Ukuqinisekisa Kanjani Ukuqinisekiswa Kwe-imeyili Yakho Kusethwe Ngokufanelekile (DKIM, DMARC, SPF)

I-DKIM Validator DMARC SPF

Uma uthumela i-imeyili nganoma yiluphi uhlobo lwevolumu, imboni lapho uthathwa njengecala futhi kufanele ubonise ukuthi umsulwa. Sisebenza nezinkampani eziningi ezizisiza ngokufuduka kwama-imeyili, ukufudumala kwe-IP, nezinkinga zokulethwa. Izinkampani eziningi aziboni nakancane ukuthi zinenkinga.

Izinkinga Ezingabonakali Zokudiliva

Kunezinkinga ezintathu ezingabonakali ngokuthunyelwa kwe-imeyili amabhizinisi angazazi:

  1. Imvume - Abahlinzeki besevisi ye-imeyili (ESP) phatha izimvume zokungena... kodwa umhlinzeki wesevisi ye-inthanethi (I-ISP) iphethe isango lekheli le-imeyili okuyiwa kulo. Kuyisistimu embi ngempela. Ungenza yonke into ngendlela efanele njengebhizinisi ukuze uthole imvume namakheli e-imeyili, futhi i-ISP ayinawo umqondo futhi ingase ikuvimbele noma kunjalo.
  2. Ukubekwa Kwebhokisi Lemilayezo Engenayo - Ama-ESP akhuthaza kakhulu ukuhanjiswa amanani angenangqondo. I-imeyili eqondiswe ngqo kufolda ye-junk futhi engakaze ibonwe obhalisele i-imeyili yakho ilethwa ngokobuchwepheshe. Ukuze uqaphe ngokweqiniso yakho ukubekwa kwebhokisi lokungenayo, kufanele usebenzise uhlu lwembewu bese uyobheka i-ISP ngayinye. Kukhona izinkonzo ezenza lokhu.
  3. Idumela - Ama-ISP kanye nezinsizakalo zezinkampani zangaphandle nazo zigcina izikolo ezidumile zokuthumela ikheli le-IP le-imeyili yakho. Kukhona izinhlu zokuvinjelwa ezingase zisetshenziswe ama-ISPs ukuvimba wonke ama-imeyili akho, noma ungase ube negama elibi elingakwenza udluliselwe kufolda kadoti. Kunenombolo yezinsizakalo ongazisebenzisa ukuze ugade isithunzi sakho se-IP... kodwa ngingaba nokuphelelwa ithemba njengoba abaningi bengenakho ukuqonda ngama-algorithms e-ISPs ngamunye.

Ukuqinisekiswa kwe-imeyili

Imikhuba engcono kakhulu yokunciphisa noma yiziphi izinkinga zokubekwa kwebhokisi lokungenayo iwukuqinisekisa ukuthi usethe inani lamarekhodi e-DNS ama-ISPs angawasebenzisa ukuze abheke futhi aqinisekise ukuthi ama-imeyili owathumelayo athunyelwa nguwe ngempela hhayi othile ozenza inkampani yakho. . Lokhu kwenziwa ngenani lamazinga:

  • Uhlaka lwenqubomgomo yabentwana (SPF) - izinga elidala kunazo zonke, kulapho ubhalisa khona irekhodi le-TXT ekubhaliseni kwesizinda sakho (DNS) okusho ukuthi yiziphi izizinda noma amakheli e-IP othumela kuwo i-imeyili yenkampani yakho. Isibonelo, ngithumela i-imeyili yokuthi Martech Zone kusukela Indawo Yokusebenzela yakwaGoogle futhi kusuka I-CircuPress (eyami i-ESP njengamanje iku-beta). Ngine-plugin ye-SMTP kuwebhusayithi yami engizophinde ngiyithumele nge-Google, ngaphandle kwalokho ngizoba nekheli le-IP elifakwe nalokhu.

v=spf1 include:circupressmail.com include:_spf.google.com ~all

  • DomainUkuqinisekiswa Komlayezo okusekelwe, Ukubika kanye Nokuhambisana (I-DMARC) - leli zinga elisha linokhiye obethelwe kuwo ongaqinisekisa kokubili isizinda sami kanye nomthumeli. Ukhiye ngamunye ukhiqizwa umthumeli wami, eqinisekisa ukuthi ama-imeyili athunyelwe umuntu othumela ogaxekile awakwazi ukonakala. Uma usebenzisa i-Google Workspace, nakhu indlela yokusetha i-DMARC.
  • Imeyili Ekhonjiwe Ye-DomainKeys (I-DKIM) - Ngokusebenza ngokuhambisana nerekhodi le-DMARC, leli rekhodi lazisa ama-ISPs ukuthi ayiphathe kanjani imithetho yami ye-DMARC ne-SPF kanye nokuthi ithunyelwa kuphi imibiko yokulethwa. Ngifuna ama-ISP enqabe noma imiphi imilayezo engadluli i-DKIM noma i-SPF, futhi ngifuna ukuthi athumele imibiko kulelo kheli le-imeyili.

v=DMARC1; p=reject; rua=mailto:dmarc@martech.zone; adkim=r; aspf=s;

  • Izinkomba Zomkhiqizo Zokuhlonza Umlayezo (I-BIMI) - okungeziwe okusha, i-BIMI ihlinzeka ngendlela yokuthi ama-ISP nezicelo zawo ze-imeyili abonise ilogo yomkhiqizo ngaphakathi kweklayenti le-imeyili. Kukhona kokubili izinga elivulekile kanye ne indinganiso ebethelwe ye-Gmail lapho futhi udinga khona isitifiketi esibethelwe. Izitifiketi zibiza kakhulu ngakho-ke angikwenzi lokho okwamanje.

v=BIMI1; l=https://martech.zone/logo.svg;a=self;

QAPHELA: Uma udinga usizo lokusetha noma iyiphi i-imeyili yakho yokuqinisekisa, ungangabazi ukuxhumana nenkampani yami. Highbridge. Sineqembu ochwepheshe bokuthengisa nge-imeyili kanye nokulethwa lokho kungasiza.

Ungakuqinisekisa Kanjani Ukuqinisekiswa Kwe-imeyili Yakho

Lonke ulwazi lomthombo, ulwazi lokudlulisa, kanye nolwazi lokuqinisekisa oluhlotshaniswa nawo wonke ama-imeyili lutholakala ngaphakathi kwezihloko zemiyalezo. Uma uchwepheshe wokulethwa, ukuhumusha lokhu kulula kakhulu… kodwa uma ungumfundi, kunzima ngendlela emangalisayo. Nakhu ukuthi unhlokweni womlayezo ubukeka kanjani ephephandabeni lethu, ngifiphaze amanye ama-imeyili wokuphendula kanye nolwazi lomkhankaso:

Unhlokweni Womlayezo - DKIM ne-SPF

Uma ufunda konke, ungabona ukuthi iyini imithetho yami ye-DKIM, noma ngabe i-DMARC iyaphasa (ayiphasi) nokuthi i-SPF iyadlula… kodwa umsebenzi omningi lowo. Kukhona isixazululo esingcono kakhulu, noma kunjalo, futhi okufanele sisetshenziswe DKIMValidator. I-DKIMValidator ikunikeza ikheli le-imeyili ongalingeza ohlwini lwakho lwezindaba noma ulithumele nge-imeyili yehhovisi lakho…

Okokuqala, iqinisekisa ukubethela kwami ​​​​kwe-DMARC kanye nesiginesha ye-DKIM ukuze ubone ukuthi iyadlula noma ayidluli (ayiphumeleli).

DKIM Information:
DKIM Signature

Message contains this DKIM Signature:
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=circupressmail.com;
	s=cpmail; t=1643110423;
	bh=PTOH6xOB3+wFZnnY1pLaJgtpK9n/IkEAtaO/Xc4ruZs=;
	h=Date:To:From:Reply-to:Subject:List-Unsubscribe;
	b=HKytLVgsIfXxSHVIVurLQ9taKgs6hAf/s4+H3AjqE/SJpo+tamzS9AQVv3YOq1Nt/
	 o1mMOkAJN4HTt8JXDxobe6rJCia9bU1o7ygGEBY+dIIzAyURLBLo5RzyM+hI/X1BGc
	 jeA93dVXA+clBjIuHAM9t9LGxSri7B5ka/vNG3n8=


Signature Information:
v= Version:         1
a= Algorithm:       rsa-sha256
c= Method:          relaxed/relaxed
d= Domain:          circupressmail.com
s= Selector:        cpmail
q= Protocol:        
bh=                 PTOH6xOB3+wFZnnY1pLaJgtpK9n/IkEAtaO/Xc4ruZs=
h= Signed Headers:  Date:To:From:Reply-to:Subject:List-Unsubscribe
b= Data:            HKytLVgsIfXxSHVIVurLQ9taKgs6hAf/s4+H3AjqE/SJpo+tamzS9AQVv3YOq1Nt/
	 o1mMOkAJN4HTt8JXDxobe6rJCia9bU1o7ygGEBY+dIIzAyURLBLo5RzyM+hI/X1BGc
	 jeA93dVXA+clBjIuHAM9t9LGxSri7B5ka/vNG3n8=
Public Key DNS Lookup

Building DNS Query for cpmail._domainkey.circupressmail.com
Retrieved this publickey from DNS: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC+D53OskK3EM/9R9TrX0l67Us4wBiErHungTAEu7DEQCz7YlWSDA+zrMGumErsBac70ObfdsCaMspmSco82MZmoXEf9kPmlNiqw99Q6tknblJnY3mpUBxFkEX6l0O8/+1qZSM2d/VJ8nQvCDUNEs/hJEGyta/ps5655ElohkbiawIDAQAB
Validating Signature

result = fail
Details: body has been altered

Bese, ibheka irekhodi lami le-SPF ukubona ukuthi liyadlula (liyaphumelela):

SPF Information:
Using this information that I obtained from the headers

Helo Address = us1.circupressmail.com
From Address = info@martech.zone
From IP      = 74.207.235.122
SPF Record Lookup

Looking up TXT SPF record for martech.zone
Found the following namesevers for martech.zone: ns57.domaincontrol.com ns58.domaincontrol.com
Retrieved this SPF Record: zone updated 20210630 (TTL = 600)
using authoritative server (ns57.domaincontrol.com) directly for SPF Check
Result: pass (Mechanism 'include:circupressmail.com' matched)

Result code: pass
Local Explanation: martech.zone: Sender is authorized to use 'info@martech.zone' in 'mfrom' identity (mechanism 'include:circupressmail.com' matched)
spf_header = Received-SPF: pass (martech.zone: Sender is authorized to use 'info@martech.zone' in 'mfrom' identity (mechanism 'include:circupressmail.com' matched)) receiver=ip-172-31-60-105.ec2.internal; identity=mailfrom; envelope-from="info@martech.zone"; helo=us1.circupressmail.com; client-ip=74.207.235.122

Okokugcina, inginikeza ukuqonda ngomlayezo ngokwawo kanye nokuthi okuqukethwe kungase kuhlabe umkhosi yini kwamanye amathuluzi okuthola ugaxekile, ihlole ukuze ibone ukuthi ngisohlwini lwabavinjelwe, futhi ingitshele ukuthi kuyanconywa yini noma cha ukuthi ithunyelwe kufolda kadoti:

SpamAssassin Score: -4.787
Message is NOT marked as spam
Points breakdown: 
-5.0 RCVD_IN_DNSWL_HI       RBL: Sender listed at https://www.dnswl.org/,
                            high trust
                            [74.207.235.122 listed in list.dnswl.org]
 0.0 SPF_HELO_NONE          SPF: HELO does not publish an SPF Record
 0.0 HTML_FONT_LOW_CONTRAST BODY: HTML font color similar or
                            identical to background
 0.0 HTML_MESSAGE           BODY: HTML included in message
 0.1 DKIM_SIGNED            Message has a DKIM or DK signature, not necessarily
                            valid
 0.0 T_KAM_HTML_FONT_INVALID Test for Invalidly Named or Formatted
                            Colors in HTML
 0.1 DKIM_INVALID           DKIM or DK signature exists, but is not valid

Qiniseka ukuthi uhlola yonke i-ESP noma isevisi yemiyalezo yenkampani yangaphandle inkampani yakho ethumela kuyo i-imeyili ukuze uqiniseke ukuthi Ukuqinisekiswa Kwe-imeyili yakho kumiswe ngendlela efanele!

Hlola I-imeyili Yakho Ngesiqinisekisi se-DKIM

Ukudalulwa: Ngisebenzisa isixhumanisi sami sokuxhumana se- Indawo Yokusebenzela yakwaGoogle kulesi sihloko.