search

srobo / tasks

Collects all the tasks which we want to work on.
https://github.com/srobo/tasks/issues
1 stars 0 forks source link

Enable DMARC #896

Open Tyler-Ward opened 3 years ago

Tyler-Ward commented 3 years ago

we should enable DMARC for the studentrobotics and srobo domains to prevent anyone spoofing emails from SR (both within the org and to outside organisations).

Checking back through my sr based emails it looks like we already have DKIM and SPF setup for some things so a lot of the effort has been done but will need to add this to any system not yet using them.

The first step will be to add a dmarc record that doesent perform any action to gather data on what is passing and faling the checks (will need a mailbox or external service to collect the aggregate reports). After this has been done we can set a qurantine action to send failing messages to users junk folders (i believe often with an additional security warning)

PeterJCLaw commented 11 months ago

We've recently enabled DMARC in testing mode. We're using https://easydmarc.com to keep an eye on the results.