Jan 17

Subdomain Management Changes

As many of you may have noticed, there have recently been some changes to the UI regarding subdomains. After talking with people about how subdomains were being used and abused across the internet, we decided to spend some time rethinking how dmarcian process, sorts and displays subdomains. These new changes allow our system to handle large quantities of subdomains more efficiently and accurately.

Read the rest of this entry »

Aug 16

Too many DNS lookups?

People sometimes run into the "too many DNS lookups" error when rolling out SPF (Sender Policy Framework). It doesn't help that there is a lot of bad guidance on the Internet. This article describes how to fix this issue. Read the rest of this entry »

Jul 16

Published a DMARC record but haven't received any XML Reports?

A common problem many people face when implementing DMARC for the first time is that they are not receiving aggregate XML reports (reports generated for delivery to the rua= tag) in their dmarcian account. These XML reports are the driving force of DMARC. Without them, it's very difficult to get an accurate picture of your domain's usage across the internet.

If you've created a dmarcian account, have published records but have not received data, don't fret! It is typically caused by one (or more) of these three things: Read the rest of this entry »

Jul 16

dmarcian tools are under constant development to make DMARC deployment faster and easier for everyone. This article describes how to best use the tools today. Read the rest of this entry »

Jun 16

What is "External Destination Verification"?

A domain's DMARC record can tell the world to send DMARC reports to a different domain. For example, the domain example.org might have a DMARC record of:

v=DMARC1; p=none; rua=mailto:dmarc_reports@sample.net

This DMARC record tells people to send reports regarding example.org to the email address of "dmarc_reports@sample.net". Before reports are sent, sample.net must tell the world that it is OK to send example.org's reports to sample.net. Otherwise, reports will not be sent to sample.net.

Allowing "external" domains to accept DMARC reports is called "External Domain Verification".

Read the rest of this entry »

May 16

How to publish a DMARC record

Publishing a DMARC record is the first step in deploying DMARC.

To create a DMARC record, use the dmarcian DMARC Wizard.  When you have the text of your DMARC record at your fingertips, follow these steps: Read the rest of this entry »

May 16

How to use Domain Groups

Domain Groups allow dmarcian users to easily group together and manage related domains.  Domain Groups are created using the Mission Control interface.  Domain Groups are typically used to group together domains by: Read the rest of this entry »

May 16

Explanation of CSV columns in data exports

dmarcian users can export Authentiscope data via CSV.  When doing so, the CSV will contain the following columns: Read the rest of this entry »

Apr 16

SPF-Identified Servers - How and Why

To turn DMARC into something useful to people, dmarcian processes DMARC data using a big pile of rules.  These rules identify sources of email, and dmarcian presents users with DMARC compliance information based on email source.

One identified source of email is called "SPF-Identified Servers", and dmarcian users are often curious as to how data ends up in this source.  How and why this source works is explained below. Read the rest of this entry »