Been learning a lot about email and email filtering and security at work the past few weeks and been having the hardest time understanding spf, DMARC, and DKIM as I keep running into people with domains that have issues with all three and how to research them through headers. Best explanation on the net today. 🎉
I am no expert, so bear with me. DMARC itself does not validate the source of the email against anything (like the DNS records or key pairs). It only comes into play if the email fails the validate its source. Then the DMARC gives instructions to the mail server on what to do with the email next. SPF and DKIM say yes or no to verify source, then if 'no', DMARC tells email to go in timeout or whatever is configured.
This is the most concise, clear, and easy to follow overview of these email security elements I've seen to date. Thank you for making this video!
I totally agree, I've read multiple explanations of the same topics and struggled to understand but this really puts it together.
Been learning a lot about email and email filtering and security at work the past few weeks and been having the hardest time understanding spf, DMARC, and DKIM as I keep running into people with domains that have issues with all three and how to research them through headers. Best explanation on the net today. 🎉
Thank you professor Messer
🐐
Why would validation fail with SPF or DKIM if DMARC would work? Is one superior?
I am no expert, so bear with me. DMARC itself does not validate the source of the email against anything (like the DNS records or key pairs). It only comes into play if the email fails the validate its source. Then the DMARC gives instructions to the mail server on what to do with the email next. SPF and DKIM say yes or no to verify source, then if 'no', DMARC tells email to go in timeout or whatever is configured.
🤯