DMARC
dmarcian’s Domain Overview displays a summary of the status of all your domains and sources along with a geographical location of recent abuse. It is a great place to get started, as you can view the state of your domains at a glance so you can get to work locking down your email domains. The post Domain Overview Explained appeared first on dmarcian.
I’ve blogged about using OpenDKIM with Postfix, having myself run the two together for a quite a number of years now. I’ve set up enough servers from scratch to have compiled my own setup guide. You’d find it cryptic and confusing, so I won’t share it. But what I can share instead is this wonderful guide from EasyDMARC that explains how to configure OpenDKIM to add DKIM support to your Postfix install. I’m so glad they put this all together, and if you’re the right type of email nerd, or want to become one, this is something that you will want to bookmark. Read it here.
Like all companies doing business online and communicating with their clients via email, we, at GSoft, are concerned about our domain reputation. To protect the domain and ensure that nobody is sending spam or phishing emails on behalf of our company, we implemented DMARC email authentication with the ‘reject’ policy. We thought it was enough to be protected and we were not monitoring our DMARC data in GlockApps DMARC Analytics regularly. But thanks to the GlockApps alert system, we realized that we were wrong. Below I share our case on how GlockApps alerts helped us find and fix a critical issue with our domain. To give you some background, here at GSoft, we have a few mailboxes set up on the same domain: support@ourdomain.com, abuse@ourdomain.com, info@ourdomain.com, bounce@ourdomain.com, and press@ourdomain.com. The volume of outgoing mail is low – around 100-150 emails a day. These are mostly emails sent by our tech…
I’ve got just enough time for a quick post today, to share with you this very useful DMARC Dictionary put together by the fine folks at dmarcian. Check it out! And since that would make for a very short blog post, here’s four bonus online resources that you might also want to bookmark, if you didn’t already know about them:The ISP Information page from Laura Atkins and Steve Atkins over at Word to the Wise, where they’ve collected info on which ISPs offer ISP Feedback Loops (FBLs), which ones have Postmaster information pages, help/support ticketing systems, etc.My new friends at Kickbox (disclaimer: they are my employer) have put together this great “Developer’s Guide to Email” website that you are going to find quite useful if you are looking to learn more about email technology or study how it all comes together.Postmark’s SMTP Field Manual allows you to look up example bounce messages…
AMP for email is a new way of providing interactive content to your recipients. It is making a big blast by opening new possibilities for email marketers all over the world. But with new features come new challenges and threats, so it is important to understand what security measures have to be implemented before diving into the AMP for email. What is AMP for Email? AMP stands for Accelerated Mobile Pages, originally created in 2015 to improve the speed of web pages on mobile devices. Unlike AMP for the web, the email version is not about speed. AMP for email brings new features to classic marketing emails, making them more interactive and dynamic, providing real-time content, and the possibility to perform more actions than clicking through. Today, this all is pretty new, and AMP for email is supported only by Gmail, Mail.ru, and Yahoo! But the tendency is catching on,…
Multiple sources are reporting that Google Postmaster Tools (GPT) has returned. I’ve confirmed it myself; graphs and data are back. As previously mentioned, Google Postmaster Tools went down around October 4th (and DMARC reports ceased to be sent, around the same time).In my Google Postmaster Tools dashboard, I’m getting a warning that says “Data shown with missing records. Some data may be unavailable,” suggesting that Google could still be working on loading missing data.Google began to send DMARC reports again starting on October 9th or 10th.
The number of valid DMARC policies observed in the DNS increased by 28% over the first half of 2021, to a total of 3.46 million, based on analysis of data supplied by Farsight Security. This was double the growth rate during the same period in 2020, when roughly 330,000 new records reflected a 17% increase […]
The number of valid DMARC policies observed in the DNS increased by 28% over the first half of 2021, to a total of 3.46 million, based on analysis of data supplied by Farsight Security. This was double the growth rate during the same period in 2020, when roughly 330,000 new records reflected a 17% increase […]
I’ve received multiple reports from different folks that Google Postmaster Tools (GPT) and Google’s DMARC reporting have both been offline since sometime around October 4th. GPT is still accessible but has no data later than 10/3, and for those used to receiving DMARC reports from Google, none have been received since 10/3.I’ll share more information when known. Feel free to drop me a line if you have any updates.(As an aside, Google has a helpful DMARC overview and tutorial for domain administrators. It’s worth reading!)[ H/T: Hagop Khatchoian, Benjamin Billon and others. ]
Help! I’m getting mail from MAILER-DAEMON@(various domains) with subject lines like: Delivery Status Notification (Failure), failure notice, Mail delivery failed: returning message to sender, Message Delivery Failure – Mail Delivery System, **Message you sent was blocked by our bulk email filter**, Recapito fallito, Returned mail: see transcript for details, Undelivered Mail Returned to Sender. These all seem to be bounces back from mail I didn’t send. What is happening and how do I make it stop?