MoldNS

Every site we ship needs DNS. Every third-party DNS provider we used came with a quiet tax — a UI built for someone else's workflow, support tiers that gatekept the features we actually needed, occasional regional resolution issues that were fun to diagnose at 11pm.

At some point "let's just build our own" stopped being a joke. MoldNS — branded publicly as soluția completă pentru găzduirea DNS — is the result. Built to our standards because we're the first users.

Every URL a visitor types — uimire.com, millerscake.md, anything — is meaningless to the network until DNS translates it into an IP address. That translation happens in milliseconds, billions of times per day, across a chain of recursive resolvers and authoritative nameservers most people never think about.

Until it breaks. A misconfigured record can take a domain offline globally. Slow nameservers add latency to every page load. A DNS-level attack — cache poisoning, NXDOMAIN floods, DDoS amplification — can pull a business off the internet without ever touching its actual servers. The DNS layer is invisible when it works and catastrophic when it doesn't.

MoldNS — branded publicly as soluția completă pentru găzduirea DNS — exists at exactly that layer.

The product's three pillars, in the agency's own words. Behind them:

• Globally distributed nameservers — anycast routing so a query from Berlin hits the nearest node, not a single server in Chișinău
• DNSSEC out of the box — cryptographic signatures on every response so resolvers can verify the answer wasn't tampered with in transit. Not a premium add-on. Default.
• All standard record types — A, AAAA, CNAME, MX, TXT (SPF, DKIM, DMARC), SRV, CAA, NS, the full set
• Defenses against the usual class of attacks — cache poisoning, amplification, NXDOMAIN floods
• A management interface that does not require a DevOps background

The promise is mundane on purpose. Good DNS is not interesting; it just works.

The worst DNS incidents are the ones that happen silently — a record edit that didn't propagate, a resolver somewhere in Europe serving stale data, a certificate edge case that breaks TLS only for visitors on a specific ISP. By the time the support inbox catches up, the damage is already a week old.

MoldNS resolves every hosted domain from multiple regions on a continuous loop and flags anomalies proactively. The dashboard shows what's responding, what's not, and what's about to stop. The on-call notification lands before the client's frustrated email does.