DNS Missing features and Upgrade of PowerDNS.

[deleted] · Mar 3, 2021

[centos@apa ~]$ sudo pdns_server --version
Mar 03 10:21:37 PowerDNS Authoritative Server 4.3.1 (C) 2001-2020 PowerDNS.COM BV
Mar 03 10:21:37 Using 64-bits mode. Built using gcc 8.3.1 20191121 (Red Hat 8.3.1-5) on Oct  7 2020 17:01:38 by mockbuild@localhost.
Mar 03 10:21:37 PowerDNS comes with ABSOLUTELY NO WARRANTY. This is free software, and you are welcome to redistribute it according to the terms of the GPL version 2.

Latest release its 4.4.1, please make sure DNS , FIREWALL, WEB SERVERS are always UP to date. DO not lack behind.

And to be honest since last time I mentioned the DNSSEC issue should had been long implemented, if you want this market, i would not mention it to have it for fun! This is not a game not a toy, nor a trofee, to please look into DNSSEC its quite OLD technology to be addopted, again the fact that people here do not demand it, it does not mean they know what the benefits, and so their mails go in spam, their domains are not secure and can be easily DNS hijacked, this is a serious security issue.

Thus you ignoring my call for a few months ago when I mentioned this it affects us in this way:

-DNSSEC is related to DANE

DANE will not work if the DNSSEC validation passes first

Examples here:

AAPanel domain: https://dane.sys4.de/smtp/uhls.email - no validation passes
External Domain: https://dane.sys4.de/smtp/mailcow.email - see the difference?

Again. these are serious security issues in todays fast moving world, I get the newbie people here complaining like noobs about their mails, and domains and god knows what, yet no one complains that AApanel who wants to compete cPanel / Plesk and such providers, they do lack the BASIC security CORE features of a DNS.

And your DNS Manager simply fails at offering a proper experience to admins so to users.

I will make a video soon showing ALL possible errors i am collecting and reporting for over 1 year now. To see what you folks are missing.

What ever you build here it has potential, when you KNOW the difference between a USER / CONSUMER and A PROFESSIONAL .

THIS IS ATTRACTIVE TO CONSUMERS, BAD FOR USERS AND STUPID TO PROFESSIONALS.

BEST WAY TO STATE THE CURRENT STATE. AND HOPEFULLY THIS WILL KEEP AT BAY ALL NEWBIES AND SCRIPTKIDOS AROUND HERE FROM COMMENTING THEIR OWN CRAP. EITHER YOU ADD VALUE TO THIS THREAD OR ANY OF MY THREADS, OR KEEP YOUR MOUTH SHUT, AND RTFM!

[deleted] · Mar 3, 2021

And again do not get me wrong, we have managed to pass all SPF / DKIM and DMARC validations, not because we use the mail from AAPAnel, because we deployed mailcow outside of AApanel.

In fact the only good and strong thing about this panel, its the underlying stack on what is coded.

I love the idea of:
python
ruby
lua

mixed together.

Yet the quality of the code overall, and the UX/UI experience simply lacks behind competition.

When is last time you folks checked a cPanel demo, or a Plesk demo? Thats where you should start building up. Still I do notice not much intrest since you can see how many servers are deployed world wide, you also know if they are in production or not by the data gathered.

You also fail to inform users about any 3rd party gathering data, and thus by GDPR you can get fined in Europe easily.

Please dear admins and developers, stack holders, this is a not a joke, we need security online, and there is not a siongle excuse to not provide it. The development should be in 2 sides focused the most, SECURITY FIRST, AND SECOND ON UX/UI EXPERIENCE.

If one can touch the two in the right ammount, you get a quality product, your work will be self promoting.

Until then ajenti and such stacks, are WAY more stable, now we speak about ajenti and their panel doings, even if one deployed it 5 years ago, without one single upgrade, those servers will work, this means simple, clean powerfull code in python, you are getting bloated, and this translation / transition project manager you have for EUrope / America, is not doing his job as he should, again I just say based on what I see as a Professional, user and consumer in same time.

Improve, or stay in that market, leave this one to those who want to improve.

If you would had worked on the points I made in over 40+ posts here in past 1 year, your product now would have more customers, and paying customers even. Because a small support monthly fee is welcomed for everyone who makes 10000 $ usd a month they can pay 20 or something for getting a good quality support.

A good product does not live from support, only corporations like IBM and Google, will. make money from tickets opened by their customers, and will even keep these tickets for the ammount of time they are secure and withing SLA limits.

When you add SLA to your product, you can speak business. Until then you are just trying to enter a market, yet you lack all the skills to do it. Change change change, do not ignore these threads if you dont want a proper ticketing tool, at least do not make waste, this is all a waste, of time and ressources, if change is not implemented.

In 5 years maybe a new tech will replace DNSSEC and DANE, so if you dont implement them now, waiting until they are obsolete wont get you any value.