[mike-cardwell]

FWIW, I left Namecheap for GKG.net for the sole reason that Namecheap didn't support DNSSEC. And yes, I have deployed DNSSEC and DANE. On https for emailprivacytester.com, and on https, smtp, imap and xmpp for grepular.com.

[desufnoc]

Neat. It's probably difficult to tell but do you have any idea what usage is like?

[mike-cardwell]

I'm guessing for DNSSEC, the usage is probably low and for DANE it's probably almost non-existant.

FWIW, I use the Firefox addon "DNSSEC Validator" (also does DANE) - https://www.dnssec-validator.cz/ - So if somebody managed to MITM my connection and insert a different, but still trusted, cert in the way, I'd notice.

DNSSEC/DANE would probably see a lot more adoption if one or more of the main browsers did this sort of validation by default.