gtld-servers.net

Last scanned 2h ago · Mar 30, 2026, 10:53 PM

Scan Again Export PDF

D32/100

Only DMARC is configured. Your domain needs SPF, DKIM, and DMARC working together to prevent spoofing.

DMARC Policy: reject1 scan total

Protocol Status

DMARC

32/35

Enforced

SPF

0/25

Not Found

DKIM

0/20

Not Detected

MTA-STS

0/10

Not Configured

TLS-RPT

0/5

Not Configured

BIMI

0/5

Not Found

Score History

D32/100

First scan · Mar 30, 2026, 10:53 PM

Latest Scan Details

DMARCEnforced

32/35RFC RFC 7489

Detected Record

v=DMARC1; p=reject; fo=1; rf=afrf; ri=86400; rua=mailto:verisign@rua.agari.com,mailto:mailreports@verisign.com; ruf=mailto:verisign@ruf.agari.com,mailto:mailauthfail@verisign.com

Policy

reject

Aggregate Reporting

mailto:verisign@rua.agari.com,mailto:mailreports@verisign.com

Forensic Reporting

mailto:verisign@ruf.agari.com,mailto:mailauthfail@verisign.com

DKIM Alignment

relaxed

SPF Alignment

relaxed

SPFNot Found

0/25RFC RFC 7208

Publish an SPF record listing your authorized email senders (e.g. v=spf1 include:_spf.google.com ~all).

DKIMNot Detected

0/20RFC RFC 6376

Ensure your email provider has published DKIM keys. If using a custom selector, DKIM may still be active.

MTA-STSNot Configured

0/10RFC RFC 8461

Publish an MTA-STS TXT record and host a policy file at https://mta-sts.yourdomain/.well-known/mta-sts.txt.

TLS-RPTNot Configured

0/5RFC RFC 8460

Publish a TLS-RPT record to receive reports when sending servers fail to establish encrypted connections.

BIMINot Found

0/5RFC RFC 9495

Publish a BIMI record with your brand SVG logo. Requires DMARC at p=quarantine or p=reject with pct=100.