SPF record for similar domains to NOT allow emails?

rmorin · May 6, 2020, 12:08pm

Hello all…

We have had in the past i will call them “Bad People” registering similar domain names to the company I work for and send out phishing emails asking for bank info, they almost succeeded, was way too close.

So i went and bought all the similar domain names that i could get in order to stop others from doing so. So now i have about 20 similar domains but want to create a SPF record that indicates NOT to allow any emails from these domains. Is there a simple way to do this?

Thanks and to all a safe day!

Rob Morin
Montreal, Canada

opvind · May 17, 2020, 1:38pm

Defensively buying and securing similar domain names is a game of Whack-a-Mole, but you should set a SPF record allowing no sending servers:
text= “v=spf1 -all”,
and a DMARC policy of reject:
_dmarc text= “v=DMARC1; p=reject;”
Add rua and maybe ruf mail address(es) to the DMARC record if you wish to monitor attempted abuse.

Topic		Replies	Views
Question about mail servers and DMARC Technical Help	4	1234	November 6, 2021
Need Help Setting Up DMARC for My Domain	1	15	December 3, 2024
Help to understand threat categorization Technical Help	1	795	July 27, 2020
Yahoo sending mail to junk Technical Help	13	1547	January 22, 2021
Strange SPF issues Technical Help	8	97	August 28, 2024

SPF record for similar domains to NOT allow emails?

Related topics