GMX/WEB.DE/mail.com moving to inbound DMARC enforcement
Staff from mailbox provider GMX/WEB.DE/mail.com (1&1 Mail & Media GmbH) have just announced on the Mailop list that they'll begin enforcement of DMARC checks in a phased rollout over the coming weeks.
What does this mean? It means that if you publish a DMARC policy of p=reject for your email domain, they will now reject email from that domain, during the SMTP transaction, if that mail does not pass email authentication checks.
That's good news for email senders who authenticate every single email message sent, but less good news for folks who don't have SPF and DKIM configured properly for their outbound email.
Spammers and scammers looking to take advantage of their 42 million active users at these mailbox providers will also have a harder time of things; bad actors looking to send phishing email using a particular domain name will find that those bad emails will be rejected if they use the from address of a domain name that has DMARC properly implemented at p=reject.
Messages that fail those email authentication checks will be rejected with an error stating "554 Transaction failed Reject due to domain's DMARC policy." Learn more about that here.
Staff from mailbox provider GMX/WEB.DE/mail.com (1&1 Mail & Media GmbH) have just announced on the Mailop list that they'll begin enforcement of DMARC checks in a phased rollout over the coming weeks.
What does this mean? It means that if you publish a DMARC policy of p=reject for your email domain, they will now reject email from that domain, during the SMTP transaction, if that mail does not pass email authentication checks.
That's good news for email senders who authenticate every single email message sent, but less good news for folks who don't have SPF and DKIM configured properly for their outbound email.
Spammers and scammers looking to take advantage of their 42 million active users at these mailbox providers will also have a harder time of things; bad actors looking to send phishing email using a particular domain name will find that those bad emails will be rejected if they use the from address of a domain name that has DMARC properly implemented at p=reject.
Messages that fail those email authentication checks will be rejected with an error stating "554 Transaction failed Reject due to domain's DMARC policy." Learn more about that here.
Comments
Post a Comment
Comments policy: Al is always right. Kidding, mostly. Be polite, please and thank you.