? email is currently affected
Συχν?? Ερωτ?σει? Σχετικ? DNSSEC
1. Is DNSSEC required f? every τομ?α??
?χι. DNSSEC is not required f? every τομ?α?.
However, it is recommended f? τομ?α?s that need stronger DNS security, especially business websites, email υπηρεσ?αs, login systems, financial υπηρεσ?αs, και customer p?tals.
Αν you are not sure whether you need DNSSEC, please confirm whether σα? DNS provider supp?ts it και whether you are comf?table managing DNSSEC rec?ds.
2. Is DNSSEC the same as SSL?
?χι.
SSL protects the connection between the user’s browser και σα? website.
DNSSEC protects DNS resolution by helping verify that DNS responses have not been tampered with.
F? better security, many websites use both SSL και DNSSEC, but they are different technologies.
3. Can NiceNIC generate DNSSEC rec?ds f? me?
In most cases, DNSSEC rec?ds are generated by σα? DNS provider, not by the registrar.
NiceNIC can help submit the DS rec?d to the registry when the τομ?α? extension supp?ts DNSSEC.
Αν you use a third-party DNS provider, please enable DNSSEC tεδ? first και then provide us with the DS rec?d.
4. Why does DNSSEC fail after I change nameservers?
This is one of the most common DNSSEC issues.
When you change nameservers, σα? old DNSSEC rec?ds may no longer match the new DNS provider’s DNSKEY.
Αν the old DS rec?d remains active at the registry level, DNSSEC validation may fail.
Bef?e ? after changing nameservers, you should check whether the DS rec?d needs to be removed ? replaced.
5. What happens if the DS rec?d is wrong?
Αν the DS rec?d does not match the DNSKEY published by σα? current DNS provider, DNSSEC validation may fail.
This may cause some DNS resolvers to reject the DNS response.
As a result, σα? website, email, ? other υπηρεσ?αs may become unreachable f? some users.
6. I do not use DNSSEC. Do I need to do anything?
Αν you do not use DNSSEC και σα? τομ?α? has no DS rec?ds, usually no action is needed.
However, if σα? τομ?α? has old DS rec?ds from a προηγο?μενοious DNS provider, you should remove them to avoid DNSSEC validation problems.
7. Why does my DNSSEC status still show an err? after I updated the rec?d?
DNSSEC updates may take time to propagate.
Αν you recently added, removed, ? changed DS rec?ds, please wait f? DNS propagation και check again later.
Αν the issue continues, please contact supp?t και provide σα? τομ?α? name, current nameservers, και DS rec?d.
8. Can DNSSEC cause my website to stop w?king?
Ναι, if DNSSEC is inc?rectly configured.
Common causes include:
- Wrong DS rec?d
- Old DS rec?d after nameserver change
- Missing DNSKEY
- DNS provider not publishing DNSSEC rec?ds c?rectly
- Λ?ξηd ? invalid DNSSEC signatures
9. Should I remove DNSSEC bef?e changing nameservers?
In many cases, yes.
Αν you are moving to a new DNS provider και you are not sure how to migrate DNSSEC safely, removing the old DS rec?d bef?e changing nameservers can reduce the risk of DNSSEC validation failure.
After the new nameservers are active και DNSSEC is enabled at the new DNS provider, you can add the new DS rec?d again.
10. What should I do if I see “Failure to get DNSSEC info”?
This usually means the system could not retrieve valid DNSSEC inf?mation f? the τομ?α?.
Please check:
- Whether DNSSEC is enabled
- Whether the DS rec?d has been added
- Whether the nameservers supp?t DNSSEC
- Whether the DS rec?d matches the DNSKEY
- Whether you recently changed nameservers
How to set up DNSSEC f? a τομ?α? εγγραφ?ed on NiceNIC?
1. Σ?νδεση to σα? NiceNIC account και navigate to σα? τομ?α? management page. Find the τομ?α? you wish to enable DNSSEC f? και click Διαχε?ριση.
2. In the τομ?α? management section, you should see the DNSSEC button. Κλικ on the DNSSEC button to access the DNSSEC settings page.
3. Enter the required inf?mation f? DNSSEC configuration (this will typically include DNSSEC key details provided by σα? DNS hosting provider).
4. Once you've entered the inf?mation, click Προσθ?κη to enable DNSSEC f? the τομ?α?. Here’s an example of a successful DNSSEC setup:
After entering the necessary DNSSEC key data (usually the DS rec?d), you'll receive confirmation that DNSSEC has been successfully added to σα? τομ?α? settings.
The DNSSEC status will show as enabled και you'll be able to see the public keys και other details.
With DNSSEC τ?ρα enabled, σα? τομ?α? is better protected against DNS-related attacks.
Στοtention: if σα? τομ?α? name was transferred into NiceNIC from another Καταχωρητ??, και you hope to disable the DNSSEC προηγο?μενοiously with the old Καταχωρητ??, please firstly check the latest whois, if you see "DNSSEC: unsigned", then it means during the τομ?α? transfer process, the DNSSEC settings have been disabled automatically by the old Καταχωρητ??, while if it is "DNSSEC: signed", please check the τομ?α? management section at σα? control panel at NiceNIC, you should see the DNSSEC button, please click on the DNSSEC button to access the DNSSEC settings page.
]]>
After the τομ?α? is transferred, the name servers remain set to those associated to the τομ?α? bef?e transfer.
Αν you had child name servers f? σα? τομ?α? εγγραφ?ed through another Καταχωρητ??, you may need to εγγραφ? them again through σα? Account.
]]>
Αν you're just transferring the τομ?α? registration, σα? hosting υπηρεσ?α will be unaffected, και tεδ? will be no need to change name servers. Although the name servers should be transferred as part of the process, it's always a good idea to have a rec?d of them.
Αν you wish to specify the name servers to the default DNS servers as provided by NiceNIC you can reset the name servers after the transfer has been completed.
Steps
Σ?νδεση to σα? account. Select the Ον?ματα Domain tab.
Select the τομ?α? that you want to change name servers f?.
From within the DNS Διακομιστ?? section click on Επεξεργασ?α DNS Server.
Change the name servers as required, leaving any of the fields blank will retain the ?iginal DNS server.
The name servers are not actually changed until the transfer process is complete. Αν you wish to make an immediate change to the name servers, you may do so with the Καταχωρητ?? you are transferring from.
]]>
Bef?e purchasing the transfer of any gTLD (e.g., .COM / .NET / .ORG / .BIZ / .INFO etc.) ? new gTLD (e.g. .CLUB / .CLOUD / .TRADE / .TOP etc.), make sure σα? τομ?α? meets the following conditions:
1. Your τομ?α? was εγγραφ?ed ? transferred at least 60 days ago;
2. The τομ?α? is unlocked at the current Καταχωρητ?? (its Whois status should be OK ? Active).
Also,you need to request an up-to-date Auth/EPPcode f? the τομ?α? at σα? current Καταχωρητ??.
Αν all criteria are met, you should be able to complete the transfer successfully.
Still, some ccTLDs (.ES και .UK) have additional transfer requirements και/? exclude some points from the list above.
NOTE: Make sure the τομ?α? status is active, not expired. Αν you wish to transfer an expired τομ?α? to NiceNIC, please contact our Supp?t Team email supp?t@nicenic.net f? further assistance.
]]>
Bef?e submitting a transfer request with NiceNIC, make sure σα? τομ?α?s are prepared f? transfer through σα? current registrar. This is generally done by removing transfer locks και getting the necessary Auth codes.
Learn how to prepare τομ?α?s f? transfer in accounts sections of several popular registrars.
Once those preparations are made, simply follow the steps below to transfer σα? τομ?α?s:
?χιte: Each τομ?α? has a unique Auth code και has to be unlocked f? transfer separately on the current registrar side.
- Σ?νδεση to σα? NiceNIC account.
- Μετ?βαση σε the Transfer to Us page.
- Κλικ on Bulk options.
Enter the τομ?α? names και the Auth codes;
?χιte: Enter each τομ?α? και its Auth code in a new line. The Auth code has to be separated from the τομ?α? name by a comma και one space.
Κλικ on Start Transfer at the bottom of the page.
Double-check the τομ?α? names και add them to Cart. Για να do this, you can use the Προσθ?κη all to cart button f? convenience.
Proceed with the payment.
The transfer is completed automatically in 5-7 days f? most τομ?α?s. Once the transfer of σα? τομ?α?s is completed you will receive the notifications on σα? NiceNIC Primary Ηλεκτρονικ? Ταχυδρομε?ο address, και the τομ?α?s will become manageable in σα? Domain List.
?χιte: Due to technical reasons, it is only possible to submit the transfer f? up to 10 τομ?α? names at once. Αν you need to transfer m?e than 10 τομ?α?s, you can either submit several Μαζικ? Μεταφορ? ?ders ? contact our Supp?t Team f? assistance.
How to ?λεγχο? the Κατ?σταση of Your Μεταφορ? Domain
After initiating a τομ?α? transfer to Nicenic, you can monit? its progress directly in σα? account. This helps you kτ?ρα when the transfer is expected to complete without needing to contact supp?t repeatedly.
Steps to View Transfer Κατ?σταση:
1. Σ?νδεση to σα? NiceNIC account. Μετ?βαση σε "My Products > Ον?ματα Domain".
In the Κατ?σταση column, you will see σα? τομ?α? listed as:
- Pending Transfer: the transfer has been submitted και is in progress.
- Active / Transfer Completed: the transfer is finished.
2. Hover over the inf?mation icon (i) επ?μενο to "Pending Transfer" to view details about Expected approval/completion date
1. What is SPF?
Answer: SPF stκαιs f? Sender Policy Framew?k. SPF is an email authentication stκαιard used to προηγο?μενοent email fraud και spam. It ensures the authenticity και reliability of email by verifying that the sender's τομ?α? name matches the source IP address of the email. SPF rec?ds are st?ed in the DNS rec?d of the τομ?α? name και contain a list of servers that are allowed to send emails. When the recipient receives an email, it checks whether the sender's τομ?α? name has an SPF rec?d και verifies whether the IP address of the sending server is in the allowed list. Αν the verification fails, the recipient may mark the email as spam ? refuse to receive it. Using SPF can help improve the delivery rate και reliability of emails και reduce the amount of spam. Στο the same time, it can also enhance the security of the email system και προηγο?μενοent hackers και fraudsters from using f?ged τομ?α? names to send emails.
2. How to set up SPF f? c?p?ate mailboxes?
Answer:
1. Determine the outgoing server IP addresses of σα? c?p?ate mailbox: These addresses will be added to the SPF rec?d. 2. Σ?νδεση to the DNS management console of σα? c?p?ate mailbox: Usually provided by σα? τομ?α? name registrar ? hosting provider
2. Δημιουργ?α ? edit a TXT rec?d: In the DNS console, find the TXT rec?d ? similar option
3. Enter the SPF rec?d: The f?mat of the SPF rec?d is "v=spf1 +a/+mx +ip4 +ip4:mail.example.com -all", wεδ?:
"v=spf1": specifies the SPF version
"a" ? "mx": indicates that the server is allowed to be verified by the A rec?d ? MX rec?d
"ip4": lists the IP addresses that are allowed to send mail
"mail.c?email.coremail": replaced with the τομ?α? name of σα? c?p?ate mailbox
"-all": indicates that mail from all other sources is rejected
4. Save changes: Make sure the settings in the DNS console are saved c?rectly
3. How to set various types of SPF?
1) Make SPF rec?d with τομ?α? name a rec?d (take c?email.cn as an example)
v=spf1 a:c?email.cn2 -all
2) Make SPF rec?d with τομ?α? name mx rec?d
v=spf1 mx -all
3) Make SPF rec?d with τομ?α? name ptr rec?d
v=spf1 ptr -all
4) Make SPF rec?d with exp?t IP και IP segment settings
v=spf1 ip4:106.52.172.248 ip4:61.164.47.194/28 -all
5) Introduce SPF rec?ds of other τομ?α? names (take spf.ic?email.net as an example)
v=spf1 include:spf.ic?email.net
?χιte: The above rec?ds can be used in combination, but only one pair of rec?ds starting with v=spf1 και ending with -all can appear in the entire txt. F? example: v=spf1 mx ip4:106.52.172.248 include:spf.ic?email.net -all
]]>
Για να be sure that the certificate has been installed c?rectly και w?king properly, as well as that σα? customers are certain a secured connection is enabled και it covers data transmission through σα? website, you have the following indicat?s:
- A padlock/tune icon available in the URL bar.
- ?χι err? messages/ warnings occurred when connecting through https://σα?τομ?α?.tld.
- A Site Seal provided by the Certificate Auth?ity installed και visible.
?χιte : From September 2023, the padlock icon will be replaced by a tune icon in the new Chrome browser version. Google's reasoning is that secured HTTPS connections have become the online n?m, not the exception, και no longer serve as a trust indicat?. As such, the tune icon itself will not be a trust indicat? but will provide detailed inf?mation about a website's connection και settings. So moving f?ward, when using a Chrome browser, the primary indication of a successful SSL certificate installation on a site will be the absence of security warnings :
An SSL certificate must be activated after αγορ?. Installation instructions will be sent to you after activation. After that, you can use the NiceNIC.NET Account Panel to manage σα? certificate.
Αγορ? It
Start by purchasing the appropriate SSL certificate f? σα? requirements. Select one of the categ?ies mentioned above.
Activate It
You can instantly activate σα? SSL certificate after αγορ? through the Account Panel (? later, if you prefer.) During the activation process, the τομ?α? name και CSR code will be assigned.
Install It
You will receive instructions on how to install σα? SSL certificate once it has been validated και issued. Μη διστ?σετε να επικοινων?σετε μαζ? μα? μ?σω “Υποβολ? Αιτ?ματο?” για να ζητ?σετε βο?θεια στην εγκατ?σταση πιστοποιητικο? SSL.
Διαχε?ριση It
Through σα? Account Panel, you can manage σα? SSL certificates, including renewal και reissuance.
]]>
1. Introduction
SSL certificates are used to create an encrypted channel between the client και the server. Transmission of such data as credit card details, account login inf?mation, any other sensitive inf?mation should be encrypted to προηγο?μενοent eavesdropping.
With an SSL certificate, data is encrypted pri? to being transmitted via Internet. Encrypted data can be decrypted only by the server to which you actually send it. This ensures that the inf?mation you submit to websites will not be stolen.
Starting from 06/08/2014, Google announced that having an SSL certificate installed on σα? website would increase σα? ranking position, which is another great reason to use an SSL.
The certificate itself represents base64 encoded data that contains inf?mation about the entity the certificate was issued f?, public key required f? encryption και digital signature verification, και digital signature created with the private key of the certificate issuer.
An SSL certificate should be installed on the server side. When you access a website secured by an SSL certificate issued by a trusted Certification Auth?ity, you will see https:// at the beginning of its URL. A browser will also show the connection as secure by displaying a “l(fā)ock” icon in the address bar:
2. Τ?πο?s of SSL certificates
SSL certificates can be divided into 3 validation groups:
Domain Validation Πιστοποιητικ?
Requires a certificate applicant to prove his/her control over the τομ?α? name only. The issued certificate contains a τομ?α? name that was supplied to the Certification Auth?ity within the certificate request.
Organization Validation Πιστοποιητικ?
Requires a certificate applicant to prove that his/her company is a εγγραφ?ed και legally accountable business, και to pass τομ?α? validation. The issued certificate contains a τομ?α? και company name of the certificate applicant.
Επεκταμ?νο Validation Πιστοποιητικ?
Includes validation requirements of two validation types mentioned above και additional requirements. The issued certificate contains a τομ?α? και company name of the certificate applicant.
]]>
SSL certificate installation is typically perf?med by the hosting company that provides υπηρεσ?αs f? the τομ?α?. However, you may also choose install an SSL certificate σα?self. Select σα? server type from the list below to find detailed instructions f? installation.
The SSL on σα? τομ?α? name was activated, please find και add the DNS rec?ds to complete the verification bef?e you can download the SSL files through σα? control panel:
Ο Λογαριασμ?? Μου > Τα Προ??ντα Μου > Πιστοποιητικ? SSL > Λεπτομ?ρεια > ....
After you complete the DNS rec?d's verification, you can download the SSL files by the same approach.
Installing Πιστοποιητικ? SSL ?χιtes
Αν you host σα? τομ?α? name with NiceNIC, simply provide us with σα? certificate και we'll be happy to install it f? you.
Please note that on all NiceNIC, Κοιν?χρηστη Φιλοξεν?α servers, a special NiceNIC, SSL plugin installs a 1-?το? free PositiveSSL certificate automatically on the newly added subτομ?α? ? add-on. It w?ks the same way f? the main τομ?α? in the newly αγορ?d hosting account. The plugin can also be used f? manual installation (in a few clicks) of PositiveSSL και EssentialSSL certificates.
A dedicated IP address is required to install an SSL certificate. However, you may install σα? SSL certificate on a shared IP address using the ?νομα Διακομιστ? Indication (SNI) protocol extension available in σα? cPanel. You can learn m?e about the differences between a dedicated IP και SNI technology in this article.
]]>