Questions tagged [dmarc]
DMARC (Domain-based Message Authentication, Reporting and Conformance) is an email authentication protocol. It is designed to give email domain owners the ability to protect their domain from unauthorized use, commonly known as email spoofing.
67
questions
1
vote
1
answer
267
views
Authorizing 3rd Party Envelope Sender to Impersonate Header Sender
Rewriting for clarity:
This is regarding emails send from a 3rd party marketer spoofing one of our email addresses in the message header from field. In these emails the envelope sender would come ...
- 11
0
votes
1
answer
603
views
How did the email pass DKIM?
I am trying to figure out how this one phishing email (used our Company's domain as from) was able to bypass the O365 Spamfilter.
Looking at the Header it looks like they passed the DKIM even though ...
- 3
4
votes
2
answers
3k
views
How to fix DMARC alignment failure
I'm sending emails via the Ionos mail servers.
I've got spf set up, but dmarc still fails.
This seems related to: Why is DMARC failing when SPF and DKIM are passing?
But I can't figure out how to fix ...
- 143
37
votes
2
answers
21k
views
How did this paypal spoof email pass SPF, DKIM and DMARC
This mail that got through has me stumped. It appeared to me as being from PayPal <[email protected]> in my Inbox. I happened to look at the original and it says SPF, DKIM and DMARC ...
- 401
2
votes
1
answer
206
views
DMARC aggregated report SPF domain field
I am trying to identify, why some of my e-mails are being marked as spam by recipients, and have therefore set up SPF and DKIM. In order to check that they can be verified, I set up aggregated DMARC ...
- 484
0
votes
1
answer
385
views
Rejected because of DKIM check fail; alignment check fail
I am testing my mail server setup with this tool https://email-test.had.dnsops.gov/ and I am getting suspicious that the tool may not be working right.
From what I understand it reports that my ...
- 105
0
votes
0
answers
421
views
Unknown Cause of SPF Fail
I have the following SPF record:
v=spf1 include:_spf.mailspamprotection.com include:_spf.google.com ip4:209.85.220.0/24 ~all
Although I have included _spf.mailspamprotection.com in my SPF record, ...
- 101
-1
votes
1
answer
192
views
Does gmail use SPF or DMARC when sending messages outside of gmail?
I can't seem to find any record of SPF or DMARC in the original messages coming from gmail to my mail server.
Does gmail use SPF or DMARC when sending messages outside of gmail?
4
votes
3
answers
578
views
What is the point of having SPF and DKIM set up, but having DMARC with policy=none?
Under this FAQ it says that using policy=none is a way for domain owners to monitor forged emails, without having to set up SPF/DKIM. But what im wondering, because i dont fully understand what SPF/...
- 339
2
votes
2
answers
744
views
Do fowarded emails retain DMARC protection?
Assume I ask someone to create a filter in their Gmail account that automatically forwards certain emails to my inbox. If the original email was protected with DMARC, would the forwarded email also be ...
- 151
0
votes
0
answers
36
views
Why do I need DMARC on top of SPF and DKIM? [duplicate]
If SPF is verifying against a set of IP records if the incoming email from a domain was sent from an authorized host piggybacking on the DNS and DKIM does touch the signature of the email and ...
0
votes
1
answer
1k
views
Whitelisting Email Service for Anti-Spoofing and DMARC
My company uses an Anti-Spoofing Protection based on the SPF Record and has implemented DMARC. Often our users correspond via a "secure" messaging platform like Proofpoint/ZIX/IronPort from ...
1
vote
1
answer
153
views
Email "FROM address" is changed to an unexpected email address
I have enabled DMARC settings in my domain (drkotzi.org). Now when I send emails from my email address ([email protected]) to email lists or email groups, I can see that the email's from address and ...
- 31
2
votes
2
answers
317
views
DMARC rua indicates mail send from competitorDomain.com for ourDomain.com, is this (potentially) mallicous?
We've received several rua reports indicating that one of our direct competitors is sending emails with our domain in the mail from headers.
I do not have access to the actual emails sources, and I ...
- 7,712
1
vote
1
answer
3k
views
SPF/DMARC for shared email provider (gmail) - how did this email pass SPF?
We recently received an email from a self described "white hat hacker" purporting to be from our own organization.
According to the mail headers, spf, dmarc, dkim and arc all passed okay and ...
- 113