12
whatever the new domain turns out to be - access to the admin account should be like Bureaucrat
(hexbear.net)
never again shall only one person have access to the domain's admin account and cause this to happen again.
i think we can all share the GoDaddy/Porkbun/etc account and it won't cause any issues & will also ensure that the lease does not lapse again!! 
The problem with this is that sufficiently diffusing ownership of the domain also means it requires exactly one rogue actor to just transfer the domain. Takes like 10 minutes, totally irreversible. I guess maybe if half the people got a 2FA key but no login and half got a login but no 2FA key you could almost honor system it.
It's possible to split the second factor key into, say 10 keys where you need 4 to unlock it, or any other combination.
Elaborate key material rituals are like catnip to IT nerds.
Some day I'll see a real life use for any of this stuff.
Everyone's always talking about trustless communication, but who's working on Trotless communication, I ask you?
I'm glad zero trust distributed shit is no longer cool, the decentralised trust model of the fediverse is so much simpler and effective even if sometimes the admin disappears and does not renew the DNS name.