DMARC: protect your brand from spoofing and phishing

  • Postmastery provides knowledge and expertise to get fully DMARC operational.
  • Postmastery's DMARC 'on-prem' deployment tools can help with processing reports and checking DNS records.
  • Postmastery helps you to take difficult decisions, for example on DKIM key management and DMARC policies.

Postmastery offers various DMARC services. Looking for a DMARC consultant?

What is DMARC?

DMARC tells a receiver what to do when authentication is missing or failing for a specific From: header domain. DMARC should primarily be seen as a security measure for senders vulnerable to spoofing and phishing. In addition, DMARC compliant senders are rewarded with email delivery preferences at top tier providers such as Google, Yahoo, Microsoft and AOL.

Read more about DMARC policies on our BLOG.

Compliance Testing

With EmailAudit, Postmastery provides a free service that evaluates, your emails according to several authentication systems and more. Just send an email message from the domain you wish to check, and a report will be sent back.

We look at:

  • Server configuration
  • SMTP envelope
  • SPF authentication
  • Mail header fields
  • DKIM authentication
  • DMARC compliance

Each aspect contains a number of checks. The results are very detailed and show the source of a problem. No guesswork is needed to fix issues!

Report Processing

As soon as a DMARC record is published in your DNS, ISP’s will start sending you XML files with information on whether messages are passing or failing. Postmastery developed a tool to retrieve the XML reports from a mailbox and convert them into easy to read Excel overviews.

The basic pass/-fail data from the ISP’s is enriched with additional information to simplify the analysis process.

Since the tool runs on your desktop, there’s no need to share sensitive data with online reporting tools.


DMARC Implementation

Postmastery’s DMARC deployment service pack offers a full implementation of DMARC on one or more domains.

We follow these five steps.

  1. Base-line measurement: publish a DMARC record with the -none- flag set for the policies, which requests data reports.
  2. Identify legitimate email sources and compliancy issues.
  3. Provide guidance in fixing compliancy issues (authentication, alignment).
  4. Periodically check the reports to monitor progress.
  5. Move to a -quarantine- or -reject- policy.

Is your email DMARC compliant?
Let's test it now!

Contact us if you need more information about DMARC compliance, report or implementation.

    Postmastery respects your privacy, we will never cold-call you or share your data with others.