Table of Contents
- Add DNS Records for Better Security on Squarespace
- Understanding DNS Records for Squarespace Security
- How to Add DNS Records in Squarespace
- Security-Focused DNS Records You Might Need
- CAA Records
- DS and DNSKEY Records
- HTTPS and SVCB Records
- PTR and SSHFP Records
- TLSA Records
- Setting Up Advanced DNS Records
- FAQs
- Jargon Buster
- Final Thoughts
.png?table=block&id=219105a2-9d95-81d6-b8ef-e4bc04eb71ec&cache=v2)
Last Edited Time
Jun 25, 2025 09:35 PM
Do not index
Do not index
Suggested Tag
squarespace
dns management
website security
Tags Synced
Tags Synced
AI summary
Enhance your Squarespace site's security by adding custom DNS records if needed, such as CAA, DS, and TLSA records, while ensuring to double-check configurations to avoid errors. Most sites can rely on default SSL protection.
Last edited by
Platform
Category
Topic
Add DNS Records for Better Security on Squarespace
Understanding DNS Records for Squarespace Security
Squarespace handles basic security for you with free SSL certificates, but sometimes you need more. If you're working with specific third-party services or have higher security requirements, you'll need to add custom DNS records.
Most Squarespace sites don't need these advanced records. But if you do, here's how to set them up properly.
How to Add DNS Records in Squarespace
- Get to Your DNS Settings
- Go to your domains dashboard
- Pick the domain you want to change
- Click 'DNS', then 'DNS Settings'
- Add Your Custom Records
- Scroll down to 'Custom Records'
- Click 'Add record'
- Enter your two-factor authentication code if you have it set up
- Fill in the details for your record type
- Click 'Save'
Security-Focused DNS Records You Might Need
CAA Records
These tell the world which certificate authorities can issue SSL certificates for your domain. Only add these if you're using services that need specific certificate authority validation.
DS and DNSKEY Records
These are for DNSSEC (Domain Name System Security Extensions) beyond what Squarespace provides. They protect against certain types of attacks where someone tries to redirect your domain traffic.
HTTPS and SVCB Records
HTTPS records specify security protocols for your site. SVCB records manage service bindings for more flexible security setups.
PTR and SSHFP Records
PTR records help align domain names with IP addresses (useful for mail servers). SSHFP records add authentication for SSH connections.
TLSA Records
These provide extra validation for SSL and TLS certificates, making sure your secure connections are actually secure.
Setting Up Advanced DNS Records
Complex records like DS or DNSKEY often need extra steps:
- Switch to custom nameservers from your security provider
- Reconfigure DNSSEC settings in your Squarespace setup
- Keep checking and updating details to maintain security
Pixelhaze Tip: Check your record format and values twice before saving. One typo can break your site or create security gaps.
FAQs
Q: Do I need to add extra DNS records to my Squarespace site?
A: Probably not. Squarespace's default SSL protection covers most sites. You only need additional records for specific third-party services or high-security requirements.
Q: Can I buy additional DNS records through Squarespace?
A: No, Squarespace only provides basic SSL certificates. For specific DNS records, you'll need to work with third-party providers like Cloudflare.
Q: What if I have problems adding DNS records?
A: Check Squarespace's troubleshooting guides first. The Squarespace community forums are also helpful, or contact your third-party DNS provider directly.
Jargon Buster
- SSL Certificate: A digital certificate that proves your website's identity and encrypts information sent between your site and visitors
- DNS Records: Data that links domain names to IP addresses or other settings
- CAA Record: Tells certificate authorities which ones can issue certificates for your domain
- DNSSEC: Extra DNS security that protects against unauthorised redirections and data spoofing
Final Thoughts
Most Squarespace sites work perfectly with the default security settings. Squarespace's built-in SSL certificates and security measures cover the basics well.
Only add custom DNS records if you have specific requirements or use third-party services that need them. When you do add them, take your time and double-check everything. A small mistake can cause big problems with your site's security or availability.
If you're unsure whether you need custom DNS records, you probably don't. Stick with Squarespace's defaults unless you have a clear reason to change them.