Microsoft announced this summer that it has finally started to honor DMARC policy settings when accepting incoming email. Given Microsoft’s position as one of the world’s biggest email handlers, this is a huge — and belated — endorsement of sender-managed spam policies.
What is DMARC?
DMARC (Domain-based Message Authentication Reporting and Conformance) is a protocol that leverages specific public DNS records to send instructions to recipients’ mail servers about what to do with unauthorized email. DMARC also provides a way to get detailed reporting on all email associated with your domain name to determine the extent of unauthorized email sent using your domain as a return address.
Configured properly, and then monitored and adjusted over time, DMARC can reduce cybersecurity risks and increase deliverability for legitimate email. (Configured improperly, however, DMARC instructions could result in all of your outgoing email getting rejected — so you need to know what is going on under the hood.)
Macktez Domain Management
Macktez has been managing domain health and security for decades, and can help your organization as well. Our monthly subscription first ensures you are using a secure and trusted domain registrar and properly configured DNS records. Then we configure and enable industry standard tools for email security (SPF, DKIM, and DMARC) to minimize the ability of malicious actors to use your domain for phishing while providing email recipients greater confidence that messages from you are authentic. We monitor DMARC reports and gradually tighten the DMARC policy, making DNS adjustments as needed.
For more information see: