SPF and DKIM records.

February 10, 2023

SPF (Sender Policy Framework) and DKIM (DomainKeys Identified Mail) records.

SPF

SPF is a mechanism used to authenticate the source of an email and prevent email spoofing. It’s a type of DNS record that specifies which mail servers are authorized to send email on behalf of a domain. The SPF record is included in the DNS settings for a domain and is used by email receivers to validate the source of an incoming email.

For example, let’s say you own the domain “example.com”. If you want to ensure that email sent from “example.com” is trusted, you’ll need to create an SPF record that lists the mail servers that are authorized to send email from your domain. Here’s what an SPF record for “example.com” might look like:

example.com. IN TXT “v=spf1 mx a:mail.example.com ip4:192.168.1.100 -all”

In this example, the SPF record specifies that email sent from “example.com” is only considered legitimate if it comes from the domain’s MX servers, the server “mail.example.com”, or the IP address “192.168.1.100”. The “-all” at the end of the record specifies that all other sources of email are considered to be unauthorized and should be rejected.

DKIM is another mechanism used to authenticate the source of an email. It works by adding a digital signature to an email, which is then verified by the recipient’s mail server. The signature is created using a private key and is stored in a DNS record for the domain that sent the email. The recipient’s mail server uses the public key from the DNS record to verify the signature and authenticate the source of the email.

DKIM

To set up DKIM for a domain, you’ll need to:

  1. Generate a public/private key pair.
  2. Add a DKIM record to the domain’s DNS settings that includes the public key.
  3. Configure your mail server to add a DKIM signature to outgoing email from your domain.

Here’s what a DKIM record for “example.com” might look like:

default._domainkey.example.com. IN TXT “v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC2AQGzEjK35Sk5O5O1M5DZ9cL/N+/7zJlKj/v7z/EtXMmC7/jKt8AKv/Xu/mUnTm7Vgwf8Kv7VcIz/0n7Vxq3sBv7VrTjrCppV7wjl8jvKVy+zL1s0V7sW8qJlKj/oKt/etO7OJjKv/y7EjKtO7V7xjJt+oKtjK35Sk5O5O/N+/7zJ/EtXMmC7/jKt8AKv/Xu/mUnTm7Vgwf8Kv7VcIz/0n7Vxq3sBv7VrTjrCppV7wjl8jvKVy+zL

Search for records:

https://mxtoolbox.com/spf.aspx
https://www.nslookup.io/spf-lookup/

More Post to read

Essential Security Checks for Your WordPress Website

September 17, 2025

Workflows That Work: How Make.com and n8n.io Are Saving Small Businesses Time

June 16, 2025

Cybersecurity for Healthcare Websites: What You Need to Know (and Where to Look)

5 Essential Features for a Small Business Website

June 10, 2025

What to Do If Your Website Starts Sending Spam Emails

April 15, 2025

Simple Membership Plugin: Setup

January 31, 2025

Essential Tools for Checking ARIA Compliance in Web Development

October 1, 2024

Secure Your WordPress Site with a Robust .htaccess Configuration

September 3, 2024

Setting Up a New Business: Should You Choose Google Workspace or Office365?

August 29, 2024

How to Add a Domain that Works with All Google Maps Platform APIs

July 3, 2024

Password Managers

June 20, 2024

Domain Name – Configuration

May 11, 2024

Disallow WordPress Comments

April 23, 2024

SQL URL Replacer – From Local to Live

April 21, 2024

Building an Accessible Accordion Component

BRISBANE WEB AGENCY

Call: 07 3856 3303, Address: 158 Enoggera Rd Newmarket, Brisbane QLD Australia. ACN: 110 616 781
© 2024 ZOIK. All Rights Reserved.