Domain-based Message Authentication, Reporting, and Conformance (DMARC) is a mechanism by which the owner of a domain uses specially formed DNS records to express domain-level policies and preferences for email validation, disposition, and reporting.
Questions tagged [dmarc]
226 questions
1
vote
1 answer
Email abuse reports for outbound.protection.outlook.com
I've recently set up a DMARC record for my domain and now I'm receiving email abuse reports from hotmail.com that state:
This is an email abuse report for an email message received from IP 104.47.126.207 on Sun, 14 Feb 2016 07:20:43 -0800.
The…
CamaroSS
- 243
- 1
- 3
- 9
1
vote
1 answer
Two different dkim result records in DMARC report from google
I get DMARC report from google, and the dkim check appears twice, one with pass, the other with fail status. This same report includes another record from the same IP with all pass status. Any idea what would cause this, or what should I fix?
Here…
yhager
- 133
- 5
1
vote
2 answers
Is DMARC helpful to me if I don't need reporting?
I have SPF and DKIM setup and working for the email domain I administer. The next recommended step is to setup DMARC since SPF and DKIM are both in place.
What are the benefits of using DMARC if both SPF and DKIM are already functioning as expected?
poke
- 1,079
- 4
- 11
- 21
1
vote
1 answer
SPF failure with gmail
I'm trying to properly set up DKIM, SPF, and DMARC so emails sent from my server are less likely to be seen as spam. I got my first DMARC report and I'm little confused by this part:
…
Tim Tisdall
- 633
- 1
- 5
- 17
1
vote
1 answer
What is wrong in my DKIM setup? I'm getting all fails
I own a domain name
I have implemented SPF and DKIM to avoid my mails being junked. I have also upgraded to DMARC in monitor mode.
Since I received a few failure reports recently I wanted to investigate more. I have only one server sending outbound…
usr-local-ΕΨΗΕΛΩΝ
- 2,359
- 7
- 34
- 52
1
vote
2 answers
Email message headers pass SPF check after failing earlier SPF checks. Will this result in spam?
I have an issue where email is being marked as spam by Gmail/Google Apps systems.
When reading the mail headers, the most recent SPF check in the mail chain passes, but earlier checks fail. That is, the email has passed through a variety of systems,…
Ned Martin
- 121
- 4
1
vote
0 answers
DMARC reports no longer being received from google
We are seeing a large number of DMARC rejects from google from emails that have both a valid DKIM signature and a valid SPF sender. We have validated this by sending the same emails to other ISPs and these arrive and the headers agree with our…
ChrisBint
- 141
- 1
- 1
- 5
1
vote
1 answer
Apparent DMARC External Validation query failure
I've got multiple domains hosted on a single Linode instance. As a result of some routine anti-spam checking the wonderful mxtoolbox (no affiliation) reports this:
DMARC External Validation External Domains in your DMARC are not giving permission…
J Evans
- 185
- 1
- 1
- 7
1
vote
1 answer
How do i receive DMARC reports with external domains that i have no permission to control
I want to receive reports with gmail or outlook or anything else that i have no permission to add (mydomain.com)._report._dmarc.(gmail|outlook).com as a record. What i can do?
Example just like:
v=DMARC1; p=quarantine; rua=mailto:someone@gmail.com;…
ShenLin
- 33
- 1
- 3
1
vote
1 answer
I setup DMARC p=reject on server but now I can't send via gmail to gmail (using server email From address)
Did I shoot myself in the foot ?
I mainly use gmail to send and receive emails. Support etc. My default 'send email as' profile is not the gmail address itself but an address on my server (also the Reply-to address). Example: "My Name…
Peter
- 113
- 3
1
vote
2 answers
Should we enhance DMARC to allow aligned DKIM enforcement?
Currently, DMARC only requires aligned DKIM or SPF.
However spoofing SPF is relatively simple for an experienced hacker:
You should only control a single IP address in the often large SPF range of e-mail service providers (Microsoft, Google,…
m7913d
- 111
- 5
1
vote
2 answers
I don't understand DMARC reports regarding my policy
My DMARC settings seems to not work as expected.
First, a few things to note:
The domain is mydomain.com (not the real one obviously) ;
The domain and mail provider is gandi.net ;
I use Amazon SES to send emails from a website using…
Karl.S
- 115
- 1
- 1
- 8
1
vote
3 answers
SPF FAIL but DKIM PASS with my own domain
I do not understand the fail results in the following google DMARC report to our domain.
I understand that the SPF fails because the IP address is not ours but if so, how come DKIM passes?
google.com
…
Kevin Roma
- 11
- 2
1
vote
1 answer
DMARC reports - fail then pass, and "softfail"
Here are two records from reports, with the actual domain name of my client replaced with "example.com". In the first one, SPF is marked "fail" above under "policy_evaluated" and then "pass" below under auth_results. I find this confusing. This is…
Devin Ceartas
- 1,478
- 9
- 12
1
vote
2 answers
Does this report mean someone is attempting to send emails fraudulently or that I have things configured wrong?
Pretty new to spf/dkim and dmark.
After setting this up just this morning I already got a report on a new website. Our service eamils our users via sendgrid and the rest of the emails are sent from our google workspace accounts.
Our SPF looks like…
John
- 887
- 4
- 15
- 25