I've been running a hosting company on the side since 2001.
I don't think this article needed to be as long as it was, and it went on a bit of an unnecessary segue. Yes, this is an amusing story and yes the SAPO should have known better, but:
- domain renewals are a big problem in general, worldwide. GoDaddy has a business model built entirely around this. They hold expired domains to ransom that you have to buy on auction if you forget to renew. They aren't alone.
- people forget to renew things all the time (hello SSL certs!). Remember when Azure went down because of a cert?
- TTLs being different lengths are meaningless. One of the (several hundred) domains I manage has TTL of 300 seconds for a dev server, because if the IP address changes, the customer doesn't want to wait 60 minutes or 24 hours or whatever the default is, to update that subdomain.
Heck, it wasn't that long ago in the .za namespace that we had to send emails to update our records. org.za was one of the last holdouts and that was a nightmare.
Headlines aside, this was a serious problem, but not as serious as Calvin Browne makes it out to be.
The big problem here is that all these notifications are done by the most unreliable, insecure technology around: email. That's just insane.