@ted the most traditional ones do not but the more useful ones do.

(And I can’t believe I hadn’t thought of this before; I don’t wear them that often but more than never. Would buy at least one set.)

Related, there is third category that overshadows the other two, most common in legacy systems, which is the "we-don't-understand-why-the-system-works-this-way" risk.

I spent a disproportional part of my early career understanding and mitigating risks in systems where the people who had built them were long into retirement; that kind of systems analysis is something I'm particularly good at - especially when combined with identifying security risks.

If any of these sounds like areas you would like to address in your own projects or business, reach out and let's chat - relevant info at sarahjamielewis.com

(I'm also in a position to offer subsidized rates to open source projects and non-profits etc.)

I will also say that in my experience clients tend to get in touch far too late in the development / project process at which point the best I can do is point out very expensive to mitigate risks and provide some recommendations for partial remediation.

It's generally more effective and far less expensive (both in terms of the analysis, and the resulting work) to get an assessment earlier on.

Don't get me wrong, I am more than happy to come in and provide you with a binder full of catalogued risk and work with your team over many weeks to help reduce that risk down.

But I also could have completely eliminated that risk several months earlier by reviewing the plan with the team over a couple of days.

The `.su` example is not one to make your point with, though - it's precisely because this is still around that IANA changed their rules, as I understand it, to properly remove TLDs for countries that no longer exist.

Everything else is right, though - looks like .io domains will be around for at least 3-5 years. (And I'd be surprised if IANA don't just convert it to a non-geographical TLD, thus avoiding disruption.)

Q: Does this mean .io domains will be around forever?

A: It is possible that the .io ccTLD will become a generic TLD, sponsored by some organization instead of being tied to a specific territory. It is also possible that it will get retired in some years.

Q: So what's your plan with your rys.io?

A: I will wait and see what happens. Once a decision is made about .io, I wil either just keep using it, or plan an orderly migration. I expect to have *years* for that at that point.

Instead of stating
"Keep calm and enjoy using your io.domain for the next decades" you could do it ike this author:

"First, I can use my platform and voice to raise awareness about the situation in British Indian Ocean Territory and the ethical concerns surrounding the .io TLD. I can share articles and resources that shed light on the problem and encourage others to educate themselves and take action.

Second, I can donate some of my profits from my website to organizations supporting the displaced Chagossian community and advocating for their rights. This is a tangible way to positively impact and contribute to a cause that aligns with my values.

Third, I can explore alternative TLDs for future projects. While I may not be able to give up my .io domain, I can choose to use different TLDs for new websites or projects. As mentioned, I have already reserved a .dev domain and plan to use it for future endeavors."

v01.io/posts/2023-io-domain-di…

The .io Dilemma: Navigating Ethical Concerns in Domain Choice – Klaus Breyer

As someone involved in tech and startups for a while now, I’ve had my fair share of experiences with domain names. Choosing a suitable TLD (top-level domain) can be a daunting task, and it’s something that many people need to give more thought to.

^{Klaus Breyer}

At some point they will hit a Trust Thermocline, if they haven't already:
every.to/p/breaching-the-trust…

This is a great moment for someone to come in and offer what Mozilla's the soon-to-be-former core audience is looking for.

And that core audience will then promote it among their friends and family, on their campuses, and in their workplaces.

Exactly the same way Firefox was being promoted, very successfully, when the Web was young.

Breaching the Trust Thermocline Is the Biggest Hidden Risk in Business

Companies have no way back from a sudden loss of trust

^every.to