Thwarting Email Domain Spoofing (Episode 29)

Printer Friendly Page

Thwarting Email Domain Spoofing with DNS Records (Episode 29)


DNS is commonly used for attacks. More than many realize. In this episode, we talk about three methods you can deploy right now to thwart email domain spoofing with DNS records.


  • The Sender Policy Framework (SPF):  An email-authentication technique used to prevent spammers from sending messages on behalf of your domain.
  • DKIM (Domain Keys Identified Mail): An email authentication technique that allows the receiver to check that an email was indeed sent and authorized by the owner of that domain.
  • DMARC (Domain-based Message Authentication Reporting and Conformance): An email validation system designed to protect your company’s email domain from being used for email spoofing, phishing scams and other cybercrimes.


Episode Feedback:


Episode Resources:

• What is SPF? -

• What is DKIM? -

• What is DMARC? -

• Troubleshooting and identifying spoofing attacks: