FixWeb

// docs / domains

Domèn

A domain is a verified hostname you own. Verifying once unlocks owner-depth scans, scheduled re-scans, and live website monitoring on that hostname.

Verifying a domèn

Add a hostname at Dashboard → Domèn. Pick one of two verification methods:

  • DNS TXT — add a record at _fixweb.<hostname> ak la token nou generate. We re-resolve it soti nan our server, not yours, so SPF / DMARC settings don't interfere. Typical propagation: 1-5 minutes; nou re-check chak 30 seconds pou 10 minutes.
  • HTTP file — host a small text file at /.well-known/fixweb-verification.txt ak la token. We fetch over HTTPS via la SSRF-guarded demann path.

Verifications yo re-checked daily by la domain-reverify cron. If a previously-verified domèn stops resolving la token (e.g. ou removed la DNS record), la verification se revoked ak active eskan against it drop back pou verify_required until ou re-add it.

Scheduled re-eskan Pro+

Plan Pro ka re-eskane yon domèn verifye nan kadans ≥3h; plan Unlimited nan ≥1h. Louvri Tablodbò → Domèn → Orè, aktive toggle la, chwazi yon kadans:

  • 1 èdtan — disponib sèlman nan plan Unlimited la
  • 3h, 6h, 12h, daily, chak 2 days, weekly

Every cron tick (chak 15 min) la scheduler picks up due schedules, claims them via an optimistic compare-ak-swap on next_run_at (so two crons ka't double-enqueue), increments ou eskan-usage counter, ak enqueues a fresh passive eskan. The eskan inherits ou domèn-verification attestation — ou don't re-attest per run — so disable la schedule pou revoke.

On completion, la eskan-completed email goes out using la scheduled_scan_email preference (manage at Account → Settings).

Live threat detection Unlimited+

Plan Unlimited siveye otomatikman chak domèn verifye pou twa siyal ant skanaj pwograme yo:

  • Certificate transparency — chak 30 minutes nou query crt.sh pou nouvo certs containing ou hostname oswa any subdomain. New certs fire a new_certificate alèt.
  • DNS diff — chak 30 minutes nou resolve A, AAAA, MX, TXT, NS, CNAME ak compare against la last snapshot. Changes fire a dns_change alèt.
  • Threat-intel — chak hour nou check Spamhaus DBL ak URLhaus pou listings of la apex hostname. Listings fire a threat_intel_listing alèt.

Alerts dedupe on a content-hash signature so re-detecting la same change doesn't re-fire. View / dismiss alèt at Dashboard → Domèn → [domèn] → Monitor. Email notifications follow la threat_alert_email pref.

Snapshot retention

Monitor snapshots auto-prune after 7 days, except la most recent baseline per (domèn, signal-type) pair — that one stays regardless of age so la next diff se correct. Dismissed alèt purge after 90 days.

Trigger soti nan API oswa MCP

Domain management se currently UI-only — non API surface pou verification oswa schedule changes. To start a eskan against an already-verified domèn via API, use POST /api/v1/scans:

curl
curl -X POST https://fixweb.app/api/v1/scans \
  -H "Authorization: Bearer fxw_..." \
  -H "content-type: application/json" \
  -d '{"target":"https://example.com"}'
Domèn — Docs · FixWeb