In several modules of Eventure (when you send an e-mail) it is possible to change the 'FROM:' address to your own e-mail address, so it looks like the e-mail is sent by your own mailserver.
However, more and more organizations are choosing to build in a security step for this, because it can also be abused to send emails and send spam in the name of another domain. To avoid this you need to install an SPF record on your mail server and we need to add a DKIM registration on our server.
Add SPF record
Please send the following information to your IT support people, they can install the following spf record:
SPF Record Information:
Lookup: spf:parthen.nl
Record: 'v=spf1 ip4:37.46.141.132 -all'
Add DKIM registration
Please contact Parthen to add a DKIM registration.
Please note that there are costs associated with a DKIM registration on our server.
Explanation of SPF
(Sender Policy Framework) is essentially a guest list for your email domain. For a non-technical person, it is easiest to think of it like the list of authorized mailmen who are allowed to carry your mail.
What is it?
SPF is an email security method that tells the world which specific services or servers have your permission to send emails using your domain name (like @yourcompany.com). You publish this list in your website's hidden settings (DNS).
What is it used for?
It helps receiving email providers (like Gmail or Outlook) verify the 'path' an email took:
- Checking the Bouncer: When an email arrives, the receiving server looks at your SPF 'guest list'. If the email came from a server on that list, it passes.
- Spotting Impostors: If a hacker sends a fake email from an unauthorized server, the receiving provider will see it isn't on your list and will likely block it or mark it as spam.
Why does it matter to you?
Gets Your Mail Delivered: Major providers now often require SPF. Without it, your legitimate emails—like invoices or newsletters—might be automatically rejected because the receiver can't prove they really came from you.
- Protects Your Reputation: It prevents scammers from using your domain to send out thousands of fake emails, which would eventually cause your real emails to be blocked by spam filters.
Explanantion of DKIM
(DomainKeys Identified Mail) is essentially a digital signature for your emails. For a non-technical person, it is easiest to think of it like a wax seal on a letter or a verified signature on a contract.
What is it?
DKIM is an email security method that automatically attaches a hidden digital 'stamp' to every email you send. This stamp is linked to your specific domain (like @yourcompany.com) and proves that the email is truly from you.
What is it used for?
It serves two primary purposes:
- Proof of Identity: It confirms to the receiver’s email provider (like Gmail or Outlook) that the email was actually sent by you and not by a scammer pretending to be you (a practice called spoofing).
- Tamper Protection: It acts like a 'tamper-proof' seal. If anyone tries to change the content of your email while it is traveling through the internet, the digital signature will break, alerting the receiver that the message has been altered.
Why does it matter to you?
Even though you don't see it happening, DKIM helps your emails get delivered.
- Avoids the Spam Folder: Emails with a valid 'seal' are much more likely to land in the recipient's inbox rather than their spam or junk folder.
- Protects Your Reputation: It makes it much harder for hackers to use your email address to send out fake phishing scams, which keeps your name and brand trusted.
DKIM works best when used alongside other security tools like SPF (which checks if the sending server is authorized) and DMARC (which gives instructions on what to do if an email fails these checks).
Comparison: SPF vs. DKIM
- SPF checks where the email came from (the sending server).
- DKIM checks what is inside the email (ensuring it wasn't tampered with).
Both are foundational pieces that work together under a third system called DMARC to give your email complete protection.
Comments
0 comments
Please sign in to leave a comment.