Apologies for something that only affects a subset of Tidbit users … but this is something that isn’t yet as well-known as it should be …
If you send and receive email for a custom domain (using – for example --a custom domain with Google Workspace aka G Suite aka Gmail for Business) you need to be sure that your domain’s DMARC settings are correct. Especially if you maintain mailing lists for your custom domain. If you don’t, a lot of your mailings could start bounding soon.
To make a long story short, hackers are currently sending a LOT of fake sender email phishing email messages:
https://www.forbes.com/sites/daveywinder/2024/05/08/new-fbi-warning-as-hackers-strike-email-users-must-do-this-1-thing/?sh=1ad014ae3d65
In reaction to the hacker’s efforts, email providers (e.g., Google, Yahoo, and Apple) all of a sudden want bulk email senders to strictly adopt Domain-based Message Authentication Reporting and Conformance (DMARC). In other words.
If you’re not familiar with the procedure, using DMARC means inserting special TXT records in the DNS for your custom domain which tell receiving email servers how to dispose of messages which don’t comply with two other policies you should have already set up for your domain:
-
SPF (Sender Policy Framework) which tells the world which sending servers are allowed to send email for your domain.
-
DKIM (Domain Keys Identified Mail) which authenticates messages sent by the trusted sending sending servers for your domain.
Setting all three involves modifying the DNS records at your domain’s DNS provider as well as modifying certain some settings at your email provider.
If your email provider is Google Workspace, see:
https://www.dmarcly.com/blog/spf-dkim-dmarc-set-up-guide-for-g-suite-gmail-for-business
If your email provider is Proton, see:
https://proton.me/support/anti-spoofing-custom-domain
So far, I haven’t been able to find out how to set up DMARC for Apple as an email provider. Assuming you have iCloud+, then adding a custom domain to personalize your iCloud email addres(s) is covered at:
https://support.apple.com/en-us/102540 … but I’d sure appreciate it if someone can tell me how to set up DMARC for it – I’m not looking forward to spending a lot of “quality time” with Apple Support on this.