Forum Feedback SPF and IPv6

ishanjain28 · Jul 12, 2020

Hello everyone!

#1 This site sends out email address from `admin@techenclave.com` but there is no SPF record in `techenclave.com`. This is potentially a security issue. Please consider adding the SPF record. From MX records, I assume you are using gsuite/gmail to send emails, If that is indeed the case,
Please just add this record in DNS settings.

Name: @
Value: v=spf1 include:_spf.google.com ~all
TTL: 3600

More Information available here, https://support.google.com/a/answer/33786?hl=en

#2 There is no IPv6 support on this website. Please consider enabling that. Looks like, This site is hosted on EC2. I am not familiar with how you have set it up but if it's just a EC2 instance and nothing else, Enabling IPv6 is as straightforward as assigning a IPv6 address to the instance and adding a AAAA record in DNS settings.

puns · Jul 12, 2020

@Renegade ^ If Relevant

Futureized · Jul 15, 2020

does not matter technically..

ishanjain28 · Jul 15, 2020

Futureized said:
does not matter technically..

SPF? Or IPv6?

Futureized · Jul 15, 2020

ishanjain28 said:
SPF? Or IPv6?

anything considered via domain.. if not* $# no..
I am high

vivek.krishnan · Jul 19, 2020

puns said:
@Renegade ^ If Relevant

SPF - I would say do it.
IPv6 - From a future perspective yes. But it will not make any difference from performance POV. Most of the local ISPs are still on v4.

Futureized · Aug 16, 2020

ishanjain28 said:
SPF? Or IPv6?

My wrong for overlooking still SPF is required as per many email providers.. Just got a quote of first few lines.

Is SPF mandatory? No, there is no mandatory requirement that forces you to add an SPF record to your domain name but there are many advantages: It protects your domain name from spoofing and phishing. Having an SPF record improves the deliverability of your emails.

SPF records are used to prevent spammers from spoofing your domain name. Recipient servers can use the SPF record you publish in DNS to determine whether an email that they have received has come from an authorized server or not. ... Over recent years SPF has gone from a “nice to have” to a “must have”.

What happens if there is no SPF record?
If you fail SPF authentication, most ISPs will give you a poor reputation score and route your email to the spam or junk folder — some may even just block the email entirely. This is a DNS TXT record that specifies what IPs and other systems are allowed to send an email on behalf of microsoft.com.

ishanjain28 · Aug 16, 2020

Also, SPF is just the very basic first step. If you really want to bring it up to how it _should_ be setup, Consider enabling SPF, DKIM and (a bit more involved) DMARC.

Renegade · Oct 8, 2020

SPF should be enabled now. DKIM was always in place. Though I don't know how to validate both

ishanjain28 · Oct 8, 2020

Renegade said:
SPF should be enabled now. DKIM was always in place. Though I don't know how to validate both

Thanks @Renegade. This is good enough.

Search

Search

Forum Feedback SPF and IPv6

ishanjain28

puns

Futureized

High-Frequency

ishanjain28

Futureized

High-Frequency

vivek.krishnan

BLR~ZRS-TX-1-MX

Futureized

High-Frequency

ishanjain28

Renegade

ishanjain28