SPF +all mechanism should not be used at kubegres.io

reactive-tech / kubegres-website

The website of the project "Kubegres".

3 stars 4 forks source link

SPF +all mechanism should not be used at kubegres.io #5

Open readycool opened 2 years ago

readycool commented 2 years ago

A quick dig command dig kubegres.io TXT +short outputs "v=spf1 +all".

Page 54 of RFC 7208 shows this is an all-inclusive mechanism allowing all IP addresses to pass the SPF check. In simple terms, it means malicious actors could spam on behalf of your domain name and therefore negatively affect domain reputation.

alex-arica commented 2 years ago

Thank you for reporting it. I updated the DNS record.