Domain-based Message Authentication (“DMARC”) is useful in preventing spoofed emails, but for it to be effective more is needed. Sender Policy Framework (“SPF”) tells other email servers which servers are allowed to send email from your domain. DomainKeys Identified Mail (“DKIM”) is a way of signing emails, to verify they are from a legitimate source. DMARC tells a receiving email server what do when email does not pass SPF and or DKIM. You can instruct other emails servers to reject email for your email domain that does not pass SPF and or DKIM.

How secure is your email domain?