Collaborate Disseminate
I have quite a few questions about email security on my custom domains (SPF, DKIM, DMARC,… etc).
Let me start with Why this email got forwarded successfully, please allow an image for the words, an XML report you find below.
I simply… Continue reading Spoofed forwarded email? Help with analyzing of DMARC report
Why did this email get forwarded successfully? An XML report is below:
I simply cannot understand the delivery status, a transcript follows:
This email has been automatically forwarded. Despite the fact that DMARC has failed, the email w… Continue reading Spoofed forwarded email? Help with analyzing of DMARC report
Unless I don’t understand the idea behind DMARC reports, is there a way to set the dmark record so that you only receive email reports when there is a dkim or spf failure?
I’ve only recently set my out-bound mail server to add dkim headers… Continue reading How to receive DMARC reports only when there is a DKIM or SPF fail (not if both pass)? [closed]
I have installed Postfix on my Ubuntu server and configured DKIM. I have tested DKIM on https://www.appmaildev.com/en/dkim and the results were good. However, I am confused as to why DKIM is only detected when I send it directly through th… Continue reading DKIM not detected when Thunderbird used
The spf record for my domain is:
v=spf1 a:smtp.(my-isp).com ip4:(my-static-IP) -all
I have recently added smtp.(my-isp).com to the spf record.
I have sent some test emails to gmail where the outgoing SMTP server was smtp.(my-isp).com but … Continue reading SPF problems using my ISP’s SMTP out-bound server
I have a domain that’s using Google Workspace that doesn’t have DKIM authentication enabled. Even though DKIM isn’t set up, emails sent from that domain arrive in other inboxes and pass the DKIM check.
Digging into the headers, they’re all… Continue reading DKIM on Google Workspace not setup yet DKIM check PASSES?
Many people have written about DKIM header injection attacks. [1] The suggestion to mitigate it is to oversign headers and to rotate any DKIM keys that were previously used to sign e-mails where not all important headers have been oversign… Continue reading How many times need e-mail headers be signed with DKIM to mitigate DKIM header injection attacks?
I’ve recently started configuringn and using DMARC reports and I have the following question. How can the DKIM domain not be my domain (and pass)?
I have the following report
<record>
<row>
<source_ip>185.53.XXX.XX… Continue reading DKIM from another domain, how does it work?
I’m trying to understand how SPF and DKIM can be used to prevent email spoofing. One of the things I find confusing is that the SSID/AUID of a DKIM signed message can be different from both the envelope From and header From.
For example:
S… Continue reading How do SPF and DKIM work together prevent spoofing?
I am trying to get the DKIM and SPF settings correct for a client who uses both GSuite and WordPress to send her emails.
I added this dmarc: v=DMARC1; p=none; rua=mailto:l***@******ney.com; fo=1; adkim=r; aspf=r;
(when I set the p to quara… Continue reading DKIM/SPF What does it mean when policy_evaluated fails but auth_results passes?