Of everything I've found on the web, this is the clearest and most straightforward, and is NOT trying to sell you their service to solve your problems. Thank you.
So glad you found this helpful! Thanks for the feedback. If you're interested, we are offering a free DMARC Bootcamp starting May, covering SPF, DKIM and DMARC. You can learn more about it here: gca.globalcyberalliance.org/bootcamp-registration-may-2021
Can I check something, at 1:20 you say the sending email service will add SPF information. Is that correct? I understood it did not and the receiver does all the checking against DNS etc for SPF records.
@@globalcyberalliance27 Thank you so much for your response. And what if no SPF defined at all, and recipient has an SPF check; mail will be delivered. right?
This means that using SPF alone is not recommended, if your are using SPF alone anyone using your same hosting provider would be able to spoof your domain to send phishing emails.
Our recommendation is to use SPF and DKIM, if the service allows for both. If you are a provider that does mail forwarding (or a mailing list), then you should implement ARC (Authenticated Received Chain). See www.globalcyberalliance.org/resource/arc-replace-dmarc/ for more info on ARC.
Thanks for your feedback! This was meant to be short and brief overview, not very technical. That's why we reference openspf.org and other sites for more technical information.
Of everything I've found on the web, this is the clearest and most straightforward, and is NOT trying to sell you their service to solve your problems. Thank you.
So glad you found this helpful! Thanks for the feedback. If you're interested, we are offering a free DMARC Bootcamp starting May, covering SPF, DKIM and DMARC. You can learn more about it here: gca.globalcyberalliance.org/bootcamp-registration-may-2021
Thanks was struggling to understand this but this has made it all much clearer
So glad it was helpful!🙂
If you need any additional support, we have a ton of resources on our website! www.globalcyberalliance.org/dmarc/
Great, great clear explanation of what/how an SPF record is! Wonderful video!
Thanks for the video!
Great explanation! Clear and concise! Thanks!
This was really help full, thanks alot, appreciate this
Thanks for the presentation !!
Really helped to understand things quickly specially that diagram was great.
Very well done. Thx
Great explanation. Thanks.
Well Understood, Thank you so much
Much obliged!
Thanks Dinesh Chugtai!
Great explanation! Thanks a lot
Thanks very much.
Thanks, this helps me.
Excellent! Glad to hear it!
How Do I send Intrusive emails That Dig into end users data ?
Can I check something, at 1:20 you say the sending email service will add SPF information. Is that correct? I understood it did not and the receiver does all the checking against DNS etc for SPF records.
The sending email server adds all the meta data that would be needed for the receiving organization to perform SPF verification.
How do you change SPF on the receiving end ? Lets say we want to DROP or hardfail every email that does not have SPF record.
the receiving side, you have to enable SPF verification on the email security gateway, and indicate how you want to handle SPF from other orgs.
@@shehzadmirza1408 spf
I have a question. If recipient end doesn't have a SPF check, and email is sent from a new or unknown SMTP server, will it be delivered?
Yes, the messages will still be delivered but can show as a fail when looking at DMARC reports for alignment.
@@globalcyberalliance27 Thank you so much for your response. And what if no SPF defined at all, and recipient has an SPF check; mail will be delivered. right?
Anyone please explain second point in sortfalls of SPF at @4:58
This means that using SPF alone is not recommended, if your are using SPF alone anyone using your same hosting provider would be able to spoof your domain to send phishing emails.
SPF breaks email forwarding. Because the forwarding server is no longer allowed to deliver. Better use DKIM.
Our recommendation is to use SPF and DKIM, if the service allows for both. If you are a provider that does mail forwarding (or a mailing list), then you should implement ARC (Authenticated Received Chain).
See www.globalcyberalliance.org/resource/arc-replace-dmarc/ for more info on ARC.
Anybody from iiits?
Lots of bad technical shortcut, you should read "openspf.org" if you want real technical info.
Thanks for your feedback! This was meant to be short and brief overview, not very technical. That's why we reference openspf.org and other sites for more technical information.
desi khoti waleeti teetny