SPF Record
SPF Record
SPF Record
3. The receiving mail server then uses the rules specified in the
sending domain’s SPF record to decide whether to accept, reject, or
otherwise flag the email message.
SPF helps protect domains against spoofing, and helps to prevent your outgoing
messages from being marked as spam by receiving servers. SPF specifies the mail servers
that are allowed to send email for your domain, if the mail didn’t pass in spf record then the
mail will be marked as a spam mail , it helps the user to identify the mail whether it is from
the original side or spam.
4.SPF implementation:
Spf implementation allows the owner of a domain to specify which mail servers they use to send
mail from that domain. A company sending email publishes an SPF record in the Domain Name
System . The record lists which IP addresses are authorized to send email on behalf of their domain.
To turn on Sender Policy Framework for your domain, add a Domain Name System (DNS) TXT record
at your domain provider. Keep in mind: The field names in these steps might be different for your
domain provider. DNS TXT record field names vary for domain providers.
Step 5: Test!
Mechanisms:
It can be used to describe the set of hosts which are designated outbound mailers for the
domain and can be prefixed with one of four qualifiers:
+ Pass
~ SoftFail
- Fail
? Neutral
If a mechanism results in a hit, its qualifier value is used. The default qualifier is “+“, i.e. “Pass”.
Mechanisms are evaluated in order. If no mechanism or modifier matches, the default result is
“Neutral”.
More in-depth information on the differences between “~” and “–” can be found here
If a domain has no SPF record at all, the result is “None”. If a domain has a temporary error during
DNS processing, you get the result “TempError” (called “error” in earlier drafts). If a syntax or
evaluation error occurs
REFERENCE:
1.SPF record:
( https://support.google.com/a/answer/10683907?hl=en )
( https://dmarcian.com/spf-syntax-table/ )