Pawooサポート @pawoo_support

Stéphane BortzmeyerEmail servers: Stalwart claims to replace the different programs (Postfix, Dovecot, SpamAssassin, OpenDKIM, etc) by one program."Installing is simple'" (curl | sudo bash…)Bonus: there is an integrated analysis of <a href="https://mastodon.gougere.fr/tags/DMARC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DMARC</a> reports :-)<a href="https://mastodon.gougere.fr/tags/FOSDEM" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#FOSDEM</a>

Stéphane BortzmeyerCours <a href="https://mastodon.gougere.fr/tags/SPF" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SPF</a> / <a href="https://mastodon.gougere.fr/tags/DKIM" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DKIM</a> / <a href="https://mastodon.gougere.fr/tags/DMARC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DMARC</a>. Je leur raconte quoi de joli ?

Mike Kuketz 🛡Warum du für ungenutzte Domains SPF- und DMARC-Records setzen solltest! 👇 <a href="https://www.kuketz-blog.de/warum-du-fuer-ungenutzte-domains-spf-und-dmarc-records-setzen-solltest/" rel="nofollow noopener noreferrer" target="_blank">https://www.kuketz-blog.de/warum-du-fuer-ungenutzte-domains-spf-und-dmarc-records-setzen-solltest/</a><a href="https://social.tchncs.de/tags/mail" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#mail</a> <a href="https://social.tchncs.de/tags/dmarc" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#dmarc</a> <a href="https://social.tchncs.de/tags/spf" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#spf</a> <a href="https://social.tchncs.de/tags/spam" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#spam</a> <a href="https://social.tchncs.de/tags/schutz" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#schutz</a> <a href="https://social.tchncs.de/tags/sicherheit" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#sicherheit</a> <a href="https://social.tchncs.de/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#security</a>

FredOnline<a href="https://infosec.exchange/@freddieleeman" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@freddieleeman</a> Thank you for that information, the report in question was indeed an aggregate report. I have a few domains and thought I had changed them all to 'ruf' only but this domain had slipped through. I then changed this domain DMARC report to 'ruf' only. I now understand that because this was XML format it was an aggregate report, but a failure report should be in TXT format. I will update my blog entry accordingly.<a href="https://fosstodon.org/tags/DMARC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DMARC</a>

FredOnlineMy rudimentary understanding of DMARC XML reports:<a href="https://fredonline.vivaldi.net/2024/11/19/how-to-understand-dmarc-xml-reports/" rel="nofollow noopener noreferrer" target="_blank">https://fredonline.vivaldi.net/2024/11/19/how-to-understand-dmarc-xml-reports/</a><a href="https://fosstodon.org/tags/DMARC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DMARC</a>

Afnic🛡️ Cyber bonne pratique, cyber bonne nouvelle ! 🔐 La sécurité des emails se renforce, avec les protocoles SPF, DKIM et DMARC qui jouent un rôle crucial pour contrer la facilité d'usurpation d'adresse e-mail. 📊 Un an après notre premier état des lieux sur l’adoption de ces mécanismes dans la zone .fr, les résultats sont prometteurs !🔗 Découvrez les résultats en détail : <a href="https://www.afnic.fr/observatoire-ressources/papier-expert/spf-dkim-et-dmarc-ladoption-monte-en-fleche-dans-la-zone-fr/" rel="nofollow noopener noreferrer" target="_blank">https://www.afnic.fr/observatoire-ressources/papier-expert/spf-dkim-et-dmarc-ladoption-monte-en-fleche-dans-la-zone-fr/</a><a href="https://mastodon.social/tags/Afnic" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Afnic</a> <a href="https://mastodon.social/tags/SPF" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SPF</a> <a href="https://mastodon.social/tags/DKIM" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DKIM</a> <a href="https://mastodon.social/tags/DMARC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DMARC</a> <a href="https://mastodon.social/tags/BIMI" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#BIMI</a> <a href="https://mastodon.social/tags/Innovation" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Innovation</a> <a href="https://mastodon.social/tags/Formation" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Formation</a>

Jesse SchooffApparently it doesn't go without saying, so here it is:"v=DMARC1; p=none;" is not a valid DMARC record. 🙄<a href="https://infosec.exchange/tags/email" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#email</a> <a href="https://infosec.exchange/tags/dmarc" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#dmarc</a>

BearstechVous faites des cauchemars à base d'e-mails ?Comprenez et visualisez comment vos e-mails cheminent sur le Net (SPF, DKIM, <a href="https://mamot.fr/tags/DMARC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DMARC</a>) (p)👉 learndmarc.com

GoffiMy emails are often flagged as 'spam' for my recipients, notably on mailing lists. I've set everything up hopefully correctly (DKIM, DMARC, etc.) and I score 10/10 at <a href="https://www.mail-tester.com/" rel="nofollow noopener noreferrer" target="_blank">https://www.mail-tester.com/</a> . I don't appear to be on any block list, and I own my domain (goffi.org) for over 20 years. Any ideas what the problem might be?<a href="https://mastodon.social/tags/email" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#email</a> <a href="https://mastodon.social/tags/decentralization" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#decentralization</a> <a href="https://mastodon.social/tags/help" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#help</a> <a href="https://mastodon.social/tags/DKIM" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DKIM</a> <a href="https://mastodon.social/tags/DMARC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DMARC</a> <a href="https://mastodon.social/tags/askfedi" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#askfedi</a>

🆘Bill Cole 🇺🇦Let’s not. <a href="https://toad.social/tags/DMARC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DMARC</a> adds value to email for very few entities and adds yet another way for email to break, if you let it. One of the hottest threads on the MailOp list right now is in regard to Mimecast mishandling mail in a way that breaks mail signatures, dependent on the encoding a MUA chooses for a message. I have spent many hours debugging other people’s DMARC deployments. These are rarely billable hours and are deeply tedious. <a href="https://ioc.exchange/@percepticon/113347954887616002" rel="nofollow noopener noreferrer" target="_blank">https://ioc.exchange/@percepticon/113347954887616002</a>

Afnic🗓️ Formation Sécuriser son courrier électronique grâce au DNS avec DKIM, DMARC, SPF les 10 et 11 octobre ou 5 et 6 décembre 2024.✅ Programme complet et inscriptions sur <a href="https://www.afnic.fr/produits-services/formations/dkim-dmarc-spf-securiser-son-courrier-electronique-grace-au-dns/" rel="nofollow noopener noreferrer" target="_blank">https://www.afnic.fr/produits-services/formations/dkim-dmarc-spf-securiser-son-courrier-electronique-grace-au-dns/</a><a href="https://mastodon.social/tags/Formation" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Formation</a> <a href="https://mastodon.social/tags/DKIM" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DKIM</a> <a href="https://mastodon.social/tags/DMARC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DMARC</a> <a href="https://mastodon.social/tags/DNS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DNS</a> <a href="https://mastodon.social/tags/SPF" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SPF</a>

Jonathan Kamens<a href="https://federate.social/tags/MalwareBytes" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#MalwareBytes</a>, an <a href="https://federate.social/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a> company, has allowed their <a href="https://federate.social/tags/DMARC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DMARC</a> aggregate reports mailbox to fill multiple times in the years I've been interacting with them. Reliable processes are a foundational requirement of successful <a href="https://federate.social/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a>. Reliable monitoring is also a foundational requirement. Ensuring your organization doesn't make the same mistake multiple times? Also foundational. I don't trust MalwareBytes, and you probably shouldn't either.

yawnbox :rebel:what <a href="https://disobey.net/tags/email" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#email</a> providers do you trust, that supports the following?1. bring your own domain.tld 2. supports <a href="https://disobey.net/tags/SPF" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SPF</a>, <a href="https://disobey.net/tags/DKIM" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DKIM</a>, <a href="https://disobey.net/tags/DMARC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DMARC</a> 3. ideally: <a href="https://disobey.net/tags/DNSSEC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DNSSEC</a>/#DANEno, i do not want feedback about self-hosted options, thank you. <a href="https://disobey.net/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a> <a href="https://disobey.net/tags/privacy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#privacy</a>

muxelplexeris it normal that i’m getting failed spf DMARC mails from Mailing List forwarding? i guess so since i don’t have the Mailing Lists’s web-server as allowed sender…is there a best practice for this?<a class="hashtag" href="https://larkspur.one/tag/mailcow" rel="nofollow noopener noreferrer" target="_blank">#mailcow</a> <a class="hashtag" href="https://larkspur.one/tag/dns" rel="nofollow noopener noreferrer" target="_blank">#dns</a> <a class="hashtag" href="https://larkspur.one/tag/spf" rel="nofollow noopener noreferrer" target="_blank">#spf</a> <a class="hashtag" href="https://larkspur.one/tag/mail" rel="nofollow noopener noreferrer" target="_blank">#mail</a> <a class="hashtag" href="https://larkspur.one/tag/dmarc" rel="nofollow noopener noreferrer" target="_blank">#dmarc</a>

Adrian Offermanalso available in English on SIDN.nl: Plenty of requirements about using security standards, but no enforcement or sanctions -- New powers for Authority for Digital Infrastructure may bring about change <a href="https://www.sidn.nl/en/news-and-blogs/plenty-of-requirements-about-using-security-standards-but-no-enforcement-or" rel="nofollow noopener noreferrer" target="_blank">https://www.sidn.nl/en/news-and-blogs/plenty-of-requirements-about-using-security-standards-but-no-enforcement-or</a>Many municipal websites don't meet the security standards they're supposed to meet. The problem isn't a lack of regulation, but a lack of compliance and enforcement.<a href="https://mastodon.offerman.com/tags/InternetSecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#InternetSecurity</a> <a href="https://mastodon.offerman.com/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a> <a href="https://mastodon.offerman.com/tags/DNSSEC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DNSSEC</a> <a href="https://mastodon.offerman.com/tags/DMARC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DMARC</a> <a href="https://mastodon.offerman.com/tags/STARTTLS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#STARTTLS</a> <a href="https://mastodon.nl/@internet_nl" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@internet_nl</a>

Adrian Offermanop SIDN.nl: Een zee aan verplichtstellingen voor beveiligingsstandaarden, maar geen dwang of sancties -- Wellicht dat de Rijksinspectie voor Digitale Infrastructuur deze keer wel een verschil kan maken <a href="https://www.sidn.nl/nieuws-en-blogs/een-zee-aan-verplichtstellingen-voor-beveiligingsstandaarden-maar-geen-dwang-of-sancties" rel="nofollow noopener noreferrer" target="_blank">https://www.sidn.nl/nieuws-en-blogs/een-zee-aan-verplichtstellingen-voor-beveiligingsstandaarden-maar-geen-dwang-of-sancties</a>Een groot deel van de gemeentelijke websites voldoet niet aan de verplichte beveiligingsstandaarden. Probleem is niet een gebrek aan regelgeving, maar de naleving en handhaving daarvan.<a href="https://mastodon.offerman.com/tags/InternetSecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#InternetSecurity</a> <a href="https://mastodon.offerman.com/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a> <a href="https://mastodon.offerman.com/tags/DNSSEC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DNSSEC</a> <a href="https://mastodon.offerman.com/tags/DMARC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DMARC</a> <a href="https://mastodon.offerman.com/tags/STARTTLS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#STARTTLS</a> <a href="https://mastodon.nl/@internet_nl" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@internet_nl</a>

Friends<a href="https://chaos.social/tags/DMARC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DMARC</a> enables you as a <a href="https://chaos.social/tags/domain" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#domain</a> owner to receive feedback from <a href="https://chaos.social/tags/email" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#email</a> recipients, incl. sending mail servers & verification methods. With visibility, you can make changes to help recipients distinguish between legit & malicious emails, achieving DMARC compliance. <a href="https://chaos.social/tags/BuildInPublic" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#BuildInPublic</a>

FriendsI'm excited to announce the start of my journey to develop dmarced, a self-service <a href="https://chaos.social/tags/DMARC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DMARC</a> monitoring solution for EU-based SMEs! Follow me as I build in public and bring safer <a href="https://chaos.social/tags/email" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#email</a> practices to your business. Check out the first email report template! <a href="https://chaos.social/tags/BuildInPublic" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#BuildInPublic</a>

Adrian Offermanalso available in English: Germany's BSI publishes detailed technical guidelines on e-mail authentication -- "Labels and certification make invisible security measures visible" <a href="https://www.sidn.nl/en/news-and-blogs/germanys-bsi-publishes-detailed-technical-guidelines-on-e-mail-authentication" rel="nofollow noopener noreferrer" target="_blank">https://www.sidn.nl/en/news-and-blogs/germanys-bsi-publishes-detailed-technical-guidelines-on-e-mail-authentication</a>Germany's Bundesamt für Sicherheit in der Informationstechnik (Federal Office for Security in Information Technology, or BSI) has published technical guidelines on e-mail authentication. The purpose of TR-03182 Email Authentication is to promote the adoption of SPF, DKIM and DMARC, thus making mail more secure and fighting spam and phishing. Mail processors and service providers that comply with the guidelines can seek audit-based certification, while service users can ask prospective providers for proof of compliance as part of their procurement procedures.<a href="https://mastodon.offerman.com/tags/SPF" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SPF</a> <a href="https://mastodon.offerman.com/tags/DKIM" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DKIM</a> <a href="https://mastodon.offerman.com/tags/DMARC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DMARC</a> <a href="https://mastodon.offerman.com/tags/InternetSecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#InternetSecurity</a> <a href="https://mastodon.offerman.com/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a> <a href="https://social.bund.de/@bsi" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@bsi</a> <a href="https://infosec.exchange/@xdc33" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@xdc33</a>

**Adrian Offerman** @adrian@mastodon.offerman.com · May 6, 2024

May 6, 2024

Adrian Offerman @adrian@mastodon.offerman.com

op SIDN.nl: Duitse BSI publiceert uitgebreide technische richtlijn e-mailauthenticatie -- "Labels en certificering maken onzichtbare beveiligingsmaatregelen zichtbaar"
https://www.sidn.nl/nieuws-en-blogs/duitse-bsi-publiceert-uitgebreide-technische-richtlijn-e-mailauthenticatie

Het Duitse Bundesamt für Sicherheit in der Informationstechnik (BSI) heeft een technische richtlijn gepubliceerd voor e-mail authenticatie. Doel van de richtlijn 'TR-03182 Email Authentication' is om de adoptie van SPF, DKIM en DMARC te vergroten, daarmee de veiligheid van mail te verhogen, en spam- en phishing-berichten tegen te gaan. Mail-verwerkers en dienstverleners die aan deze richtlijn voldoen, kunnen hun compliance laten toetsen en certificeren. Gebruikers (klanten) kunnen deze richtlijn bijvoorbeeld gebruiken in hun aanbestedingseisen (door te vragen om een 'proof of compliance').

#SPF #DKIM #DMARC #InternetSecurity #infosec
@bsi @xdc33

Duitse BSI publiceert uitgebreide technische richtlijn e-mailauthenticatie | Cybersecurity | SIDNSIDN - Het bedrijf achter .nl

Administered by:

Server stats:

Administered by:

Server stats:

dmarcBack