What is DMARC

Domain-based Message Authentication, Reporting, and Conformance (DMARC) is a system that helps protect against email spoofing by verifying the authenticity of the sender of an email message. It works by allowing domain owners to publish a policy in the Domain Name System (DNS) records of their domain that specifies which mechanisms (such as SPF and DKIM) are used to authenticate email messages sent from their domain, and what actions should be taken if an email fails authentication.

Here's how it works:

1. When an email is sent, the recipient's mail server checks the DMARC policy of the domain in the email's "From" address to see if the email has passed SPF and/or DKIM authentication.
2. If the email fails authentication, the DMARC policy specifies what action should be taken. This could include marking the email as spam, quarantining it, or rejecting it outright.

By using DMARC, domain owners can help protect their domain from being used to send spam or phishing emails. It's important to note that DMARC is only one of several techniques used to prevent email spoofing and protect against spam, and it is not a foolproof solution. However, it is a useful tool in the fight against spam and can help improve the overall security and integrity of the email ecosystem.

Related Links:

• Creating a Zimbra SPF Record
• What is SPF
• What is DKIM