Questions tagged [dmarc]
DMARC (Domain-based Message Authentication, Reporting and Conformance) is an email authentication protocol. It is designed to give email domain owners the ability to protect their domain from unauthorized use, commonly known as email spoofing.
67
questions
0
votes
1
answer
114
views
Can I use multiple email providers with my website's DKIM, DMARC and SPF?
I'm a software developer, with limited Mail server setup experience, running a little side SAAS on the side where I send emails to my customers. My domain has SPF, DMARC and DKIM setup and I use ...
- 103
1
vote
2
answers
115
views
DKIM Authorization Question
I've read a good bit about DMARC, DKIM, and SPF but now that I'm getting results come in, there are some things I'm seeing that I don't understand. I keep seeing passing DKIM results from outside ...
- 21
3
votes
1
answer
188
views
How to know whether e-mail was spoofed?
I am having a hard time understanding the different methods of e-mail verification. I know about DKIM, SPF and DMARC. If I would like to know whether an e-mail I received actually came from the e-...
- 31
1
vote
0
answers
176
views
Is my DMARC report saying legitmate emails are failing or illegitimate emails are passing? [closed]
I am learning how to improve email deliverability. Along the way, I'm learning about DMARC reports, SPF and DKIM. I have a friend with a small business who said I can practice with this email ...
- 275
6
votes
1
answer
2k
views
Spoofed email sent to me from my email address with SPF/DKIM/DMARC passing
I received an email earlier today on my work email address. The email came from the same address—mine—but I didn't send it.
It was an email claiming that he was a professional hacker who had hacked my ...
- 161
0
votes
1
answer
1k
views
Still able to spoof emails with strict DMARC, SPF and DKIM enabled
Despite setting up strict DMARC, SPF, and having DKIM enabled, I am still easily able to spoof the "From" address. I can easily do this with PHPMailer on my Mac and even with some free 3rd ...
- 101
0
votes
1
answer
272
views
Spoofed forwarded email? Help with analyzing of DMARC report
Why did this email get forwarded successfully? An XML report is below:
I simply cannot understand the delivery status, a transcript follows:
This email has been automatically forwarded. Despite the ...
- 1,717
1
vote
2
answers
327
views
dmarc privacy concern with microsoft reports
I run the the email for several domains and receive the domain reports on their behalf. Google is our email provider.
enterprise.protection.outlook.com, sends aggregate reports with an envelope_to ...
- 119
17
votes
3
answers
3k
views
"Undelivered Mail" I never sent (after registration on website)
I created an online account and received the usual welcome email. In addition, however, an "Undelivered Mail Returned to Sender" email appeared in my inbox one second later. I am the ...
- 173
2
votes
1
answer
324
views
Spoofed email: whose fault is it?
My relative received an email from a bill they were expecting to pay. So they paid said bill.
Only problem is: it was a spoofed email, and the real bill only came in later.
I checked the email on the ...
- 133
0
votes
1
answer
2k
views
DKIM from another domain, how does it work?
I've recently started configuringn and using DMARC reports and I have the following question. How can the DKIM domain not be my domain (and pass)?
I have the following report
<record>
<row&...
- 103
2
votes
0
answers
2k
views
DKIM/SPF What does it mean when policy_evaluated fails but auth_results passes?
I am trying to get the DKIM and SPF settings correct for a client who uses both GSuite and WordPress to send her emails.
I added this dmarc: v=DMARC1; p=none; rua=mailto:l***@******ney.com; fo=1; ...
- 21
7
votes
1
answer
1k
views
Can DMARC's SPF alignment be spoofed?
IP addresses can be spoofed. The Envelope-From and Header-From addresses can be spoofed as well. But is it possible to spoof all three at the same time to send a forged email that passes both SPF and ...
- 479
0
votes
1
answer
151
views
DMARC falsely reports impersonation
I have set up DMARC for some months now and I am using dmarc-visualizer to parse the reports.
Overall I am happy so we can advance towards BIMI, but before switching to quarantine or reject on DMARC, ...
- 1
1
vote
1
answer
400
views
Why is DMARC Passing, when it seems like there is no alignment?
I have set adkim=s and aspf=s, the DMARC check on mxtoolbox.com passes all tests. However, I'm using the default DKIM from microsoft, so from my understanding DMARC should fail since the alignment ...
- 133