Preventing Email Spoofing

Email spoofing is when someone sends an email that they have deceptively adjusted to make it look like it is coming from someone else.

There are many reasons why people do this - and they all have some kind of malicious intent behind them. What can be particularly unsettling is to receive a malicious email that appears to be coming from yourself.

HEROweb can use several methods to lessen the possibility of these malicious emails. The approach involves adding several kinds of validation "records" to your domain which email senders will use to help verify the authenticity of emails that are sent from one of your addresses.

SPF (Sender Policy Framework) - This shows a list of servers that are authorized to send mail for your domain.

DKIM (DomainKeys Identified Email) - This key helps ensure that the content of an email doesn't somehow get changed after being sent from the initial server.

DMARC (Domain-based Message Authentication, Reporting and Conformance) - Allows you to set a "policy" for mail delivery for your domain that other servers can check and verify.

These tools aren't perfect but can help in ensuring valid mail delivery for your domain. If you would like us to set these up for your domain, just contact webhelp.