SPF, DKIM, DMARC #email #spf #dkim #dmarc
By following these two guides: "Getting DKIM, DMARC and SPF to work with Postfix, OpenDKIM and OpenDMARC" and "How to eliminate spam and protect your name with DMARC" - I have installed and configured opendkim and opendmarc on my server, configured them (and Postfix) and added the accompanying DNS records, so now emails from
asjo.org get signed wit DKIM and I have set up DMARC records for the domains. (I had SPF-records set up a long ago already.)
Next year I'll get around to DNSSEC, I'm sure.
Update: if you have people with email adresses on your domain who use Gmail, they need to configure Gmail to use your smtp-server, and in
/etc/opendmarc.conf this option is needed:
IgnoreAuthenticatedClients true. Seems to work.
To avoid spam many websites make you fill out a CAPTCHA, or log in via an account at a corporation such as Twitter, Facebook, Google or even Microsoft GitHub.
I have chosen to use a more old school method of spam prevention.
To post a comment here, you need to:
¹ Such as Thunderbird, Pan, slrn, tin or Gnus (part of Emacs).
- Configure a newsreader¹ to connect to the server
- Open the newsgroup called
1119using nntps (nntp over TLS).
lantern.koldfrontand post a follow up to the article.
Or, you can fill in this form: