This DNS records upgrade will make your website much more safe. We all know about SSL certificates and how important they are to websites these days. SSL certificates protect the data that is transmitting from the server to the users’ computer. Without an SSL in place, bad guys can sniff the transactional data between a website and a server and scrape out passwords and other sensitive information.
And that’s what an SSL certificate protects this transfer process by encrypting all the data, and requiring a decryptor to understand what it is so only the trusted parties can read the information. So SSL certificates are super important, but I’ll bet you didn’t know about a DNS record that goes with SSL to protect their issuing status.
See the issue is there are tons and tons of SSL issuers. Because of this, anyone in the world can spin up an SSL certificate for your website even if they do not own your website and embed malicious content into that SSL. This was a huge security issue up until recently when the Certification Authority Authorization (CAA) system came into play.
Basically, it is a DNS record called CAA that shows exactly who issued your SSL and does not allow anyone to issue any other SSL if they are not from that provider. This is a huge deal for security and it’s something that anyone who owns an SSL or website should be looking into setting up.
It’s super simple to do, just navigate to your domains DNS settings and add a new CAA record. In this record you are going to want to put:
yourdomain.com CAA 0 issue “skypnt.io”
Replace yourdomain.com with your actual doman and “skypnt.io” with whoever issued your SSL. That’s it! Now you are protected against anyone hijacking your SSL and using it for malicious activity. Need help setting up the CAA record? Drop us a line or call us at 406-208-8733