Can we help you?

The understanding of how a product works and of its scope is the key to realize its possibilities and what it can do for you. This is what these FAQs are meant for.

FAQLegal & Tech

Should I update my DNS' SPF and DKIM records to pass DMARC?

We take email reputation very seriously and we encourage all our customers to update their DNS records and comply with the industry best practices.

SPF record

Sender Policy Framework (SPF) is an email authentication method designed to detect forging sender addresses during the delivery of the email.

SPF allows the receiving mail server to check during mail delivery that an email claiming to come from a specific domain is submitted by an IP address authorized by that domain's administrators. The list of authorized sending hosts and IP addresses for a domain is published in the DNS records for that domain.

If you already have an SPF DNS record setup for your domain name, update it with the following entry:

SPF record update:

In case your domain name lacks an SPF record, we encourage you to set it up a TXT record as follows:

TXT v=spf1 ~all

Sender Policy Framework is defined in RFC 7208 as a proposed standard 1.

DKIM signature for passing DMARC

SPF alone, though, is limited only to detect a forged sender claimed in the envelope of the email which is used when the email gets bounced. Only in combination with DMARC can it be used to detect the forging of the visible sender in emails (email spoofing), a technique often used in phishing and email spam.

We can DKIM sign your outbound emails and have your DNS servers to validate the signature. Combined with SPF, this will give your emails the highest level of legitimacy by passing DMARC. Please add the following entry to your DNS records in order to apply DKIM:

CNAME eevid._domainkey.<your domain>

In this way, emails delivered through evidence will include our signature ensuring that both the email's source IP address and the signature are valid.

1Some of the information contained in this page has been taken from the Wikipedia.

Thank you for asking!
eEvidence Support Team

Related to SPF DKIM DMARC DNS Security Settings 

"We want to make sure our emails get delivered and don't get bounced back due to SPF or DKIM issues."

No luck with the answer?
Try searching within our FAQs again.