youtube.com

Last scanned 2h ago · Mar 30, 2026, 10:53 PM

Scan Again Export PDF

C63/100

Good progress. SPF and DKIM are in place. DKIM needs attention to complete your protection.

DMARC Policy: reject1 scan total

Protocol Status

DMARC

30/35

Enforced

SPF

23/25

Hard Fail (-all)

DKIM

10/20

Key Revoked

MTA-STS

0/10

Not Configured

TLS-RPT

0/5

Not Configured

BIMI

0/5

Not Found

Score History

C63/100

First scan · Mar 30, 2026, 10:53 PM

Latest Scan Details

DMARCEnforced

30/35RFC RFC 7489

Detected Record

v=DMARC1; p=reject; rua=mailto:mailauth-reports@google.com

Policy

reject

Aggregate Reporting

mailto:mailauth-reports@google.com

DKIM Alignment

relaxed

SPF Alignment

relaxed

SPFHard Fail (-all)

23/25RFC RFC 7208

Detected Record

v=spf1 include:google.com mx -all

All Mechanism

-all (hard fail)

DNS Lookups

3/10

Record Length

33 bytes

DKIMKey Revoked

10/20RFC RFC 6376

Detected Record

selector1._domainkey:
k=rsa; p=

Selector

selector1

Algorithm

rsa-sha256

Status

REVOKED (empty p= tag)

The DKIM key is revoked (empty p= tag). Publish a new key for this selector.

MTA-STSNot Configured

0/10RFC RFC 8461

Publish an MTA-STS TXT record and host a policy file at https://mta-sts.yourdomain/.well-known/mta-sts.txt.

TLS-RPTNot Configured

0/5RFC RFC 8460

Publish a TLS-RPT record to receive reports when sending servers fail to establish encrypted connections.

BIMINot Found

0/5RFC RFC 9495

Publish a BIMI record with your brand SVG logo. Requires DMARC at p=quarantine or p=reject with pct=100.