We enabled stricter DMARC settings (from action none to action quarantine) but found this sent all email sent through Populi into user's spam folders. But, other systems that send email on our behalf do not have this problem. We would like to be able to use this industry standard system to reduce the amount of spam that can spoof our from addresses.
5 comments
-
James Official comment Whoops we actually fixed this years ago and failed to update this Feature Request! Under Account & Settings > Domains you'll see a list of domains that are associated with your college, and if you click on one you can see the steps for setting up the proper DNS records that will allow us to send proper DMARC aligned mail on your behalf.
-
Roland Penner Absolutely, we need DMARC support as soon as possible! Read most any security blog and they mention DMARC as the first step to take in limiting fraudulent phishing emails. Its extremely frustrating that our security posture is inhibited by Populi.
-
James Hi all,
We appreciate your feedback and are definitely thinking about a solution - unfortunately, implementing DMARC is a bit tricky given the way we send email on behalf of clients, and we'll need to come up with a solution that minimizes the potential for human error (basically DMARC introduces some more moving parts that are easily broken, and we have quite a bit of trouble already just helping clients keep their SPF records valid :)
But yes I agree that DMARC support is becoming more and more important and we'll definitely figure out something!
Thanks!
James
-
Roland Penner Thanks James for the response. I look forward to hearing when this is implemented.
-
Josiah Lewis @Populi, Any news on this front? I am trying to figure out DMARC entries as well, to have an extra layer of Security. Any specifics as to what other customers use without other problems would be helpful.