¶ DomainMOD Security & Hardening
DomainMOD stores registrar, DNS, and domain inventory metadata. Harden like any internet-facing admin app.
- Put DomainMOD behind HTTPS-only reverse proxy.
- Enforce strong authentication and MFA.
- Restrict admin access by IP where possible.
¶ Database and Secrets
- Keep DB on private network.
- Restrict DB account privileges to app requirements.
- Protect API credentials for registrars and DNS providers.
¶ Audit and Backup
- Log login attempts and configuration changes.
- Encrypt backups of domain inventory data.
- Test restore procedures periodically.