Questions tagged [dmarc]
DMARC (Domain-based Message Authentication, Reporting and Conformance) is an email authentication protocol. It is designed to give email domain owners the ability to protect their domain from unauthorized use, commonly known as email spoofing.
9
questions
5
votes
1
answer
835
views
Why set up DMARC for SPF if it's already set up for DKIM?
I have SPF and DKIM. I'm planning on adding DMARC to tell receivers to expect SPF and/or DKIM. I've read that it's best to set DMARC up with both SPF and DKIM, but I don't understand exactly when ...
- 195
3
votes
2
answers
2k
views
DMARC policy result when exactly one of SPF and DKIM fails and exactly one succeeds
E-mail forwarding can break SPF, but it should not break DKIM. I want to make a DMARC policy that will evaluate to "pass" when either DKIM or SPF passes, and "fail" when neither ...
- 425
8
votes
3
answers
17k
views
Why is DMARC failing when SPF and DKIM are passing?
I've seen this question asked before, but unfortunately, don't understand the responses. I think its something to do with "from" headers being defined differently by different standards. I've added ...
37
votes
2
answers
21k
views
How did this paypal spoof email pass SPF, DKIM and DMARC
This mail that got through has me stumped. It appeared to me as being from PayPal <[email protected]> in my Inbox. I happened to look at the original and it says SPF, DKIM and DMARC ...
- 401
8
votes
1
answer
7k
views
Enforcing DMARC policy (reject) on an Office 365 tenant
The domain & tenant has SPF and DKIM properly configured and DMARC policy set to p=reject. Still, emails spoofed with the domain in the From header aren't rejected, but appear in the Junk Email ...
- 19.1k
7
votes
2
answers
2k
views
How did a phishing email pass SPF, DKIM and DMARC?
A friend received a spoofed email (from Bank of America using an uber.com address) which was correctly identified as 'spam' by Gmail. However, looking at the raw message it seems to have passed SPF, ...
- 591
7
votes
1
answer
1k
views
Can DMARC's SPF alignment be spoofed?
IP addresses can be spoofed. The Envelope-From and Header-From addresses can be spoofed as well. But is it possible to spoof all three at the same time to send a forged email that passes both SPF and ...
- 479
3
votes
1
answer
1k
views
Understand DMARC report before starting quarantine
I work for a small company. We have lot of IP black listed because of spamming.
We decided to setup dmarc for our mail server. This has been setup and is working correctly.
The issue now is that in ...
- 227
0
votes
0
answers
45
views
Do we need SPF when we have DKIM? [duplicate]
I always thought that to authenticate email we needed both SPF and DKIM (and DMARC). But email is confusing and recently I found myself asking why we can't do with just SPF or DKIM. I then discovered ...
- 199